Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/vnBkr3KZAxuv7QuKKATnXElgFqA.roa
File: vnBkr3KZAxuv7QuKKATnXElgFqA.roa (raw, json)
Hash identifier: aVyVmy7CCUHHsBYMQbtuBGq+Mr8PvYWy3CxeuIYAnpQ=
Subject key identifier: BE:70:64:AF:72:99:03:1B:AF:ED:0B:8A:28:04:E7:5C:49:60:16:A0
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2B09C511
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/vnBkr3KZAxuv7QuKKATnXElgFqA.roa
Signing time: Sat 01 Jan 2022 13:58:04 +0000
ROA not before: Sat 01 Jan 2022 13:58:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201132
IP address blocks: 188.114.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 722060561 (0x2b09c511)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:58:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be7064af7299031bafed0b8a2804e75c496016a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:dc:c2:9b:ac:8c:1c:72:c7:73:12:15:5b:f2:
89:e8:3d:cb:76:7a:21:ee:67:b9:f1:39:e8:b3:28:
41:2b:7b:0f:63:e7:a9:e8:bc:43:b9:c9:89:f1:5c:
e2:69:a9:2e:9a:98:7f:c0:3f:dd:93:3b:ae:00:4f:
2b:f1:70:96:b2:c0:85:21:c1:31:3b:1d:92:e3:28:
d7:c7:0a:57:07:8f:66:9b:65:c1:d2:41:6e:d6:48:
be:5a:79:25:0c:85:d6:b0:d0:0b:73:49:99:bc:3b:
25:b6:1c:2f:1d:6b:8f:f9:ab:fe:f6:24:13:0e:95:
d0:b3:aa:56:31:2c:30:34:a6:d3:03:f5:57:52:fb:
72:aa:6a:f5:13:62:ee:d1:1f:ad:d5:21:5d:02:09:
9b:c1:d0:35:01:af:68:29:0d:b0:54:e9:bc:61:36:
e7:30:67:73:22:15:d4:5c:16:40:5d:e4:e1:22:2a:
95:19:8d:5d:62:af:68:b0:80:64:23:bf:b3:48:7e:
01:c4:7c:f6:86:be:0f:be:a9:b8:81:5f:97:1a:37:
ef:3b:76:12:3e:b0:b1:b7:aa:3b:fc:a3:0b:29:18:
26:1d:7c:a5:b9:72:d2:81:7d:8c:8d:74:8e:2b:e9:
30:b8:ca:ad:a9:69:53:80:77:a0:d3:c3:e9:d9:f1:
bd:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:70:64:AF:72:99:03:1B:AF:ED:0B:8A:28:04:E7:5C:49:60:16:A0
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/vnBkr3KZAxuv7QuKKATnXElgFqA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.114.94.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:83:ef:78:fb:76:87:89:88:d9:24:f1:78:b2:65:19:b4:59:
4f:1c:17:95:15:3e:99:88:20:de:39:28:52:af:00:56:36:51:
dd:b1:44:f2:17:31:2b:84:d8:07:f2:02:2d:46:fb:31:41:ef:
0f:bb:aa:9b:d6:bb:8f:9b:e8:ab:87:50:75:bb:f7:ce:e4:f7:
d7:1c:ec:62:e2:7b:b0:9a:cb:71:47:7a:01:77:d9:f8:6d:fe:
61:95:71:99:ef:4f:c1:50:61:f7:b1:13:ae:73:66:20:d1:17:
7e:25:72:59:eb:8a:98:17:7c:27:d0:f9:24:7b:03:21:04:7a:
87:c7:f9:60:52:20:aa:bc:e7:f3:3e:80:89:43:93:4d:58:6b:
dd:ba:38:25:46:44:35:79:ea:2a:37:3e:09:16:1c:52:2d:81:
44:e7:15:32:7c:73:bc:ab:09:12:4d:c2:0e:b7:f5:4a:02:a5:
84:d5:93:75:b0:ae:2e:d4:26:c9:f6:eb:27:27:5a:96:7b:00:
af:a9:15:08:7c:d9:7c:01:9f:16:bf:bb:71:3a:1e:eb:58:00:
2a:08:7d:2d:3f:c4:4f:f1:3a:74:c3:86:e6:a5:f6:67:46:7a:
2c:eb:dc:b3:72:38:ef:d7:8c:c5:48:ac:27:15:23:70:3a:cc:
63:d9:59:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:21 2024 by rpki-client on console-ams.rpki-client.org