Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/VVOhuu9s888YmAImmt661T27ExY.roa
File: VVOhuu9s888YmAImmt661T27ExY.roa (raw, json)
Hash identifier: xvXDRGxDo0olRaB75AG+A63xadqKV5D8yugPrYwrbaE=
Subject key identifier: 55:53:A1:BA:EF:6C:F3:CF:18:98:02:26:9A:DE:BA:D5:3D:BB:13:16
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 0183EA13D5F867754D9640C213DEF185B237
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/VVOhuu9s888YmAImmt661T27ExY.roa
Signing time: Tue 18 Oct 2022 07:51:51 +0000
ROA not before: Tue 18 Oct 2022 07:51:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42878
IP address blocks: 93.152.214.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ea:13:d5:f8:67:75:4d:96:40:c2:13:de:f1:85:b2:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Oct 18 07:51:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5553a1baef6cf3cf189802269adebad53dbb1316
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:37:26:52:9c:02:38:72:ef:30:e3:e5:81:c9:
85:f7:86:da:e3:2d:85:e1:ed:7f:e8:1d:7f:0b:e9:
5f:4a:ad:bf:8f:1e:d4:91:3c:51:5d:e6:a2:71:6d:
9f:cb:d3:bb:fa:4e:b5:03:81:dd:eb:5c:c4:65:7b:
39:31:49:07:6a:83:de:c0:7c:7e:9b:84:b0:9a:ec:
67:c1:06:f7:b9:0b:30:4c:68:76:a9:66:d5:59:29:
13:5f:12:e0:72:e7:2e:ce:5b:e0:b9:dd:dd:23:ee:
bb:da:46:1d:a3:ea:ef:ed:72:fb:6d:84:11:8b:bf:
59:00:22:7b:5e:d7:d9:38:12:21:82:7e:08:03:9b:
5b:6d:66:b6:0e:73:99:78:d6:6b:4a:78:1f:89:a3:
a8:bb:79:f1:f2:ed:46:b8:8f:a4:25:6e:c5:7b:95:
d3:d1:97:9b:d9:b1:df:89:f6:97:b3:7e:3c:b2:c8:
6f:ba:9a:2e:8f:ef:55:4c:19:d6:65:76:36:1f:1c:
0d:d3:eb:db:ee:39:d6:6a:46:e6:9e:83:7c:bb:22:
18:97:4f:23:8a:4b:ce:54:49:88:83:3a:ad:46:04:
7a:90:6a:fe:cd:1f:e4:3d:21:10:37:1e:d5:ba:d2:
02:d6:cc:ef:7e:de:3c:ee:e5:74:58:fa:59:f5:ce:
c9:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:53:A1:BA:EF:6C:F3:CF:18:98:02:26:9A:DE:BA:D5:3D:BB:13:16
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/VVOhuu9s888YmAImmt661T27ExY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.152.214.0/24
Signature Algorithm: sha256WithRSAEncryption
40:61:ee:2f:c0:1b:7d:42:1e:ec:fa:c4:46:0e:4c:43:ad:74:
f4:0f:1f:43:32:48:55:cf:33:c9:6a:6d:76:07:79:f7:cf:c7:
f3:ec:3b:1d:c7:55:e0:bd:ff:58:41:c6:14:93:15:f3:9d:fe:
24:46:ec:f1:42:1c:67:a8:ad:c2:9e:67:89:9b:98:f6:1c:d7:
25:3a:a2:3c:92:45:ed:c6:3e:d2:7e:5d:75:e4:07:07:fb:4f:
c6:cc:4d:f6:87:f0:e4:bc:e7:a1:fa:22:8e:33:7d:1c:eb:01:
36:4b:d1:b4:45:c3:7a:48:57:d3:e5:d9:b2:13:a0:18:9e:9a:
a7:04:0b:29:2d:e7:b6:ff:c0:67:d7:10:1e:2f:9e:47:9a:31:
f6:ea:b2:63:2a:b7:4c:0d:83:6b:9e:85:bf:93:cd:5d:bd:bf:
7f:73:76:0f:b5:c4:8a:fe:7f:89:bd:0b:dd:f8:ff:12:33:a3:
43:be:02:82:9d:22:d8:fd:7f:19:f6:9f:cb:23:60:a0:91:65:
8f:f5:c8:e2:61:5b:d0:d2:2e:de:24:23:77:38:dd:e9:13:42:
fb:00:55:77:5f:35:67:aa:ac:f1:f9:30:83:1e:22:33:94:0c:
6a:a9:cd:05:e8:db:29:bb:91:1c:8d:66:37:fe:fd:c3:de:df:
bd:d3:30:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 23:51:24 2025 by rpki-client