Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/c49d34-1b14-4026-b77f-e4def9c697a7/1/VVbt2W5ed8XAMoXu-_tClvfCRaE.roa
File: VVbt2W5ed8XAMoXu-_tClvfCRaE.roa (raw, json)
Hash identifier: F3l1Y7CI40Nmdgqx8xzNAYTk92o85zKzeSSxpStPDUI=
Subject key identifier: 55:56:ED:D9:6E:5E:77:C5:C0:32:85:EE:FB:FB:42:96:F7:C2:45:A1
Certificate issuer: /CN=c72e716353ec733ab4b5085308b386d89a74f147
Certificate serial: 018572B3F2C35687999CD5063F6C97F05074
Authority key identifier: C7:2E:71:63:53:EC:73:3A:B4:B5:08:53:08:B3:86:D8:9A:74:F1:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xy5xY1Psczq0tQhTCLOG2Jp08Uc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/c49d34-1b14-4026-b77f-e4def9c697a7/1/VVbt2W5ed8XAMoXu-_tClvfCRaE.roa
Signing time: Mon 02 Jan 2023 13:37:53 +0000
ROA not before: Mon 02 Jan 2023 13:37:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209907
IP address blocks: 91.228.217.0/24 maxlen: 24
176.121.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b3:f2:c3:56:87:99:9c:d5:06:3f:6c:97:f0:50:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c72e716353ec733ab4b5085308b386d89a74f147
Validity
Not Before: Jan 2 13:37:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5556edd96e5e77c5c03285eefbfb4296f7c245a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a1:c2:91:4c:4b:2e:ec:04:c1:79:04:6f:d9:
9c:18:e4:b2:68:4d:7a:6b:fe:68:4f:c4:9f:62:1d:
4b:50:dd:46:fc:b2:34:6d:a9:dc:b6:e6:98:7d:28:
76:f0:ab:e2:3b:e0:a5:3d:78:cf:26:ec:4c:f1:6a:
d8:3d:43:82:00:5a:a8:03:c5:bc:45:d0:5d:f8:25:
b0:36:70:1e:d1:a0:c8:78:18:1f:8d:36:72:13:54:
be:fc:49:de:a7:63:4e:12:9a:d6:c1:1f:28:06:25:
13:1b:ad:89:14:12:f6:05:d8:70:ba:84:47:13:cb:
95:2c:ec:49:bb:97:22:ee:d9:45:f8:f9:1a:95:a5:
b6:ad:7d:ec:71:8b:d8:48:b4:8e:02:e6:a2:07:c2:
bf:d9:5b:32:ee:6b:94:a4:3b:ca:a3:19:16:f4:2a:
c7:ba:9e:96:86:a3:2d:af:c8:90:7d:54:32:cd:d3:
cc:16:d8:cb:f7:18:43:6d:65:e0:b6:40:cc:a1:fd:
9e:63:a1:9b:d5:34:8f:3d:7a:00:74:17:a9:9b:50:
e6:2a:a3:33:0f:32:93:27:04:f9:f6:44:6e:6a:bd:
a4:8b:d5:d9:88:a2:2e:ca:14:18:32:d6:3a:46:49:
fd:51:4b:ad:f1:f6:89:c5:a7:d5:1a:78:b4:cf:ef:
4d:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:56:ED:D9:6E:5E:77:C5:C0:32:85:EE:FB:FB:42:96:F7:C2:45:A1
X509v3 Authority Key Identifier:
keyid:C7:2E:71:63:53:EC:73:3A:B4:B5:08:53:08:B3:86:D8:9A:74:F1:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xy5xY1Psczq0tQhTCLOG2Jp08Uc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/c49d34-1b14-4026-b77f-e4def9c697a7/1/VVbt2W5ed8XAMoXu-_tClvfCRaE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/c49d34-1b14-4026-b77f-e4def9c697a7/1/xy5xY1Psczq0tQhTCLOG2Jp08Uc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.217.0/24
176.121.1.0/24
Signature Algorithm: sha256WithRSAEncryption
26:e2:f1:54:0b:f6:e4:43:34:4b:74:b0:53:b4:d7:28:58:71:
64:f4:5d:a4:ce:5f:a2:96:53:0a:3c:6d:f2:2d:31:a3:e7:c3:
71:c6:cb:bc:3f:2b:59:44:05:bf:29:84:80:13:c9:77:1e:e3:
5b:b5:39:aa:38:ed:d2:9c:0a:6e:d7:29:c6:cf:14:3b:18:44:
9d:2f:89:0c:28:c5:4c:13:a9:46:2c:80:39:de:c6:85:1f:01:
ae:99:96:60:54:07:95:fa:9a:e2:0f:3a:15:44:8a:e5:e4:a1:
43:64:ee:bf:b1:a4:36:17:3c:cf:3e:7b:b4:2f:16:35:55:ac:
48:a7:8a:7a:ae:f5:e0:c4:0b:0b:b9:e5:fb:17:57:0c:77:7d:
bd:6b:da:97:28:d6:eb:4c:62:92:4e:16:50:1d:0c:50:eb:f5:
cb:31:a0:72:84:fd:97:02:25:8f:86:a4:2c:2f:be:74:06:d0:
94:6a:83:33:f8:10:fd:ff:28:62:96:be:af:ab:b7:a3:fc:58:
2e:fa:7b:d0:ba:0b:0f:de:bb:6d:af:b8:c9:64:0c:ab:19:40:
23:65:81:c8:50:fa:ae:f6:e7:41:db:5b:75:0c:33:61:21:69:
b2:11:33:28:94:5e:dd:a3:4a:7c:48:bc:44:f1:bd:36:1d:77:
42:40:52:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:03:51 2025 by rpki-client