Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/vtquY_vpncwbKBpbLv0ZT2VQNfo.roa
File: vtquY_vpncwbKBpbLv0ZT2VQNfo.roa (raw, json)
Hash identifier: 7biStvnz2y5unI+pELc7MH9iQlnYzXQ/vhAbWLQO19c=
Subject key identifier: BE:DA:AE:63:FB:E9:9D:CC:1B:28:1A:5B:2E:FD:19:4F:65:50:35:FA
Certificate issuer: /CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Certificate serial: 0A181109
Authority key identifier: 41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/vtquY_vpncwbKBpbLv0ZT2VQNfo.roa
Signing time: Thu 28 Apr 2022 07:53:02 +0000
ROA not before: Thu 28 Apr 2022 07:53:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35503
IP address blocks: 89.252.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169349385 (0xa181109)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Validity
Not Before: Apr 28 07:53:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bedaae63fbe99dcc1b281a5b2efd194f655035fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:73:5d:d9:51:11:ef:81:f8:9c:4e:2b:70:07:
8c:3b:27:84:53:bb:20:81:c1:6b:99:b6:33:1e:56:
c6:bf:6f:91:99:a6:fe:d3:e8:43:83:fb:4e:0f:94:
5d:62:0b:5a:c7:aa:58:ef:a9:74:87:64:78:88:74:
81:47:3f:ed:ab:01:85:76:0b:6d:ca:1c:de:37:04:
44:6d:48:dc:11:d4:36:79:4f:60:0a:8d:fe:28:74:
e9:4c:39:10:1c:4e:39:a6:ba:91:2c:05:ca:a4:97:
37:0a:67:24:f3:16:0f:6b:e9:7c:b3:0b:1a:87:b9:
eb:6f:b6:e6:60:19:67:06:05:a3:92:fc:50:cc:78:
42:f9:85:d9:8c:b6:a0:32:65:83:fd:cd:74:fd:07:
ed:eb:39:61:38:c5:e5:ff:a2:1f:29:ea:9f:2e:95:
1f:53:aa:6b:68:8e:c9:15:f6:6e:d2:e2:d7:00:ce:
74:bd:53:0d:58:2a:14:37:68:76:8f:7e:12:26:c7:
59:bd:8d:a5:20:3c:a4:4c:32:f1:a7:85:1c:7b:1a:
88:77:90:86:a5:98:b8:99:dd:ef:3c:bb:ff:24:05:
26:86:96:91:89:54:71:85:78:70:20:e4:bd:cf:3e:
79:11:bc:6f:ae:8d:2a:5c:c8:fd:01:d7:1d:30:e3:
1e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:DA:AE:63:FB:E9:9D:CC:1B:28:1A:5B:2E:FD:19:4F:65:50:35:FA
X509v3 Authority Key Identifier:
keyid:41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/vtquY_vpncwbKBpbLv0ZT2VQNfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/QQSkCCHEF2zELiVe9sFydHPD8Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.252.196.0/24
Signature Algorithm: sha256WithRSAEncryption
61:ad:b7:35:e9:7f:4f:22:90:d2:56:e4:0c:9a:53:34:8f:56:
89:c3:4e:18:e2:8d:19:8b:42:1c:e7:77:8b:bd:da:62:be:c1:
08:8b:25:5f:4c:ee:ce:34:cc:ab:e2:bd:c9:34:24:76:e5:ec:
f2:0b:91:d0:fc:ed:bb:3f:36:2a:c2:a9:e5:3a:f7:b6:aa:2c:
9d:2f:15:9e:04:5a:8a:3b:df:af:79:42:96:30:70:82:65:11:
98:60:a9:aa:af:ec:ad:29:bd:5a:8d:80:2b:12:88:04:96:1d:
5e:aa:92:49:e4:aa:b6:5a:87:9f:90:79:64:1e:f7:c6:4c:29:
de:e9:0b:50:22:46:7b:69:dc:0f:5f:75:b0:17:1d:4a:05:98:
24:8e:fc:b9:d2:35:d9:32:15:ae:ce:4e:b0:4c:95:8b:f1:55:
e4:08:66:4f:2b:1a:8b:fa:11:a2:82:55:83:c0:18:26:4d:b1:
dd:d9:08:09:f2:67:70:ff:ef:9c:94:09:0f:f4:94:ba:7c:9c:
97:ae:d9:61:54:2e:aa:6d:b0:ce:b4:8e:9c:47:c6:a1:02:82:
b7:86:a2:b5:a7:50:b9:10:08:33:2a:71:16:55:24:6a:f4:c3:
cd:ea:84:85:f7:da:9b:07:53:af:53:11:99:72:1a:f9:4c:62:
79:2f:76:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:37:58 2025 by rpki-client