Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/439efe-f130-4931-931c-c8d5c04e3d43/1/VB_6KC74SdgvognzqtJPzEmelXU.roa
File: VB_6KC74SdgvognzqtJPzEmelXU.roa (raw, json)
Hash identifier: 3Bg0oBBkBTg/H32WEkRnQUgc8O/I4Rdn72s7dXz7L7Q=
Subject key identifier: 54:1F:FA:28:2E:F8:49:D8:2F:A2:09:F3:AA:D2:4F:CC:49:9E:95:75
Certificate issuer: /CN=cc4491558cd24875db524273410502fdae3a6782
Certificate serial: 343EA859
Authority key identifier: CC:44:91:55:8C:D2:48:75:DB:52:42:73:41:05:02:FD:AE:3A:67:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zESRVYzSSHXbUkJzQQUC_a46Z4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/439efe-f130-4931-931c-c8d5c04e3d43/1/VB_6KC74SdgvognzqtJPzEmelXU.roa
Signing time: Sat 01 Jan 2022 14:58:29 +0000
ROA not before: Sat 01 Jan 2022 14:58:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60724
IP address blocks: 185.7.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 876521561 (0x343ea859)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc4491558cd24875db524273410502fdae3a6782
Validity
Not Before: Jan 1 14:58:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=541ffa282ef849d82fa209f3aad24fcc499e9575
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:66:81:14:6c:08:08:0c:c5:61:ad:0d:39:49:
6b:81:9c:a8:95:43:53:af:56:4d:19:0c:df:06:b0:
ec:d1:b4:b9:c5:0f:ee:47:f8:82:1a:51:f4:b7:e6:
b6:40:89:bc:2f:c7:3c:fa:a9:f8:0d:44:82:d3:e3:
32:86:bb:13:1b:d4:22:97:47:38:74:fa:e5:ce:d2:
8e:19:38:41:37:f4:90:6b:38:2a:55:97:6c:ee:39:
82:ba:fe:c8:88:50:59:5a:64:75:e9:7f:23:73:82:
9e:32:3d:32:a5:63:2b:0a:28:f2:57:e9:7d:18:67:
42:d9:e7:d1:6c:a1:98:39:00:5f:3e:30:11:e6:4d:
f0:4c:8a:ee:2e:df:89:d4:0d:33:34:43:51:41:ef:
d4:c0:ec:a5:85:c5:e4:ad:19:be:86:ae:e1:9c:57:
d8:50:1b:23:c1:ce:dc:88:35:7a:77:7c:9a:06:81:
85:c9:56:58:44:ff:e2:3b:15:d0:b9:6a:0a:93:ff:
84:bc:c1:81:e6:0c:6e:d8:f5:99:a0:5f:f3:ab:95:
f6:0b:16:42:bc:2e:c5:b6:c1:92:a6:df:8a:02:fd:
db:6d:01:84:73:d5:2f:12:75:27:8c:b5:43:f1:6d:
cc:ce:5a:81:41:dc:64:be:ec:44:6f:23:1f:21:92:
85:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:1F:FA:28:2E:F8:49:D8:2F:A2:09:F3:AA:D2:4F:CC:49:9E:95:75
X509v3 Authority Key Identifier:
keyid:CC:44:91:55:8C:D2:48:75:DB:52:42:73:41:05:02:FD:AE:3A:67:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zESRVYzSSHXbUkJzQQUC_a46Z4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/439efe-f130-4931-931c-c8d5c04e3d43/1/VB_6KC74SdgvognzqtJPzEmelXU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/439efe-f130-4931-931c-c8d5c04e3d43/1/zESRVYzSSHXbUkJzQQUC_a46Z4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.7.44.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:eb:3c:f7:b8:04:30:81:8d:ce:7a:23:4e:b5:f3:58:7f:8a:
59:30:f9:07:62:8a:3c:c7:87:bf:fc:54:96:62:73:da:33:5a:
ea:73:83:77:4b:6f:4f:be:14:df:4e:3c:e8:97:a8:55:d3:42:
74:1c:3f:27:06:6c:5f:44:df:4f:bd:43:5f:fc:43:5d:94:7a:
3d:c5:ed:c2:29:cf:4e:82:27:a8:06:c6:be:a3:66:20:71:08:
cb:bd:1d:d3:bc:92:de:3b:0e:71:b0:f2:d3:98:b2:d9:d2:4c:
9b:ac:4e:4c:c4:24:9f:a5:ab:0f:85:ad:80:4b:84:eb:e2:de:
5b:67:9a:11:f1:be:b0:85:19:d6:24:d0:51:e4:12:82:ff:0c:
cb:5b:df:5d:07:06:9a:2e:cb:ae:3f:ce:52:3a:d9:4d:fb:9f:
2c:31:36:76:53:bf:ef:b2:1b:20:bf:89:f4:f3:28:03:e7:cc:
ca:c3:14:37:6b:4b:05:bd:21:de:f8:4a:2c:a1:1b:59:20:5e:
a8:bc:14:ff:e1:c6:44:d7:5d:0e:38:1c:a0:89:99:fa:81:d3:
38:28:68:31:a8:9c:e2:e5:a7:a9:9a:fa:45:56:1f:11:6d:d7:
22:d2:d7:f1:6e:09:0d:e1:04:39:ac:15:ed:24:da:9a:a8:60:
d1:af:5a:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:50 2023 by rpki-client on console-fra.rpki-client.org