Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a5d00d-6266-46ea-bc8c-4182bedb98a1/1/VOXqodWJqjyA0vaBQynS9van6dI.roa
File: VOXqodWJqjyA0vaBQynS9van6dI.roa (raw, json)
Hash identifier: Tzoaju4SphWrY/fb2L/1DNmgz5+g8NAbUVlIFcuta+0=
Subject key identifier: 54:E5:EA:A1:D5:89:AA:3C:80:D2:F6:81:43:29:D2:F6:F6:A7:E9:D2
Certificate issuer: /CN=49d8663d3b969e0253a26d5425bee1c5d443b361
Certificate serial: 018A1C52D2C98295F8F6758EAB31BAF3963D
Authority key identifier: 49:D8:66:3D:3B:96:9E:02:53:A2:6D:54:25:BE:E1:C5:D4:43:B3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SdhmPTuWngJTom1UJb7hxdRDs2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a5d00d-6266-46ea-bc8c-4182bedb98a1/1/VOXqodWJqjyA0vaBQynS9van6dI.roa
Signing time: Tue 22 Aug 2023 08:18:24 +0000
ROA not before: Tue 22 Aug 2023 08:18:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31726
IP address blocks: 185.117.192.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:1c:52:d2:c9:82:95:f8:f6:75:8e:ab:31:ba:f3:96:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49d8663d3b969e0253a26d5425bee1c5d443b361
Validity
Not Before: Aug 22 08:18:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=54e5eaa1d589aa3c80d2f6814329d2f6f6a7e9d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c9:f1:7f:8b:0b:bb:53:27:33:a8:f6:8e:dc:
fd:d9:68:ba:50:58:4b:d4:6a:f0:5f:6c:88:78:47:
95:11:b5:a7:cf:7c:8a:15:fa:fc:47:ed:e1:f9:fd:
cb:fd:2f:01:e0:5c:9c:b4:ca:da:c4:38:c5:f6:57:
1e:df:ea:26:c4:a1:8f:06:a4:2a:43:5f:1d:85:86:
a8:0f:96:2d:6b:14:62:a4:8d:06:ef:a0:a7:f2:52:
b2:81:75:b7:3b:bb:ca:e0:77:be:ad:5c:03:4b:88:
1a:d0:6b:71:1d:ba:5b:e6:e2:e0:25:f7:b6:c0:a7:
47:5f:05:d6:0a:c6:a7:93:40:fe:e1:f1:2f:29:6b:
1c:6d:90:92:d1:1c:9f:09:e9:3a:c1:1d:87:f9:27:
d7:1b:3c:e6:e2:8a:d0:c8:94:ce:c9:13:60:d2:0e:
7d:69:ee:92:f9:b7:65:7d:7b:67:d4:d0:1f:25:cb:
a5:5b:58:8b:df:8a:69:3a:7e:10:3d:7e:6d:eb:a6:
84:7e:41:30:1e:da:e3:51:21:9f:86:5b:da:c3:ad:
a8:4c:ad:e6:b2:f5:56:c7:dd:0a:b4:a7:7c:a8:ac:
fd:d0:97:bc:a5:80:b3:07:d7:3c:4b:05:d6:fb:63:
75:7d:83:b4:57:3f:89:9f:37:42:57:d2:14:84:2c:
4b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:E5:EA:A1:D5:89:AA:3C:80:D2:F6:81:43:29:D2:F6:F6:A7:E9:D2
X509v3 Authority Key Identifier:
keyid:49:D8:66:3D:3B:96:9E:02:53:A2:6D:54:25:BE:E1:C5:D4:43:B3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SdhmPTuWngJTom1UJb7hxdRDs2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a5d00d-6266-46ea-bc8c-4182bedb98a1/1/VOXqodWJqjyA0vaBQynS9van6dI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a5d00d-6266-46ea-bc8c-4182bedb98a1/1/SdhmPTuWngJTom1UJb7hxdRDs2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.192.0/22
Signature Algorithm: sha256WithRSAEncryption
ac:d4:2f:ee:65:aa:55:b2:d5:4b:e6:7b:55:e6:5a:3c:7b:a7:
2f:a7:93:96:29:dc:23:3f:b1:23:71:60:22:6c:ed:94:fb:62:
27:96:db:f8:16:70:da:df:f7:47:8f:89:1b:fa:af:17:58:11:
f4:70:62:0a:9b:60:c9:f9:c6:21:27:cb:60:b8:07:68:66:30:
e9:28:35:c1:56:77:ee:23:ab:98:1c:4e:d5:83:b8:70:37:5f:
10:fd:79:ad:30:4d:9e:6d:75:b6:e3:a4:39:8e:78:cc:c5:47:
39:78:74:f5:b1:33:e6:73:cf:d5:17:99:74:95:76:b3:0e:fd:
a5:cc:ea:30:f2:30:c0:3c:f0:63:1b:d7:31:24:83:09:52:48:
62:c9:77:38:fc:dd:2a:29:e9:5f:72:7b:1e:9d:01:9d:11:cd:
9d:df:3e:b9:1f:b2:4c:5e:a8:a0:88:ea:79:03:be:c0:2e:68:
01:07:6f:6c:73:b0:75:be:b2:40:3d:d2:08:d3:3b:f9:0d:4c:
23:3a:5b:4d:d0:0e:ed:41:90:36:db:64:e6:b1:2e:29:d2:67:
3e:86:09:89:5b:97:5a:40:03:ef:15:e5:85:78:5f:e6:ec:ab:
76:2c:61:57:93:31:f3:c1:17:99:03:0a:c6:a3:3b:fb:0c:bf:
5e:84:39:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:38:39 2025 by rpki-client