Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/VinFx6x_SpYuu8vroAs-CKW1hpA.roa
File: VinFx6x_SpYuu8vroAs-CKW1hpA.roa (raw, json)
Hash identifier: Lh13iai5GYnPK9pHykABaAU65krT9k7TPtvO2y7LcWE=
Subject key identifier: 56:29:C5:C7:AC:7F:4A:96:2E:BB:CB:EB:A0:0B:3E:08:A5:B5:86:90
Certificate issuer: /CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Certificate serial: 0183D03CF00F465E8B6F6A62E2FEA331833C
Authority key identifier: 0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/VinFx6x_SpYuu8vroAs-CKW1hpA.roa
Signing time: Thu 13 Oct 2022 07:26:37 +0000
ROA not before: Thu 13 Oct 2022 07:26:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207152
IP address blocks: 37.143.0.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d0:3c:f0:0f:46:5e:8b:6f:6a:62:e2:fe:a3:31:83:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Validity
Not Before: Oct 13 07:26:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5629c5c7ac7f4a962ebbcbeba00b3e08a5b58690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b3:04:ea:ba:8f:51:5e:58:b0:32:fd:03:59:
c9:e8:a2:3c:c8:92:9d:d1:c8:a5:d7:25:73:f6:07:
64:fd:7a:29:fe:cd:1c:4d:0e:a0:4e:b1:5b:4f:74:
9e:44:f7:c3:38:de:51:78:ff:c3:91:63:b9:37:4e:
73:5c:e1:06:87:e4:34:62:82:c1:0e:47:f8:5a:68:
c5:cb:97:e3:f7:75:da:cd:c3:5d:7d:6f:05:bd:98:
5f:0b:0c:9d:76:26:86:7d:d4:44:09:d0:e7:48:0c:
cc:f0:ac:19:10:f9:11:b5:1a:83:47:68:61:fb:dd:
07:a0:73:69:2a:a4:7f:0c:5d:3c:ea:c7:e3:24:80:
40:60:1c:47:b1:20:ea:63:b2:0d:a4:de:12:d2:03:
b4:77:28:30:4a:77:fa:95:82:d9:b1:5a:39:eb:0c:
0e:f5:98:1e:0f:3a:fd:ad:3c:60:00:31:ff:30:9b:
77:fc:3c:4b:ca:5d:f2:4c:aa:0e:a4:6d:f9:de:3c:
a6:bf:14:61:47:9c:29:45:10:fa:f0:4d:df:e1:b9:
1c:69:5e:f1:99:8d:68:38:f2:d6:0e:28:1f:a3:d8:
f7:d9:3c:81:09:3d:be:59:ff:5c:35:51:c6:f9:01:
9c:f4:06:c3:cd:5d:0b:57:d6:98:d4:29:d4:30:5b:
80:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:29:C5:C7:AC:7F:4A:96:2E:BB:CB:EB:A0:0B:3E:08:A5:B5:86:90
X509v3 Authority Key Identifier:
keyid:0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/VinFx6x_SpYuu8vroAs-CKW1hpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.143.0.0/22
Signature Algorithm: sha256WithRSAEncryption
51:96:f3:e4:ce:6f:06:86:81:1c:32:c0:f5:60:f8:23:cb:14:
0b:eb:43:30:c0:24:41:a9:fc:4c:50:d8:75:af:32:46:88:49:
8f:46:62:ff:22:8f:42:59:5b:f3:94:16:e6:c3:89:e8:8a:a6:
46:eb:3e:62:94:bc:55:bc:fc:6c:5a:1c:af:4b:2b:ad:37:7c:
71:1c:be:63:a2:5f:96:0f:3c:25:1d:62:55:7e:eb:09:02:25:
9e:a6:31:76:c4:d8:ed:18:0a:a2:59:dc:f4:80:66:dc:d1:8a:
ce:3b:dd:a3:08:35:cb:20:b3:a9:be:09:4c:56:a7:d7:a1:59:
07:34:27:f3:50:56:0a:44:3b:45:84:c5:71:61:62:49:75:b1:
0d:0f:ad:ea:14:3f:5c:dd:4f:82:68:85:30:46:8a:6e:95:39:
46:1f:26:31:84:f9:13:cd:3f:bf:8f:0a:ba:57:f4:a3:91:57:
ab:db:8a:c9:44:04:25:0c:f3:fb:36:03:e5:cc:91:29:9b:55:
c0:90:86:e2:b5:68:48:71:bd:3d:20:92:3a:72:40:38:93:a1:
33:ae:9d:6d:00:0d:9d:f7:1a:83:a2:89:af:df:aa:90:82:4b:
fe:01:f8:46:a1:d8:8a:74:9c:39:07:77:1d:ae:59:56:65:8d:
d5:7b:90:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:48:45 2025 by rpki-client