Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/b87a0d-cc4c-4825-a7e4-e924ce5a75b3/1/VaCXXzwPcFIVMUtNezDxHh8ILLs.roa
File: VaCXXzwPcFIVMUtNezDxHh8ILLs.roa (raw, json)
Hash identifier: x6a7ZZKEKIseW5rj4ccXUtj+EFshEBgV28I6kS6g+Us=
Subject key identifier: 55:A0:97:5F:3C:0F:70:52:15:31:4B:4D:7B:30:F1:1E:1F:08:2C:BB
Certificate issuer: /CN=a26fa7ee30ada35ab1fc04f340fedf647a9f8162
Certificate serial: 0B73768A
Authority key identifier: A2:6F:A7:EE:30:AD:A3:5A:B1:FC:04:F3:40:FE:DF:64:7A:9F:81:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/om-n7jCto1qx_ATzQP7fZHqfgWI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/b87a0d-cc4c-4825-a7e4-e924ce5a75b3/1/VaCXXzwPcFIVMUtNezDxHh8ILLs.roa
Signing time: Sat 01 Jan 2022 10:02:48 +0000
ROA not before: Sat 01 Jan 2022 10:02:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60111
IP address blocks: 193.27.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 192116362 (0xb73768a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a26fa7ee30ada35ab1fc04f340fedf647a9f8162
Validity
Not Before: Jan 1 10:02:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55a0975f3c0f705215314b4d7b30f11e1f082cbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:7a:b4:aa:02:32:d0:86:87:be:51:ca:5a:d2:
d8:0e:d8:8e:44:ac:cd:da:f7:19:09:13:29:29:ad:
99:d8:d9:02:7a:2b:bb:8b:1c:1b:ad:3b:59:2d:4a:
44:68:a3:a2:b6:d5:62:b8:0d:6b:5d:24:06:2b:f2:
44:f5:e8:64:ae:88:d8:26:68:ca:3c:35:26:4b:b7:
a3:6d:83:65:42:4e:c7:30:92:9c:5a:5b:0f:75:66:
be:38:00:e6:43:8a:d6:82:e0:d0:45:0a:a8:b1:03:
d9:83:d2:6d:bf:b8:fa:eb:ca:18:2f:af:ee:b6:4c:
12:a4:0d:c9:c9:e6:b7:93:65:5c:6e:f9:f2:05:7a:
bd:7b:44:a3:40:9f:18:d7:0c:22:e5:93:00:bc:94:
a7:2b:ef:84:46:33:b6:12:3b:92:cd:3f:8b:b4:00:
4e:5e:90:47:32:a1:53:89:c4:46:4f:dc:9d:9c:4e:
3a:12:fc:34:2d:82:81:cc:f1:54:2f:9f:c1:c5:85:
55:5a:4b:a4:dc:2b:4c:a0:5e:17:18:dd:88:89:f4:
22:a6:02:af:17:08:5b:b1:53:f7:00:de:27:b8:6f:
20:5d:b0:21:0e:fb:03:19:1a:8c:19:2e:3f:79:a2:
b5:7c:d3:ce:ff:aa:4c:80:d3:e1:46:20:c0:2a:43:
17:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:A0:97:5F:3C:0F:70:52:15:31:4B:4D:7B:30:F1:1E:1F:08:2C:BB
X509v3 Authority Key Identifier:
keyid:A2:6F:A7:EE:30:AD:A3:5A:B1:FC:04:F3:40:FE:DF:64:7A:9F:81:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/om-n7jCto1qx_ATzQP7fZHqfgWI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/b87a0d-cc4c-4825-a7e4-e924ce5a75b3/1/VaCXXzwPcFIVMUtNezDxHh8ILLs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/b87a0d-cc4c-4825-a7e4-e924ce5a75b3/1/om-n7jCto1qx_ATzQP7fZHqfgWI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.27.44.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:18:4b:7b:a4:3a:f0:46:ba:c6:73:4f:2e:b1:ab:79:90:c3:
ce:4c:ee:a9:de:b4:01:52:22:86:89:10:e9:e7:e9:5c:a1:4e:
a0:01:39:91:bc:59:a9:b1:71:f1:f5:36:25:19:11:a4:22:2a:
17:f1:11:50:70:01:d0:90:99:e1:07:40:df:72:9a:a7:88:2d:
7c:0e:94:74:e9:be:cf:e7:bb:09:75:7d:86:df:a1:4d:0c:c7:
e1:5e:0d:13:d3:91:c6:c2:b8:06:ed:c5:65:b3:14:81:5b:4f:
ee:c5:71:e9:1e:a1:15:8e:a5:9e:4b:bc:fa:d0:45:28:2e:eb:
2a:66:0d:ab:61:d3:8f:b6:2a:c9:23:2f:d3:83:2f:16:bd:d3:
04:14:ed:82:fd:cb:87:4f:ba:52:fc:2e:0e:bd:bf:78:73:cd:
1f:b0:dd:72:77:01:32:c7:50:81:b2:e4:5b:96:ae:e1:70:3c:
2c:99:01:51:9f:b4:e5:75:ea:b5:be:85:bf:bb:62:3c:19:55:
f4:c8:e2:82:2c:4c:56:a8:b9:c2:2a:db:6b:71:66:7e:c8:8c:
8f:3c:3f:51:6d:d8:6a:ee:3c:c0:b8:d3:55:9e:ec:ae:cf:2c:
c5:23:6c:0a:99:81:12:01:92:c1:b2:23:c9:cc:e7:9f:19:d3:
1f:4a:86:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:59 2024 by rpki-client on console-ams.rpki-client.org