Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/54e912-b503-454c-a433-4def57365169/1/VhFRN_GliMY8qA-DRouMDdWpAL8.roa
File: VhFRN_GliMY8qA-DRouMDdWpAL8.roa (raw, json)
Hash identifier: LTrqsqGPvpICSHLSUIHe45xEaXxqXhhJ234W35wCAYo=
Subject key identifier: 56:11:51:37:F1:A5:88:C6:3C:A8:0F:83:46:8B:8C:0D:D5:A9:00:BF
Certificate issuer: /CN=7a0bcdee8ce839c4d20413c862423cca04fdc60a
Certificate serial: 0183CAFDD7F185BD7977EC56A11B4B399A45
Authority key identifier: 7A:0B:CD:EE:8C:E8:39:C4:D2:04:13:C8:62:42:3C:CA:04:FD:C6:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/egvN7ozoOcTSBBPIYkI8ygT9xgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/54e912-b503-454c-a433-4def57365169/1/VhFRN_GliMY8qA-DRouMDdWpAL8.roa
Signing time: Wed 12 Oct 2022 06:59:36 +0000
ROA not before: Wed 12 Oct 2022 06:59:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42482
IP address blocks: 185.14.4.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ca:fd:d7:f1:85:bd:79:77:ec:56:a1:1b:4b:39:9a:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a0bcdee8ce839c4d20413c862423cca04fdc60a
Validity
Not Before: Oct 12 06:59:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56115137f1a588c63ca80f83468b8c0dd5a900bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:5f:75:56:a7:5d:08:4b:d4:63:a7:9e:b8:42:
2d:4a:fb:aa:a5:e0:f0:3b:ab:62:00:a4:98:58:7a:
b3:1d:45:4e:32:da:6d:4e:80:9d:1c:35:31:16:0f:
9b:7b:7a:01:c2:2f:cb:19:99:33:7a:6e:93:d2:b2:
95:a4:b7:67:a0:23:4a:eb:b3:8e:b8:a5:d1:09:93:
71:f0:ea:3a:c4:79:40:31:e6:69:52:af:ec:2e:ad:
3f:47:cd:d3:3d:f1:60:ed:66:19:b9:70:c0:9f:c9:
29:03:71:47:4b:4f:24:a4:80:af:ec:7b:e8:30:f4:
96:cf:3b:c3:c3:89:14:3c:98:dd:58:bc:c3:ae:2c:
2b:9b:2c:4f:ab:0f:8c:0c:33:98:45:7f:fd:9e:e2:
2d:40:05:58:33:b4:a2:90:4a:a0:72:7b:99:46:3f:
50:8b:ec:36:d2:d2:2e:98:20:46:b2:bd:87:29:05:
07:04:89:46:70:f1:84:37:1b:be:db:96:9a:fc:0d:
c8:81:39:a2:5c:45:9f:9f:01:43:d4:5b:7c:23:c0:
33:bd:1d:0b:02:63:02:c8:77:12:a7:7f:8e:05:e9:
b8:a2:10:64:93:19:8c:e7:51:43:66:c4:ef:59:5f:
24:a8:ce:35:28:94:2a:62:42:f7:5a:24:4a:14:12:
52:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:11:51:37:F1:A5:88:C6:3C:A8:0F:83:46:8B:8C:0D:D5:A9:00:BF
X509v3 Authority Key Identifier:
keyid:7A:0B:CD:EE:8C:E8:39:C4:D2:04:13:C8:62:42:3C:CA:04:FD:C6:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/egvN7ozoOcTSBBPIYkI8ygT9xgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/54e912-b503-454c-a433-4def57365169/1/VhFRN_GliMY8qA-DRouMDdWpAL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/54e912-b503-454c-a433-4def57365169/1/egvN7ozoOcTSBBPIYkI8ygT9xgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.14.4.0/22
Signature Algorithm: sha256WithRSAEncryption
ae:7c:9a:db:1e:86:bb:21:ca:9a:0b:94:3c:a2:3e:fe:ab:85:
7f:b0:fe:19:d5:76:e9:45:2d:04:3d:97:c3:1d:15:25:e3:58:
6c:7d:7d:f7:7d:da:b1:e9:ea:c0:7f:a6:0d:35:2b:da:28:24:
7c:d9:9f:f7:8e:0e:21:6a:39:6d:1d:18:7f:eb:3f:40:9a:97:
1c:3e:97:91:47:b6:f2:9f:7d:5e:53:f6:8c:5a:46:bf:94:2f:
d4:e9:9c:79:3a:98:83:e4:20:8f:58:90:7c:5b:ff:55:fa:ad:
34:15:a8:1b:14:f1:c2:64:70:dc:b3:68:a0:a4:0b:37:00:ea:
ac:ae:9b:ef:74:a7:6b:69:9f:7f:4c:a7:34:52:63:71:14:51:
ce:52:8f:ad:d6:c0:77:e1:11:10:0c:94:31:7e:65:58:ff:26:
34:e9:08:64:95:af:03:b1:03:6a:84:e4:82:76:87:81:2f:41:
15:27:5d:9b:0d:16:d9:cb:f3:7b:fb:70:d6:0d:da:5b:ff:8c:
4a:54:c4:2b:4c:06:a8:e7:00:5b:e5:12:f2:c7:24:84:11:67:
b0:14:de:3d:9e:1a:2c:4d:35:94:be:4d:a7:39:c7:98:5f:1f:
1b:44:93:e8:90:b2:58:33:14:99:4d:c9:9b:e8:40:41:4a:14:
22:5a:76:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:46 2024 by rpki-client on console-ams.rpki-client.org