Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/VYcnJXNRlqTyJ7Twn_Ppx0cL5hI.roa
File: VYcnJXNRlqTyJ7Twn_Ppx0cL5hI.roa (raw, json)
Hash identifier: 5GH6tAQUvVWO0k+2dr8fM9iW03E0u/ajFNhZiwp3ld4=
Subject key identifier: 55:87:27:25:73:51:96:A4:F2:27:B4:F0:9F:F3:E9:C7:47:0B:E6:12
Certificate issuer: /CN=84a4aca020fb2bdc93a47266e87ec67cdc8857c5
Certificate serial: 0189B5B09E4D74183D7DC4D61078F8556990
Authority key identifier: 84:A4:AC:A0:20:FB:2B:DC:93:A4:72:66:E8:7E:C6:7C:DC:88:57:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKSsoCD7K9yTpHJm6H7GfNyIV8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/VYcnJXNRlqTyJ7Twn_Ppx0cL5hI.roa
Signing time: Wed 02 Aug 2023 09:59:58 +0000
ROA not before: Wed 02 Aug 2023 09:59:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50627
IP address blocks: 178.20.32.0/21 maxlen: 22
5.42.144.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b5:b0:9e:4d:74:18:3d:7d:c4:d6:10:78:f8:55:69:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84a4aca020fb2bdc93a47266e87ec67cdc8857c5
Validity
Not Before: Aug 2 09:59:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=55872725735196a4f227b4f09ff3e9c7470be612
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b6:da:4a:9f:38:e8:2c:71:89:c1:33:fb:78:
ff:da:b4:eb:a2:5a:c3:e5:99:29:23:8a:0e:64:48:
10:4d:ec:51:28:f9:52:5c:59:7f:01:68:94:9c:af:
e0:46:63:ff:43:2f:3b:ab:15:6f:d9:01:2e:e5:d7:
3d:0f:f2:1d:21:71:a6:19:39:77:32:b8:2a:cc:2c:
3c:d4:b7:2a:31:16:be:18:bb:de:21:ae:17:77:e1:
9c:a1:a2:66:e9:5d:20:c2:57:58:e5:e8:81:aa:5f:
0b:29:36:d9:ce:0b:da:f6:33:df:91:16:7e:aa:c0:
32:2d:a4:03:35:e7:b4:29:a7:c1:a4:3b:ce:b3:a8:
e2:8a:32:66:07:a4:60:9b:4f:00:39:2e:89:d4:80:
bc:04:6a:b7:75:78:70:bc:de:85:a4:21:d7:d7:d5:
26:83:4f:ff:df:54:f5:69:d3:60:ce:f3:ee:28:9e:
06:f7:b8:b2:59:d3:50:6b:e3:55:bb:c6:f5:bc:d4:
98:92:19:75:78:4d:6a:c3:14:3d:41:03:39:10:02:
d3:5d:23:fc:75:22:88:b2:6f:33:0c:fe:ae:f1:bc:
31:71:a7:91:aa:26:af:3f:58:e2:60:21:6c:c3:6b:
f3:7e:0f:1b:67:fe:e7:0a:03:e2:9e:6b:3d:cd:54:
ee:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:87:27:25:73:51:96:A4:F2:27:B4:F0:9F:F3:E9:C7:47:0B:E6:12
X509v3 Authority Key Identifier:
keyid:84:A4:AC:A0:20:FB:2B:DC:93:A4:72:66:E8:7E:C6:7C:DC:88:57:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKSsoCD7K9yTpHJm6H7GfNyIV8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/VYcnJXNRlqTyJ7Twn_Ppx0cL5hI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.144.0/21
178.20.32.0/21
Signature Algorithm: sha256WithRSAEncryption
9e:82:2f:b5:b9:ed:2a:67:37:60:a6:42:fd:37:f1:32:e1:34:
15:5b:6b:9c:ed:9e:23:37:02:09:4c:c3:99:d6:36:6c:93:31:
b5:d6:4d:82:2c:43:03:8a:a2:11:51:cb:51:62:bb:4f:3c:8a:
67:0a:db:d5:a5:ff:62:64:cb:cd:f8:db:9f:e3:d9:16:7b:df:
7a:4a:47:f8:22:96:d1:21:3b:49:44:f3:67:7c:71:2e:d0:f4:
39:f3:b0:ca:57:4d:ac:2d:74:50:9e:6d:4d:04:91:79:1e:fc:
e2:e7:6f:e5:ad:2d:cd:c6:95:86:ea:b9:9b:e1:f8:e6:69:ce:
64:21:ba:bc:d5:07:3e:f9:00:33:45:cc:f6:67:8c:40:b4:49:
0c:cd:65:de:0d:e2:65:2a:af:f6:60:8d:fb:80:58:48:92:a9:
e6:a0:78:e6:07:92:ad:27:03:ea:b5:b6:14:33:4e:ed:86:5f:
43:27:c2:1f:e2:b0:92:ca:56:11:7f:1c:bf:84:2e:15:b3:82:
16:b0:e1:53:54:08:7c:12:30:cd:e7:f9:2b:f6:5a:d9:1d:29:
b4:cf:78:a9:bb:c8:4b:e8:3d:a4:f1:de:fc:c7:f8:c2:ea:97:
5c:c0:bd:c3:a8:8a:19:56:a9:09:87:8f:7d:d6:d3:3f:f4:51:
32:18:8a:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:09 2025 by rpki-client