Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/b5090a-ec58-46db-9dd9-5485682a05f5/1/verg1JUvgFmL5_aUjNjmGb5-VVU.roa
File: verg1JUvgFmL5_aUjNjmGb5-VVU.roa (raw, json)
Hash identifier: fqZeyDa+tnoCr4T7G13RutAQrNbEMw42xeS2Vl72ZR8=
Subject key identifier: BD:EA:E0:D4:95:2F:80:59:8B:E7:F6:94:8C:D8:E6:19:BE:7E:55:55
Certificate issuer: /CN=149d1f67a41ca2e405017cbe48bafff1733e3869
Certificate serial: 06A621BC
Authority key identifier: 14:9D:1F:67:A4:1C:A2:E4:05:01:7C:BE:48:BA:FF:F1:73:3E:38:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FJ0fZ6QcouQFAXy-SLr_8XM-OGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/b5090a-ec58-46db-9dd9-5485682a05f5/1/verg1JUvgFmL5_aUjNjmGb5-VVU.roa
Signing time: Sat 01 Jan 2022 10:03:39 +0000
ROA not before: Sat 01 Jan 2022 10:03:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21100
IP address blocks: 93.88.75.0/24 maxlen: 24
185.162.8.0/24 maxlen: 24
31.210.172.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111550908 (0x6a621bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=149d1f67a41ca2e405017cbe48bafff1733e3869
Validity
Not Before: Jan 1 10:03:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bdeae0d4952f80598be7f6948cd8e619be7e5555
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f6:c5:84:f2:36:7d:9a:d7:18:c0:7a:72:8d:
a5:ea:4a:ea:f7:12:fd:7d:e7:8f:8a:94:29:d6:de:
68:3d:d7:66:5b:7c:7c:40:73:31:b5:40:e2:37:c2:
73:2b:b8:4c:06:1c:e8:fa:f5:94:ef:33:74:8f:fc:
c4:51:aa:54:5e:78:e4:df:ef:d6:cb:3c:29:19:4b:
4f:1f:a7:12:92:1f:aa:07:74:36:17:b8:a5:7e:08:
5d:48:51:4a:5e:4e:d2:26:a8:18:9a:0c:0d:a9:5b:
80:76:a6:e6:56:00:91:80:54:25:af:e3:1c:23:1b:
79:93:6e:36:36:b8:48:fb:87:63:0b:ec:28:8b:22:
a2:fd:1b:2d:45:fb:72:f6:74:35:0c:a8:7e:8e:81:
65:b7:1a:48:a0:c7:24:c8:b3:35:6e:69:3b:b3:33:
9e:e6:89:8f:76:05:70:be:2b:37:14:c3:37:86:16:
1f:05:c0:86:1d:98:a8:2c:43:14:e0:49:c5:40:08:
2d:c7:19:3e:ef:fc:16:d2:df:a6:40:dd:77:2e:b7:
96:70:6f:a6:25:7e:44:2c:32:b9:89:37:70:68:2f:
df:78:19:f2:62:37:d5:8e:b8:f3:28:85:f3:75:c1:
d5:e0:98:ac:c7:c3:20:93:17:18:3f:c6:54:f1:85:
d3:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:EA:E0:D4:95:2F:80:59:8B:E7:F6:94:8C:D8:E6:19:BE:7E:55:55
X509v3 Authority Key Identifier:
keyid:14:9D:1F:67:A4:1C:A2:E4:05:01:7C:BE:48:BA:FF:F1:73:3E:38:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FJ0fZ6QcouQFAXy-SLr_8XM-OGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/b5090a-ec58-46db-9dd9-5485682a05f5/1/verg1JUvgFmL5_aUjNjmGb5-VVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/b5090a-ec58-46db-9dd9-5485682a05f5/1/FJ0fZ6QcouQFAXy-SLr_8XM-OGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.172.0/24
93.88.75.0/24
185.162.8.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:e1:ed:7d:af:0a:19:37:15:20:62:f9:11:4a:76:4f:63:bf:
df:e2:cb:46:12:11:cb:8b:b8:23:dd:22:3f:98:4f:0b:f1:ed:
36:ce:44:9c:27:b5:7b:ba:ff:9b:ab:b1:1d:bd:46:19:63:92:
7a:3c:d7:15:ad:08:1e:e8:ce:ba:5d:d3:98:96:76:ab:c6:a1:
99:8e:e1:0d:8c:27:d9:cc:16:c8:44:e2:d1:c6:8b:58:b3:92:
d4:d5:56:b3:5c:e7:06:c4:ab:b4:60:71:0a:8a:8d:ee:f4:59:
e7:f1:3d:cd:02:ec:d0:97:53:bf:61:b6:38:03:b2:3e:26:90:
a9:d5:3f:5d:23:5f:f7:43:13:c7:04:67:95:13:ed:b2:47:6f:
11:45:33:4c:7f:e3:b9:9a:d5:e2:bf:de:ee:06:57:dc:db:5a:
e8:bb:e5:a0:73:c1:7f:0d:8d:6c:21:cf:83:15:58:36:d0:b2:
de:18:e1:21:af:16:5d:d6:08:66:73:e8:c7:ed:a8:54:f0:41:
0e:cf:4a:4d:75:2f:a6:05:13:56:8f:c7:70:8b:a9:a9:c6:3f:
92:2b:a5:19:5e:09:cb:27:f2:f6:3d:87:48:d5:a3:6e:99:ec:
51:6b:c8:fd:9c:7e:7c:ba:46:24:ff:a6:86:05:ac:32:62:4b:
d7:1d:9d:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:57 2024 by rpki-client on console-ams.rpki-client.org