Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/808471-7daa-4cd2-a860-069da9c84785/1/VdFVuI7KiJvsw78u68kDPRRp1Nw.roa
File: VdFVuI7KiJvsw78u68kDPRRp1Nw.roa (raw, json)
Hash identifier: W6guKY7PdRm+1/A7xkecg6JEN0Uppm5Yd8VbYhZDf/Q=
Subject key identifier: 55:D1:55:B8:8E:CA:88:9B:EC:C3:BF:2E:EB:C9:03:3D:14:69:D4:DC
Certificate issuer: /CN=20d617bdb5d768e395e49b41cd81217bd3163ab3
Certificate serial: 0D57FFF3
Authority key identifier: 20:D6:17:BD:B5:D7:68:E3:95:E4:9B:41:CD:81:21:7B:D3:16:3A:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/INYXvbXXaOOV5JtBzYEhe9MWOrM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/808471-7daa-4cd2-a860-069da9c84785/1/VdFVuI7KiJvsw78u68kDPRRp1Nw.roa
Signing time: Sat 01 Jan 2022 11:01:36 +0000
ROA not before: Sat 01 Jan 2022 11:01:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30870
IP address blocks: 171.25.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 223870963 (0xd57fff3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20d617bdb5d768e395e49b41cd81217bd3163ab3
Validity
Not Before: Jan 1 11:01:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55d155b88eca889becc3bf2eebc9033d1469d4dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:20:24:6a:42:d8:c8:7b:80:32:96:13:34:d1:
8b:b8:a4:89:27:86:ae:51:35:58:fe:ac:57:3c:df:
af:97:9c:70:84:a8:17:75:4a:96:62:26:65:61:90:
38:b7:0f:f2:cc:29:99:cc:48:ff:03:03:c8:81:a6:
7b:9e:6a:07:48:64:a7:36:66:1d:3f:d6:29:6b:95:
5d:a5:9d:52:45:25:d0:73:c3:fb:47:71:bb:0b:cf:
df:f5:ec:97:22:45:aa:ad:36:e2:1c:f7:eb:81:be:
f0:78:ff:ae:a2:e0:53:d2:4b:f8:6b:9d:86:a3:80:
1b:fc:71:0b:3d:5a:ff:64:d2:01:a5:68:ac:b0:62:
b3:58:14:41:10:71:80:3a:70:c8:eb:50:a7:c2:08:
2f:e8:cd:ab:c8:8c:2d:04:5d:3d:73:a8:36:2e:1a:
d6:85:ed:00:41:ad:3a:f5:75:10:a6:45:4c:fa:b6:
87:99:bd:39:b1:bc:69:4e:3f:87:2c:d6:0d:f7:10:
e3:88:06:a0:d5:94:2b:0d:6c:d4:a8:db:82:28:e5:
9e:4e:aa:50:84:77:75:6f:de:b8:b9:5f:18:88:68:
ef:f5:13:85:32:72:8b:7c:72:6e:3c:b6:70:b1:84:
ca:97:a7:95:cf:08:f6:1c:65:af:6d:7e:17:bf:7f:
fc:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:D1:55:B8:8E:CA:88:9B:EC:C3:BF:2E:EB:C9:03:3D:14:69:D4:DC
X509v3 Authority Key Identifier:
keyid:20:D6:17:BD:B5:D7:68:E3:95:E4:9B:41:CD:81:21:7B:D3:16:3A:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/INYXvbXXaOOV5JtBzYEhe9MWOrM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/808471-7daa-4cd2-a860-069da9c84785/1/VdFVuI7KiJvsw78u68kDPRRp1Nw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/808471-7daa-4cd2-a860-069da9c84785/1/INYXvbXXaOOV5JtBzYEhe9MWOrM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.25.179.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:ad:4a:a0:a8:5c:0b:44:13:16:ad:20:c1:6c:df:ee:b5:c1:
e3:91:3f:48:0d:d3:9a:41:99:b0:51:63:29:92:ea:a7:05:fc:
ec:42:4d:dc:08:e1:d1:9b:cc:2c:01:a7:2d:32:72:26:87:53:
6a:1f:25:af:e1:90:e3:6e:1a:e4:10:af:16:24:e6:a7:f4:a8:
fa:2f:c5:ca:bd:37:26:a8:ce:87:2a:c3:ae:21:3d:bd:7e:c9:
22:6b:0b:ac:de:72:93:2c:3e:88:95:4b:84:28:57:58:e6:84:
8b:50:dc:30:ef:8c:b5:bb:26:a9:f1:11:ae:a7:7b:96:80:f6:
ef:bb:31:8f:ed:f4:85:70:47:ab:b7:27:83:23:cc:d4:26:21:
90:67:d2:e1:e4:7e:94:0d:2f:74:b8:97:89:1b:f9:fb:f6:c3:
6f:d6:4f:6a:49:4b:f2:e0:32:ea:a3:5f:c8:ff:cc:ad:fc:fc:
14:91:7e:a5:43:95:82:e9:be:01:f3:31:4f:01:44:d4:c7:29:
c6:dd:ae:a2:e6:6c:66:8f:20:4b:fc:6b:cb:9a:ce:71:9e:d1:
09:e9:bd:18:7f:b0:39:7d:4e:66:fb:2c:51:50:b0:aa:6a:f5:
95:40:96:6c:f3:ee:b7:f0:57:26:52:f6:aa:3f:a5:b6:e1:3f:
bc:b2:99:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:15 2024 by rpki-client on console-fra.rpki-client.org