Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/742370-e10f-4541-aa6c-61afb66d1e8c/1/VbTQLhDkMr4dr_oOoYjOsfdobEA.roa
File: VbTQLhDkMr4dr_oOoYjOsfdobEA.roa (raw, json)
Hash identifier: Is1VE6IhVhCMfJuBeX8G0vfAHBmVlXvsS3SlwT8Ttzg=
Subject key identifier: 55:B4:D0:2E:10:E4:32:BE:1D:AF:FA:0E:A1:88:CE:B1:F7:68:6C:40
Certificate issuer: /CN=19ee5f16fc144acb98977449faa0ab77de1bdcc9
Certificate serial: 01886C9A327E741AEEE375594CAE3313AA82
Authority key identifier: 19:EE:5F:16:FC:14:4A:CB:98:97:74:49:FA:A0:AB:77:DE:1B:DC:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ge5fFvwUSsuYl3RJ-qCrd94b3Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/742370-e10f-4541-aa6c-61afb66d1e8c/1/VbTQLhDkMr4dr_oOoYjOsfdobEA.roa
Signing time: Tue 30 May 2023 12:20:24 +0000
ROA not before: Tue 30 May 2023 12:20:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8961
IP address blocks: 2001:8f8:d002::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:6c:9a:32:7e:74:1a:ee:e3:75:59:4c:ae:33:13:aa:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19ee5f16fc144acb98977449faa0ab77de1bdcc9
Validity
Not Before: May 30 12:20:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=55b4d02e10e432be1daffa0ea188ceb1f7686c40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:18:d4:16:00:03:4e:4c:10:9a:da:51:fc:ea:
27:7a:af:ef:9e:20:93:e8:15:57:81:4a:55:e1:88:
82:c9:51:39:9d:82:38:ea:8d:2b:72:e8:79:6b:fe:
1c:7b:51:67:e8:29:57:28:49:71:e7:e2:8f:4c:55:
03:34:a1:5e:bf:64:00:dd:9b:6c:8d:6d:b7:e0:35:
45:55:c2:54:3c:e5:d2:7b:10:c8:e4:fa:db:a6:ef:
c5:91:1e:76:91:33:30:98:3e:8a:6b:2b:ce:04:a0:
6e:7c:bf:7a:1f:df:4c:27:4d:23:cc:2d:ca:4a:2a:
f6:5a:34:3f:66:74:d4:0a:0c:9e:41:24:f3:7f:de:
b0:7f:0b:a6:57:e6:06:2b:33:79:84:e1:0c:eb:10:
d1:54:52:6f:7e:c9:6c:6d:e8:57:2e:62:67:59:73:
0d:2d:89:15:4f:26:a5:4f:80:b3:68:d6:94:41:66:
fe:38:b0:a7:94:a9:4e:69:fc:8b:97:3f:50:5c:b1:
df:5f:c6:e2:24:02:90:c5:31:7f:6e:02:bd:54:a7:
c3:37:0e:8a:07:b9:cf:9b:ce:84:cf:c6:43:2d:c1:
91:de:70:e4:8a:b7:a9:08:8c:3d:90:95:be:8f:6e:
0d:9b:80:d3:1d:bf:88:e6:a1:8e:c8:e7:96:4a:1e:
81:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:B4:D0:2E:10:E4:32:BE:1D:AF:FA:0E:A1:88:CE:B1:F7:68:6C:40
X509v3 Authority Key Identifier:
keyid:19:EE:5F:16:FC:14:4A:CB:98:97:74:49:FA:A0:AB:77:DE:1B:DC:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ge5fFvwUSsuYl3RJ-qCrd94b3Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/742370-e10f-4541-aa6c-61afb66d1e8c/1/VbTQLhDkMr4dr_oOoYjOsfdobEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/742370-e10f-4541-aa6c-61afb66d1e8c/1/Ge5fFvwUSsuYl3RJ-qCrd94b3Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:8f8:d002::/48
Signature Algorithm: sha256WithRSAEncryption
23:77:75:e6:54:fe:b2:f9:86:f5:0d:d6:67:80:72:f6:62:fa:
d3:ad:f7:45:e1:81:04:e7:51:f0:84:ae:a7:09:8f:9d:39:ed:
3d:33:23:e3:47:ad:a8:9b:57:7f:0a:19:32:fc:c7:9d:63:41:
f8:d3:ef:5b:21:a5:46:c4:2a:89:94:4e:4e:f1:78:7c:3f:20:
36:83:43:35:69:93:ce:e1:2f:eb:21:58:fe:a2:38:4e:95:58:
93:ab:36:3b:7b:36:4b:87:c0:ed:e5:71:0f:76:7f:df:e7:f5:
16:66:86:42:e5:a8:6e:23:a3:2b:68:a2:fc:a5:97:9c:8d:31:
d4:95:31:ff:b9:88:f4:59:92:92:ff:d9:20:96:48:3e:3b:98:
78:5b:e9:50:01:8f:10:e9:cb:32:76:1b:cc:42:e5:4d:15:80:
cf:38:f3:c6:70:44:a0:99:cf:46:26:bc:b6:e6:3f:a7:48:ea:
0e:4f:41:9d:23:04:22:11:98:a0:ab:fc:ff:b6:e4:63:cb:7b:
0e:cf:e5:f6:55:cf:b9:27:3e:af:ef:dc:cd:4b:7a:7e:b6:8f:
54:23:28:be:da:13:d2:d5:d3:20:4f:3f:78:e6:a8:cd:4e:0a:
ba:23:e0:57:fc:74:20:eb:3a:e9:03:23:09:21:19:d7:97:1b:
42:c5:6e:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 05:32:44 2025 by rpki-client