Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c64d50-fcdd-4a9f-9047-293f6122a19d/1/VnzzrIH__yl_oc7p4Wvy_kmDr9w.roa
File: VnzzrIH__yl_oc7p4Wvy_kmDr9w.roa (raw, json)
Hash identifier: gTm5tc8uf2gAzSLPdFpz4UiEEShqkr79td8mGChI2+U=
Subject key identifier: 56:7C:F3:AC:81:FF:FF:29:7F:A1:CE:E9:E1:6B:F2:FE:49:83:AF:DC
Certificate issuer: /CN=92fb8fa10dff3473e653dbf61c9a86432180a5c7
Certificate serial: 03B16D3A
Authority key identifier: 92:FB:8F:A1:0D:FF:34:73:E6:53:DB:F6:1C:9A:86:43:21:80:A5:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kvuPoQ3_NHPmU9v2HJqGQyGApcc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/c64d50-fcdd-4a9f-9047-293f6122a19d/1/VnzzrIH__yl_oc7p4Wvy_kmDr9w.roa
Signing time: Thu 17 Mar 2022 11:06:47 +0000
ROA not before: Thu 17 Mar 2022 11:06:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19905
IP address blocks: 185.119.10.0/24 maxlen: 24
185.119.11.0/24 maxlen: 24
2a10:80c0::/48 maxlen: 48
2a10:80c0:1000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61959482 (0x3b16d3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92fb8fa10dff3473e653dbf61c9a86432180a5c7
Validity
Not Before: Mar 17 11:06:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=567cf3ac81ffff297fa1cee9e16bf2fe4983afdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:82:7b:ee:c7:02:8f:f2:4a:de:d5:74:a7:3d:
40:9e:fe:8d:94:21:ef:ee:de:0d:d3:0b:b3:fc:c1:
b2:98:04:48:4f:9f:38:20:96:06:28:9a:db:2f:d1:
c4:5f:a0:3c:2e:3e:e8:c7:74:14:d9:cb:1a:ed:37:
c5:e2:a2:27:7e:bd:33:f8:e5:55:67:20:67:8e:07:
e9:f3:25:2a:c2:e2:3d:74:3c:a3:f4:0b:a6:ae:bb:
e6:dd:f6:7e:32:03:0b:67:5a:e1:32:d0:33:56:13:
cc:2f:e0:fe:7c:21:57:23:e4:d9:2c:c5:ef:fe:73:
6b:ef:23:e8:88:35:4f:97:eb:e2:de:20:af:0a:36:
bb:ec:69:3e:ac:2b:f0:03:4d:2a:28:35:4d:da:c5:
88:0c:22:28:9f:02:79:cd:20:07:f3:6e:45:f3:d8:
08:7e:da:72:79:33:98:d0:29:ce:af:fa:68:14:dd:
70:67:41:46:6a:86:bd:56:20:97:2c:0f:61:5f:09:
03:38:80:7f:af:29:15:86:fc:44:81:59:b8:cb:f2:
f0:30:46:bf:14:61:80:d8:4e:c3:8d:95:01:95:b1:
ee:09:a5:97:82:1e:dd:3f:42:c4:8f:73:65:eb:46:
bd:e9:d5:d1:66:0e:eb:01:07:fc:35:d2:0a:b0:f5:
e3:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:7C:F3:AC:81:FF:FF:29:7F:A1:CE:E9:E1:6B:F2:FE:49:83:AF:DC
X509v3 Authority Key Identifier:
keyid:92:FB:8F:A1:0D:FF:34:73:E6:53:DB:F6:1C:9A:86:43:21:80:A5:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kvuPoQ3_NHPmU9v2HJqGQyGApcc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c64d50-fcdd-4a9f-9047-293f6122a19d/1/VnzzrIH__yl_oc7p4Wvy_kmDr9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c64d50-fcdd-4a9f-9047-293f6122a19d/1/kvuPoQ3_NHPmU9v2HJqGQyGApcc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.10.0/23
IPv6:
2a10:80c0::/48
2a10:80c0:1000::/48
Signature Algorithm: sha256WithRSAEncryption
57:9f:a4:ef:24:4e:de:d9:ac:a4:12:c8:c0:b8:90:1d:a3:cd:
02:27:8a:95:2e:b0:76:67:23:e3:ae:93:f8:a8:03:55:3b:6b:
cc:3d:0f:29:d1:8c:f6:50:84:ac:1e:b0:d8:0c:3f:c8:be:51:
20:1b:c3:42:24:57:8e:18:36:64:13:9d:a1:7d:b9:15:7e:f8:
be:fd:4b:d0:96:cd:0c:6d:d8:e0:4a:08:45:f5:0b:02:61:88:
0e:a6:6f:21:9c:80:62:4c:08:90:d7:a0:4e:57:62:02:f3:f9:
31:a2:15:6f:67:6b:92:e6:7b:96:c7:a8:ea:9f:10:d4:47:2a:
22:db:d4:f0:87:42:a2:23:f8:7c:7f:3c:59:fc:32:9f:ea:02:
a9:d0:a6:2e:e3:a2:cd:e1:58:90:d8:e8:57:fd:f2:4f:f8:e5:
dd:a7:c1:ff:88:d8:c4:46:6e:c6:a9:05:62:c2:ad:9e:62:a7:
70:4f:44:8f:4f:98:c1:c9:26:a6:04:3b:02:80:b3:d5:41:7c:
f8:0f:42:b6:ba:c8:60:22:96:5f:a3:2b:13:c5:6c:a3:7f:6c:
a6:ab:22:0c:4d:6d:a7:dd:f3:4b:7b:68:06:f1:4a:fe:8d:76:
f0:1b:81:9a:c7:e2:d5:0c:50:ea:e8:b5:02:ba:07:51:5e:2d:
71:a4:52:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:37 2024 by rpki-client on console-ams.rpki-client.org