Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/c5bb6b-6425-453a-b942-89c53d630765/1/v_Aqmnjmtd1izcERmSt9avynBiQ.roa
File: v_Aqmnjmtd1izcERmSt9avynBiQ.roa (raw, json)
Hash identifier: +hjvEkYd+u8XTrBq0UhyH7JwUA2VIzFJRnB7J9SIuUM=
Subject key identifier: BF:F0:2A:9A:78:E6:B5:DD:62:CD:C1:11:99:2B:7D:6A:FC:A7:06:24
Certificate issuer: /CN=53550b2382e00fa7df194e6485fe1425836213ff
Certificate serial: 01D5D2
Authority key identifier: 53:55:0B:23:82:E0:0F:A7:DF:19:4E:64:85:FE:14:25:83:62:13:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1ULI4LgD6ffGU5khf4UJYNiE_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/c5bb6b-6425-453a-b942-89c53d630765/1/v_Aqmnjmtd1izcERmSt9avynBiQ.roa
Signing time: Thu 24 Feb 2022 11:15:36 +0000
ROA not before: Thu 24 Feb 2022 11:15:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13244
IP address blocks: 194.153.171.0/24 maxlen: 24
194.9.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120274 (0x1d5d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53550b2382e00fa7df194e6485fe1425836213ff
Validity
Not Before: Feb 24 11:15:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bff02a9a78e6b5dd62cdc111992b7d6afca70624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:cd:a5:e8:b6:d5:0c:38:8b:31:0c:8f:b3:b8:
c8:b8:41:35:7a:be:a1:6c:c8:0c:85:74:ca:ba:40:
c9:b5:db:55:37:62:35:f6:41:ff:3a:2c:f1:42:cb:
21:52:cf:39:4c:66:30:70:d8:ad:68:6f:0b:e6:2b:
78:45:62:11:7f:33:fe:60:85:2a:88:e4:22:f7:f1:
ec:72:fa:76:65:34:3a:a9:c0:35:1f:29:f7:d7:ec:
56:c5:5a:a0:fb:1e:07:b8:0e:1a:3a:64:3e:a1:a1:
ad:eb:52:6d:3b:db:0d:cf:00:28:2e:81:7c:35:d6:
f4:5c:8c:0b:4a:b3:ff:e7:1f:74:4f:ea:a8:24:8c:
fa:82:df:d0:02:e2:ca:c2:64:a9:f4:bd:81:cb:f6:
85:b3:3b:2f:9e:84:5c:2a:74:52:6a:9b:b0:21:81:
71:bd:9c:6d:f3:7e:f7:17:0c:f0:d6:cb:5f:77:cb:
65:0f:26:c2:41:4e:04:cb:0f:8d:e9:51:8b:98:f9:
c2:a5:67:53:10:41:92:95:12:b1:2a:d7:2d:9a:a9:
9e:a6:87:35:09:ad:2c:be:03:62:0b:ae:f3:f4:66:
bb:06:69:6c:15:b2:b2:15:61:68:5b:8b:27:96:9e:
08:41:57:f0:e1:86:6b:2a:03:07:3c:56:c2:6a:0a:
e5:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:F0:2A:9A:78:E6:B5:DD:62:CD:C1:11:99:2B:7D:6A:FC:A7:06:24
X509v3 Authority Key Identifier:
keyid:53:55:0B:23:82:E0:0F:A7:DF:19:4E:64:85:FE:14:25:83:62:13:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1ULI4LgD6ffGU5khf4UJYNiE_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/c5bb6b-6425-453a-b942-89c53d630765/1/v_Aqmnjmtd1izcERmSt9avynBiQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/c5bb6b-6425-453a-b942-89c53d630765/1/U1ULI4LgD6ffGU5khf4UJYNiE_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.9.170.0/24
194.153.171.0/24
Signature Algorithm: sha256WithRSAEncryption
84:35:b4:14:07:a3:a3:33:bd:1a:7d:44:84:49:21:54:7a:fd:
0b:7b:35:77:04:42:18:9f:b6:0b:b9:07:da:6c:ee:ea:41:29:
ff:a3:70:a5:31:3b:9e:d8:68:19:e0:e7:bd:80:e7:01:15:5c:
26:c7:de:1e:3a:16:56:f4:7b:80:56:21:2f:1f:99:86:7e:1c:
d9:a9:8b:6c:89:c3:85:31:c5:1d:4f:94:c0:4c:bf:aa:97:a0:
c4:ad:2e:95:b2:2b:12:0e:d0:a2:bc:ff:32:d6:50:72:4d:5e:
84:30:98:7b:6a:39:9c:26:71:f3:38:d0:89:71:84:3a:76:8c:
41:60:ed:76:26:35:55:b3:98:e9:25:d1:6f:28:a7:b3:0e:d1:
73:85:75:3e:dc:10:6f:25:e7:7a:bf:b0:50:6b:69:a3:42:9e:
30:a8:6f:5b:cf:fe:eb:45:d9:e1:91:5d:16:95:bd:7e:73:f8:
c1:a2:68:de:06:65:ee:a2:3a:c1:20:b8:7b:36:06:e2:55:a8:
65:db:ec:23:74:0a:a8:09:5f:dc:35:5b:1d:cb:f3:1c:88:3e:
c1:5a:eb:fd:1d:7c:27:25:6b:c6:70:fe:09:7b:18:f7:4a:80:
cb:0b:b6:53:40:cc:f5:ca:69:d9:85:86:b8:97:5a:2a:ea:12:
6c:7a:c0:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:08:27 2025 by rpki-client