Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/901ad2-6c6c-43c6-a280-4250ce5517d9/1/VnDI4vVBLRQEusek9pFQxBHElRU.roa
File: VnDI4vVBLRQEusek9pFQxBHElRU.roa (raw, json)
Hash identifier: glngfN8twMzpeG1ZFCuMOKtK7pieJl4v+h+M9TrMHRE=
Subject key identifier: 56:70:C8:E2:F5:41:2D:14:04:BA:C7:A4:F6:91:50:C4:11:C4:95:15
Certificate issuer: /CN=89b5fad18dd9110413a31b4d8e18765a27d4c3f1
Certificate serial: 3366ACEC
Authority key identifier: 89:B5:FA:D1:8D:D9:11:04:13:A3:1B:4D:8E:18:76:5A:27:D4:C3:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ibX60Y3ZEQQToxtNjhh2WifUw_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/901ad2-6c6c-43c6-a280-4250ce5517d9/1/VnDI4vVBLRQEusek9pFQxBHElRU.roa
Signing time: Sat 01 Jan 2022 12:01:11 +0000
ROA not before: Sat 01 Jan 2022 12:01:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8412
IP address blocks: 62.178.0.0/16 maxlen: 17
195.34.136.0/21 maxlen: 22
195.34.144.0/20 maxlen: 21
84.112.0.0/14 maxlen: 15
185.235.152.0/22 maxlen: 22
213.47.0.0/17 maxlen: 18
84.115.208.0/20 maxlen: 20
84.115.224.0/20 maxlen: 20
80.241.16.0/20 maxlen: 21
217.25.122.0/23 maxlen: 23
80.108.0.0/15 maxlen: 16
213.47.128.0/18 maxlen: 19
217.25.112.0/20 maxlen: 22
213.47.208.0/21 maxlen: 22
213.47.216.0/22 maxlen: 23
213.47.224.0/19 maxlen: 20
212.186.0.0/16 maxlen: 17
195.34.128.0/23 maxlen: 24
195.34.131.0/24 maxlen: 24
212.17.64.0/18 maxlen: 19
80.110.0.0/16 maxlen: 17
213.47.192.0/20 maxlen: 21
2a02:838c::/30 maxlen: 30
2a02:8380::/30 maxlen: 33
2a02:8380::/28 maxlen: 29
2a02:838a::/41 maxlen: 44
2a02:8384::/31 maxlen: 32
2a02:8388::/29 maxlen: 30
2a02:8388::/31 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 862366956 (0x3366acec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89b5fad18dd9110413a31b4d8e18765a27d4c3f1
Validity
Not Before: Jan 1 12:01:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5670c8e2f5412d1404bac7a4f69150c411c49515
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:0a:b9:f9:99:3b:b2:15:18:8f:96:21:1c:3c:
97:b4:d2:84:8a:d6:1a:6a:a2:c9:cb:5e:6b:59:1c:
d8:1d:fe:c7:f4:95:cf:44:ee:82:f1:3d:35:8e:57:
73:30:c4:36:9e:1a:69:04:9a:1e:93:07:a2:59:9d:
cf:73:30:7c:06:bc:9c:1f:5d:a0:3e:cb:dd:67:66:
08:88:fe:6c:1f:5c:9d:05:dc:90:82:91:5f:a9:e5:
4a:2f:49:90:92:28:e3:d4:88:77:ff:88:ea:5e:d1:
3e:d9:55:da:33:7b:bd:5e:36:39:ca:31:93:bd:15:
4e:82:7d:fb:7c:52:b3:d2:46:e8:18:1a:99:d0:42:
fe:a6:d3:2f:2a:1f:9f:c2:7a:33:9c:df:8a:d6:29:
25:a1:c2:1a:10:b9:87:33:25:71:d2:e3:77:0f:71:
c3:fe:e9:82:71:b4:dd:a5:5b:cb:e2:9b:41:5f:1c:
b1:e9:07:99:27:bd:a9:45:40:8a:e1:6c:36:96:11:
0b:b9:54:16:05:93:31:b2:2e:d7:05:6a:3b:c0:4e:
7c:ae:17:ef:ba:d0:69:ee:24:23:f1:ef:51:04:f1:
eb:a9:c4:92:5a:af:c8:7a:85:01:ad:56:b0:dc:47:
10:be:eb:69:95:f4:3a:12:c2:6c:15:39:15:80:60:
f7:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:70:C8:E2:F5:41:2D:14:04:BA:C7:A4:F6:91:50:C4:11:C4:95:15
X509v3 Authority Key Identifier:
keyid:89:B5:FA:D1:8D:D9:11:04:13:A3:1B:4D:8E:18:76:5A:27:D4:C3:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ibX60Y3ZEQQToxtNjhh2WifUw_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/901ad2-6c6c-43c6-a280-4250ce5517d9/1/VnDI4vVBLRQEusek9pFQxBHElRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/901ad2-6c6c-43c6-a280-4250ce5517d9/1/ibX60Y3ZEQQToxtNjhh2WifUw_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.178.0.0/16
80.108.0.0-80.110.255.255
80.241.16.0/20
84.112.0.0/14
185.235.152.0/22
195.34.128.0/23
195.34.131.0/24
195.34.136.0-195.34.159.255
212.17.64.0/18
212.186.0.0/16
213.47.0.0-213.47.219.255
213.47.224.0/19
217.25.112.0/20
IPv6:
2a02:8380::/28
Signature Algorithm: sha256WithRSAEncryption
4f:79:51:65:a9:d6:c2:20:e9:d7:2c:f1:4d:0c:72:72:7a:ee:
16:ea:96:08:08:5b:69:83:40:c9:22:a6:88:94:d1:1d:3b:f9:
13:dc:62:45:db:0f:fe:d6:e6:3a:f3:4b:2e:d0:b7:b9:a3:33:
bd:96:bd:0b:a2:44:3f:b7:69:72:97:81:19:cd:7e:2b:20:c4:
cd:fe:41:1d:ad:be:bb:b8:99:c9:f1:73:5d:29:ff:33:57:36:
14:7f:7b:ab:91:03:85:9f:20:41:82:cf:29:1d:dd:46:78:9c:
03:a5:34:3b:30:d8:1e:e0:2b:82:00:34:af:f3:8f:b8:99:cd:
68:09:90:3d:38:01:dc:a2:64:33:8e:fc:39:59:84:5c:e8:94:
53:40:cf:97:80:ca:19:66:0d:e3:5d:85:53:9a:4f:19:3a:c4:
85:fb:f8:23:d9:ec:4c:7e:28:84:29:42:ef:99:da:bc:31:35:
5b:9b:51:a0:eb:c0:b3:ed:12:5b:af:a8:8d:85:a1:14:85:82:
e0:94:eb:61:db:3c:f1:09:a9:f0:e6:2a:24:e6:98:da:9b:84:
1a:59:08:93:93:78:e9:f5:41:83:91:52:ec:1f:38:0e:90:a2:
e9:5c:59:aa:a5:46:5f:6a:ce:23:32:1d:04:13:58:17:31:7e:
73:1c:b2:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 03:18:08 2025 by rpki-client