Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/dfbaa2-4a27-4f3c-b9fc-fb01436a695f/1/VIhMKJu850MvygqA1ZTVPxmkdmI.roa
File: VIhMKJu850MvygqA1ZTVPxmkdmI.roa (raw, json)
Hash identifier: gWtSsSG3VierfpV5F7emBt/Ahc79ELVjuW33FiZzsrw=
Subject key identifier: 54:88:4C:28:9B:BC:E7:43:2F:CA:0A:80:D5:94:D5:3F:19:A4:76:62
Certificate issuer: /CN=5262505b488581c2ecd7582a34ece52632e3ef96
Certificate serial: 01857155454A0EFB44DDD12D38B363BCD347
Authority key identifier: 52:62:50:5B:48:85:81:C2:EC:D7:58:2A:34:EC:E5:26:32:E3:EF:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmJQW0iFgcLs11gqNOzlJjLj75Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/dfbaa2-4a27-4f3c-b9fc-fb01436a695f/1/VIhMKJu850MvygqA1ZTVPxmkdmI.roa
Signing time: Mon 02 Jan 2023 07:14:51 +0000
ROA not before: Mon 02 Jan 2023 07:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2027
IP address blocks: 2a0b:cbc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:45:4a:0e:fb:44:dd:d1:2d:38:b3:63:bc:d3:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5262505b488581c2ecd7582a34ece52632e3ef96
Validity
Not Before: Jan 2 07:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=54884c289bbce7432fca0a80d594d53f19a47662
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:14:a3:9c:d1:bf:89:6c:ac:6e:a9:d6:3f:57:
c4:7c:f4:e7:e7:43:fa:71:58:4e:8e:68:d8:89:cd:
9e:88:13:1c:c0:1a:97:6a:7d:13:59:fb:fb:60:22:
47:2b:be:0f:1c:4b:4e:b1:85:73:66:47:0e:46:ab:
77:af:42:ff:a0:7f:ef:eb:4a:d0:24:a9:27:96:cd:
23:71:78:a8:7d:d8:53:58:c2:f5:52:87:9c:97:4e:
fc:03:2c:36:c5:98:bd:36:cf:69:59:ed:02:d7:58:
b1:ea:20:00:4b:19:95:08:a1:45:c9:2c:e7:5c:f0:
a2:8e:0f:f3:ab:9c:2e:de:c4:8c:24:f9:2c:51:e8:
46:d8:ec:4a:27:b2:c6:10:b4:89:6e:22:62:93:c4:
60:61:b3:e8:86:16:d2:e8:b1:45:4b:f5:ca:88:67:
6f:dd:f1:40:5d:ee:e4:f9:3f:74:83:94:9c:d5:86:
6c:5b:8a:e4:73:83:59:25:51:ef:93:df:72:e1:3b:
69:f6:c4:31:9d:1a:4d:58:68:a8:98:93:fb:bc:f3:
88:74:6c:ca:68:d9:2d:27:cf:91:13:3f:eb:c3:5e:
c1:a5:da:8b:24:cd:66:7c:3f:b7:9a:4f:d6:db:53:
80:a4:2c:d3:06:07:53:eb:39:29:48:92:25:15:7f:
15:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:88:4C:28:9B:BC:E7:43:2F:CA:0A:80:D5:94:D5:3F:19:A4:76:62
X509v3 Authority Key Identifier:
keyid:52:62:50:5B:48:85:81:C2:EC:D7:58:2A:34:EC:E5:26:32:E3:EF:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmJQW0iFgcLs11gqNOzlJjLj75Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/dfbaa2-4a27-4f3c-b9fc-fb01436a695f/1/VIhMKJu850MvygqA1ZTVPxmkdmI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/dfbaa2-4a27-4f3c-b9fc-fb01436a695f/1/UmJQW0iFgcLs11gqNOzlJjLj75Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:cbc0::/32
Signature Algorithm: sha256WithRSAEncryption
76:8c:ab:66:c4:75:ef:52:c7:0b:19:82:8a:0e:14:4c:ee:43:
0d:bb:96:1b:81:fc:94:d8:88:03:1d:f9:1b:5e:d9:05:cb:0f:
49:61:1c:f6:33:70:a6:5d:31:74:fb:69:c6:a7:43:15:87:d3:
aa:47:da:ea:07:e9:28:4d:8f:bf:6d:22:74:4f:a5:8d:e0:78:
a9:56:97:fa:07:30:8b:c3:43:39:00:21:7b:a0:03:41:e1:c8:
38:f4:ce:56:75:32:67:c0:7d:0c:7d:f8:4a:1d:fd:74:55:24:
2f:9e:e2:1b:41:85:74:bd:c9:40:10:e5:c2:e4:14:a7:db:38:
72:da:fe:33:67:a1:71:ec:a6:10:19:f2:2f:f2:e0:6d:06:c9:
8d:7f:7e:c7:08:fc:21:de:bf:d3:53:c7:73:5e:94:12:ea:18:
66:21:66:8f:8f:4b:ff:5f:11:35:7b:b4:7a:91:88:04:a1:00:
84:46:38:ab:6c:b3:a6:62:5c:3c:73:56:02:a1:2e:8a:f5:bd:
12:4f:c4:27:3a:fb:2f:f8:15:b4:ad:c6:a2:46:87:0a:a6:ae:
71:f4:ab:2e:c3:ce:b2:eb:02:9e:fd:16:a5:e2:b4:48:65:bc:
3a:76:b7:e1:af:a8:ee:c3:e0:18:5b:4b:f4:af:21:1f:49:b2:
4f:cc:fa:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:41:17 2025 by rpki-client