Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/e106c3-0b1f-4010-86f1-65a46c8e41e9/1/VzBEkjG1DMNL78RSTAV2vWEy2JM.roa
File: VzBEkjG1DMNL78RSTAV2vWEy2JM.roa (raw, json)
Hash identifier: K3U3KC53gK/AOPr9s27gZxw7o6CcNyYOqdNiAZTdgZQ=
Subject key identifier: 57:30:44:92:31:B5:0C:C3:4B:EF:C4:52:4C:05:76:BD:61:32:D8:93
Certificate issuer: /CN=3d0483538737453e2f57ffb57499c3922e83636d
Certificate serial: 05661D38
Authority key identifier: 3D:04:83:53:87:37:45:3E:2F:57:FF:B5:74:99:C3:92:2E:83:63:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PQSDU4c3RT4vV_-1dJnDki6DY20.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/e106c3-0b1f-4010-86f1-65a46c8e41e9/1/VzBEkjG1DMNL78RSTAV2vWEy2JM.roa
Signing time: Sat 01 Jan 2022 02:53:29 +0000
ROA not before: Sat 01 Jan 2022 02:53:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30823
IP address blocks: 194.62.29.0/24 maxlen: 24
194.62.157.0/24 maxlen: 24
194.62.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90578232 (0x5661d38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d0483538737453e2f57ffb57499c3922e83636d
Validity
Not Before: Jan 1 02:53:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5730449231b50cc34befc4524c0576bd6132d893
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:a2:db:66:00:9d:95:59:2b:99:8f:38:f7:b3:
4c:2f:ac:6c:34:e7:2b:b9:89:2b:62:d8:e1:dd:e5:
a2:ac:f4:f3:aa:05:f1:42:f2:4f:9c:e5:fb:01:56:
02:6e:79:80:22:05:f4:2b:a0:11:5b:14:37:e2:37:
1a:ea:54:dd:86:8a:db:97:07:7e:ce:ae:79:4c:b8:
41:cd:4e:79:cd:ca:5b:98:ea:76:52:df:60:27:77:
43:1b:70:b4:f7:46:0e:cc:62:21:34:67:22:3f:ca:
49:49:24:79:54:d7:98:1c:08:7b:35:e4:4d:88:b4:
5b:0c:8d:3f:33:63:98:7f:07:a7:90:24:8d:7e:07:
df:c5:7b:8c:50:e7:9a:fd:37:c7:43:c0:1a:d2:55:
da:a6:31:4b:0f:70:f0:da:69:0b:8f:b3:be:c8:fc:
c5:13:a1:ac:fd:de:e8:4e:71:57:d9:78:f8:da:11:
1c:47:a6:c2:e4:e3:9b:b3:e2:7c:54:f9:4c:73:de:
2b:3c:cf:01:17:52:67:4e:90:d0:20:96:cd:67:8b:
ce:aa:ce:cc:98:e3:99:c9:05:1c:77:5d:8a:e3:e1:
97:33:1a:c3:9e:ec:f7:44:2d:8d:5a:2b:ef:18:90:
cf:7f:33:af:d4:b7:ab:48:75:99:86:ce:88:77:5d:
0b:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:30:44:92:31:B5:0C:C3:4B:EF:C4:52:4C:05:76:BD:61:32:D8:93
X509v3 Authority Key Identifier:
keyid:3D:04:83:53:87:37:45:3E:2F:57:FF:B5:74:99:C3:92:2E:83:63:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PQSDU4c3RT4vV_-1dJnDki6DY20.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e106c3-0b1f-4010-86f1-65a46c8e41e9/1/VzBEkjG1DMNL78RSTAV2vWEy2JM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e106c3-0b1f-4010-86f1-65a46c8e41e9/1/PQSDU4c3RT4vV_-1dJnDki6DY20.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.62.1.0/24
194.62.29.0/24
194.62.157.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:e1:18:67:cd:83:e7:90:d7:6b:65:bb:2e:23:1f:1f:e2:ef:
77:c3:52:5e:44:f6:b3:f6:fb:24:6e:16:8d:c2:41:83:56:7b:
ab:48:b1:9d:b9:ac:dc:1e:71:c3:11:fa:4c:42:fd:fa:2f:a4:
5d:c1:26:df:c3:23:10:5d:6b:ff:b6:fe:6d:e5:56:32:cd:7d:
34:04:65:6b:2e:98:ee:47:75:f7:5c:55:60:cf:cf:b5:d0:73:
b1:24:b5:b2:b0:8a:cf:ef:d3:a9:37:f9:2b:ed:78:76:57:0d:
83:51:76:81:b5:25:53:20:db:2d:de:89:cc:eb:81:e1:cc:37:
11:f3:a7:77:ac:09:89:6c:83:d3:d0:3e:5d:dc:03:4e:e9:9a:
ee:be:26:ea:d3:2e:99:2f:4c:3f:87:5f:2e:62:04:7d:ef:7d:
c8:80:3c:82:84:fe:ea:91:ec:fa:f2:26:64:67:99:ff:35:5b:
81:8b:89:73:c4:e0:9d:83:f6:8b:05:de:e7:a5:2a:11:6d:f5:
3d:df:ed:83:e4:1f:1d:42:cb:7e:ec:88:ca:c2:01:da:78:a5:
90:b5:b9:13:f0:ba:f8:34:dc:2c:2c:a7:c3:e8:a2:c4:d6:70:
13:df:27:4d:37:da:4f:61:41:04:f3:d4:cf:c7:5e:3c:f4:7c:
93:e4:b9:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:17:35 2025 by rpki-client