Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/066221-0eeb-42d9-9c07-fc69e0bca622/1/vBmuudf56tY15OLFSc891PjAthE.roa
File: vBmuudf56tY15OLFSc891PjAthE.roa (raw, json)
Hash identifier: nhjH3p6RIS50yiCgj2smejvAVcoJHRe6HdVXGp/U/c4=
Subject key identifier: BC:19:AE:B9:D7:F9:EA:D6:35:E4:E2:C5:49:CF:3D:D4:F8:C0:B6:11
Certificate issuer: /CN=1b21dbffb192e14919cfe2786baf44840c3aca3c
Certificate serial: 01856E541A73816A1ED568DDAF22707C7DCF
Authority key identifier: 1B:21:DB:FF:B1:92:E1:49:19:CF:E2:78:6B:AF:44:84:0C:3A:CA:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GyHb_7GS4UkZz-J4a69EhAw6yjw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/066221-0eeb-42d9-9c07-fc69e0bca622/1/vBmuudf56tY15OLFSc891PjAthE.roa
Signing time: Sun 01 Jan 2023 17:14:43 +0000
ROA not before: Sun 01 Jan 2023 17:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203348
IP address blocks: 193.201.166.0/24 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:54:1a:73:81:6a:1e:d5:68:dd:af:22:70:7c:7d:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b21dbffb192e14919cfe2786baf44840c3aca3c
Validity
Not Before: Jan 1 17:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bc19aeb9d7f9ead635e4e2c549cf3dd4f8c0b611
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:5f:53:e3:ba:2f:f0:10:23:f8:84:ca:0a:40:
cc:76:ec:7f:f7:66:f5:fb:72:51:71:f1:37:a7:1a:
ec:dc:aa:a4:45:a8:cd:4c:c3:91:84:84:74:45:43:
cb:31:39:b6:0a:d1:7d:0f:ec:22:3d:c0:39:9f:c9:
08:fc:81:3c:84:cc:62:d0:a7:81:37:34:f5:9d:c5:
87:de:f2:cb:e6:c8:62:be:be:db:10:c2:36:ff:93:
51:1c:31:bc:53:a4:74:7a:aa:1f:70:3e:e3:f7:d3:
21:bb:e9:5f:45:9e:92:d9:88:76:ec:ba:9c:01:e1:
7e:0f:8c:60:6e:bd:96:6e:a1:e3:7a:32:38:af:b5:
43:de:48:55:4a:00:80:50:1d:90:af:ed:6e:72:3e:
91:df:78:31:b1:f3:d1:da:25:90:28:2a:71:41:b8:
1d:a8:14:ed:b0:75:32:cf:9c:33:c0:1e:04:09:65:
10:96:24:35:15:25:ab:68:47:e7:36:b5:0b:6f:57:
2e:31:21:5c:83:41:8a:52:7c:ff:f0:f3:d3:ef:9f:
0d:32:8d:52:61:fd:c5:0c:f3:4d:91:8f:74:2a:d7:
54:49:c2:35:e4:33:56:bb:61:b4:bb:9f:f3:91:3f:
b1:bd:f1:73:b4:5d:a7:43:72:54:0f:79:e7:e9:c1:
8c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:19:AE:B9:D7:F9:EA:D6:35:E4:E2:C5:49:CF:3D:D4:F8:C0:B6:11
X509v3 Authority Key Identifier:
keyid:1B:21:DB:FF:B1:92:E1:49:19:CF:E2:78:6B:AF:44:84:0C:3A:CA:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GyHb_7GS4UkZz-J4a69EhAw6yjw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/066221-0eeb-42d9-9c07-fc69e0bca622/1/vBmuudf56tY15OLFSc891PjAthE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/066221-0eeb-42d9-9c07-fc69e0bca622/1/GyHb_7GS4UkZz-J4a69EhAw6yjw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.201.166.0/24
Signature Algorithm: sha256WithRSAEncryption
10:46:d1:3d:b0:fb:a8:3f:42:d7:f7:15:a0:e9:c0:6d:63:f9:
5d:28:42:2a:1e:20:5a:53:3c:fc:fe:18:1d:3d:56:c2:2f:c7:
04:34:72:1a:b9:06:97:33:ad:bb:c5:9d:7f:79:79:50:17:3d:
c9:fd:63:a1:b0:dd:6b:20:c5:ea:ad:31:06:28:d9:d6:3e:89:
cf:db:9a:7b:5c:b2:86:2e:f0:67:12:c0:9c:9f:99:35:f0:e7:
92:fc:67:14:e6:de:bd:e3:43:4d:94:71:77:56:21:a5:10:b7:
0b:3d:59:5d:bc:97:ea:b1:38:d7:c3:4d:fe:a4:8b:2a:c7:0b:
86:1d:b8:8e:e8:be:65:17:52:c0:1d:85:e5:21:ee:92:84:37:
3d:44:96:5c:82:12:5e:26:06:9a:b1:7a:fb:39:13:76:ea:23:
5c:d2:6c:87:f7:c3:ab:e2:3e:a1:b8:6a:cf:45:fd:a8:42:6f:
ea:77:f7:ec:ed:4c:9b:33:51:fa:29:9e:17:50:14:66:2b:7a:
d9:16:7c:f4:9e:7c:9f:6d:1e:d7:48:9f:ad:6d:4a:c4:42:11:
16:fe:66:a7:ea:d2:30:65:46:5f:4e:30:6e:01:60:31:8c:c9:
c2:d7:af:ff:e2:d6:20:1d:27:a5:bd:65:8e:2a:22:c4:91:86:
3c:73:29:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:34:09 2025 by rpki-client