Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/4dffb0-199a-4c5e-ac91-86fe36ca0b74/1/VveCAn6yhUvxLIA4Ly20KYjZjck.roa
File: VveCAn6yhUvxLIA4Ly20KYjZjck.roa (raw, json)
Hash identifier: M7WfJcOEPqaMwoLqwvWR4KhIZfbTf/Iz8IeLMUe65n4=
Subject key identifier: 56:F7:82:02:7E:B2:85:4B:F1:2C:80:38:2F:2D:B4:29:88:D9:8D:C9
Certificate issuer: /CN=041359da0d0b7a829e420fd932cafc1e3c1572de
Certificate serial: 04EB15F0
Authority key identifier: 04:13:59:DA:0D:0B:7A:82:9E:42:0F:D9:32:CA:FC:1E:3C:15:72:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BBNZ2g0LeoKeQg_ZMsr8HjwVct4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/4dffb0-199a-4c5e-ac91-86fe36ca0b74/1/VveCAn6yhUvxLIA4Ly20KYjZjck.roa
Signing time: Sat 01 Jan 2022 10:54:56 +0000
ROA not before: Sat 01 Jan 2022 10:54:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207853
IP address blocks: 91.210.152.0/24 maxlen: 24
2a07:b1c0::/29 maxlen: 48
2001:678:b9c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82515440 (0x4eb15f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=041359da0d0b7a829e420fd932cafc1e3c1572de
Validity
Not Before: Jan 1 10:54:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56f782027eb2854bf12c80382f2db42988d98dc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:8d:bb:af:92:fe:d9:36:04:00:5c:9c:bd:e6:
da:12:0b:fa:e2:5f:cb:f6:85:01:d6:52:4f:49:39:
20:fc:4c:2d:ca:76:73:bd:a8:f9:85:3c:11:ac:7a:
56:ab:96:90:e4:73:40:86:6e:af:0c:7e:b5:7c:55:
e2:cd:21:24:f5:eb:a1:b7:95:e9:e5:85:98:cb:e5:
af:a4:55:06:ae:ae:55:68:c7:ed:0c:19:68:a0:0b:
2e:9e:ba:81:e5:83:a4:75:be:5d:e2:f8:ad:09:15:
76:e7:06:f2:90:4f:dd:bd:49:ae:cd:8e:92:c3:8a:
de:11:c2:ea:eb:3c:8c:f3:12:8d:bd:04:9a:90:da:
b0:fa:fa:b5:ac:ad:b5:dc:fa:bf:11:15:86:62:9f:
6c:eb:98:5e:77:a6:5c:77:9b:36:b5:b3:68:50:f4:
24:55:e1:0c:7a:3a:94:aa:fe:e0:f2:57:a2:86:3d:
91:a1:c0:55:b8:f3:d7:3a:05:ac:bd:ba:a8:09:ac:
8c:14:27:fb:20:fc:9c:dd:e2:24:11:0c:1f:25:44:
1b:29:c0:52:69:8c:b1:ca:2e:ab:77:a1:da:0d:9c:
52:91:71:92:27:ba:06:6a:1c:3c:28:58:86:cf:42:
8e:2d:3b:8c:22:12:17:46:28:90:0a:72:95:ac:8b:
3e:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:F7:82:02:7E:B2:85:4B:F1:2C:80:38:2F:2D:B4:29:88:D9:8D:C9
X509v3 Authority Key Identifier:
keyid:04:13:59:DA:0D:0B:7A:82:9E:42:0F:D9:32:CA:FC:1E:3C:15:72:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BBNZ2g0LeoKeQg_ZMsr8HjwVct4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/4dffb0-199a-4c5e-ac91-86fe36ca0b74/1/VveCAn6yhUvxLIA4Ly20KYjZjck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/4dffb0-199a-4c5e-ac91-86fe36ca0b74/1/BBNZ2g0LeoKeQg_ZMsr8HjwVct4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.210.152.0/24
IPv6:
2001:678:b9c::/48
2a07:b1c0::/29
Signature Algorithm: sha256WithRSAEncryption
12:76:13:4e:30:5a:6e:df:43:48:53:ee:b0:33:a5:50:3b:29:
54:ba:df:44:01:2f:5b:47:63:7d:d6:7c:9c:8a:4c:51:ec:2e:
ae:6f:b4:dc:ee:46:5b:ef:01:7b:85:ac:39:69:c9:95:aa:59:
77:7e:3a:48:69:1c:11:ac:ca:d9:97:c2:19:a8:34:8f:1f:20:
c8:b0:32:9a:94:f6:71:8b:be:34:c1:5c:f1:fc:01:eb:bd:ed:
ab:88:69:df:3e:2a:4f:14:30:b8:27:cd:dc:c7:f5:e3:5b:14:
89:e1:fe:e2:2e:b9:71:88:5d:eb:6c:3f:2f:e2:ad:7b:5b:02:
ab:29:f9:18:bc:86:af:fc:62:75:b3:5e:95:d7:a0:88:d5:a5:
95:9f:26:c8:a2:09:7d:ee:d7:2a:d6:0f:56:67:d1:4b:d4:cd:
fb:f1:ea:49:f0:1a:7a:5c:44:e9:fa:33:b1:ff:4a:69:eb:34:
a9:ea:b9:10:1b:fc:f2:6c:84:19:db:7f:fb:bf:21:16:46:2c:
39:dc:7d:5b:28:4a:df:c4:df:2b:c0:ce:31:06:39:ba:04:ee:
78:17:1c:28:a4:56:82:0d:54:d4:ca:27:7d:6d:6a:b1:cd:5a:
fa:37:62:fc:e1:be:42:d3:56:d3:14:be:05:67:4e:73:75:f2:
8a:e9:c8:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:27:55 2025 by rpki-client