Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/vGp89Zd5L8W4D5oGB1_QIjAXs1o.roa
File: vGp89Zd5L8W4D5oGB1_QIjAXs1o.roa (raw, json)
Hash identifier: 70LaSvvb1fQmfnOvIsURHmJ5auVFUBOxmVLMAnN5B6g=
Subject key identifier: BC:6A:7C:F5:97:79:2F:C5:B8:0F:9A:06:07:5F:D0:22:30:17:B3:5A
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018288E4F2520CCC2D96C3294610347CFD8D
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/vGp89Zd5L8W4D5oGB1_QIjAXs1o.roa
Signing time: Wed 10 Aug 2022 17:54:41 +0000
ROA not before: Wed 10 Aug 2022 17:54:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51765
IP address blocks: 45.95.98.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:88:e4:f2:52:0c:cc:2d:96:c3:29:46:10:34:7c:fd:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 10 17:54:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc6a7cf597792fc5b80f9a06075fd0223017b35a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:83:2d:21:43:11:7b:07:a4:f5:b5:41:ed:f7:
e9:4b:88:50:e4:90:60:d1:03:ce:c3:32:d1:8d:39:
bc:ea:6a:6c:4d:0b:15:c6:66:8f:90:ff:7a:44:7e:
65:27:78:c2:e8:a4:e4:f8:28:72:d1:ba:6a:5a:3b:
ec:7c:ac:da:bd:17:26:ff:f9:35:a9:aa:c8:5c:03:
89:fa:aa:b7:2a:27:e9:bb:80:9e:01:6f:9f:b2:26:
e7:f9:a4:be:3a:bc:97:e5:96:79:1f:34:e2:c3:39:
37:9f:b5:8f:fc:39:30:eb:db:e8:51:c5:75:c0:34:
90:2b:8a:7f:bc:18:90:d3:ca:5a:3b:ac:a5:53:d9:
b4:80:68:5f:cf:c3:9b:bf:46:40:bc:38:69:03:00:
ee:93:27:b2:56:e7:9b:8e:49:dd:9f:3d:8f:1a:e9:
6a:dc:08:40:7d:3d:63:4e:57:2d:83:6e:4d:5e:d6:
1e:d4:5e:e2:c9:1a:62:e3:2a:ee:59:6f:4a:cf:95:
fc:34:9b:80:58:d8:ba:39:1d:1c:cc:e2:59:c1:91:
26:b9:42:8c:f7:4f:17:97:e0:ee:97:59:d3:79:3f:
6d:a7:4a:a9:27:fd:7b:bd:ed:85:a6:8e:e6:b2:39:
52:ad:dd:47:dc:e3:72:f7:e0:9a:99:86:db:e1:6f:
6d:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:6A:7C:F5:97:79:2F:C5:B8:0F:9A:06:07:5F:D0:22:30:17:B3:5A
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/vGp89Zd5L8W4D5oGB1_QIjAXs1o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.98.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:c3:4d:8e:4a:cc:ed:bf:2a:c0:f3:cb:76:e3:55:30:6a:d9:
a5:f1:be:66:cc:37:da:03:b2:2e:9c:cb:33:08:1e:0a:3a:fd:
69:24:83:1a:36:d0:f8:e9:31:f9:0d:bb:f3:5b:39:d8:0d:0b:
1b:b6:39:06:d3:00:5b:f1:ec:1c:31:f9:49:22:1d:32:c6:ec:
3c:db:7f:14:41:00:99:81:ba:d9:76:f5:2d:6d:af:9a:c1:5e:
d0:a4:c5:36:ad:24:a0:97:10:a6:45:d6:40:44:8a:23:b5:98:
f8:57:c1:b1:69:73:18:4b:b6:70:98:bb:21:a9:b8:99:99:61:
58:1d:ef:87:42:15:24:8c:16:9b:35:66:a5:ff:a9:a2:4b:6e:
9d:b1:0c:dd:8b:43:fb:2d:a4:7b:b0:ed:f1:5a:05:d9:b1:5e:
ba:6d:45:1b:cf:aa:f1:23:1a:02:2b:30:a3:8c:3e:4d:ff:a4:
33:3a:b7:b2:2c:84:83:79:fc:24:1f:7b:95:03:4a:80:19:b4:
b9:95:05:0f:2a:69:c4:d5:f4:04:46:50:0f:58:38:f4:c1:62:
af:a5:68:38:6b:a0:cc:42:ff:24:9c:3e:55:40:e9:ca:92:11:
7c:d3:4f:3b:e0:47:99:88:7b:bf:5a:92:c3:f7:20:a9:37:b4:
3e:6e:89:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:00:12 2025 by rpki-client