Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/ffbf18-aa03-434c-8bbd-141450f10a85/1/vz4EKSuFzlDQ7QH7xRptwLhQixQ.roa
File: vz4EKSuFzlDQ7QH7xRptwLhQixQ.roa (raw, json)
Hash identifier: A3aCFuZ+3ynkDtq9FHLzaGDZi91+e1gWC1sU7XEfWAo=
Subject key identifier: BF:3E:04:29:2B:85:CE:50:D0:ED:01:FB:C5:1A:6D:C0:B8:50:8B:14
Certificate issuer: /CN=bb62fe6b7f3d364332bcd6e0daf79226ccf809e2
Certificate serial: 0195F8F3
Authority key identifier: BB:62:FE:6B:7F:3D:36:43:32:BC:D6:E0:DA:F7:92:26:CC:F8:09:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u2L-a389NkMyvNbg2veSJsz4CeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/ffbf18-aa03-434c-8bbd-141450f10a85/1/vz4EKSuFzlDQ7QH7xRptwLhQixQ.roa
Signing time: Sat 01 Jan 2022 08:03:07 +0000
ROA not before: Sat 01 Jan 2022 08:03:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42466
IP address blocks: 91.189.144.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26605811 (0x195f8f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb62fe6b7f3d364332bcd6e0daf79226ccf809e2
Validity
Not Before: Jan 1 08:03:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf3e04292b85ce50d0ed01fbc51a6dc0b8508b14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d1:02:6c:ac:9b:d3:db:92:d9:67:cb:fd:a0:
47:cf:f4:db:f7:45:11:3f:46:10:8a:ef:9d:d7:24:
63:84:3b:7f:32:c4:4c:ab:77:cc:f6:78:20:08:92:
6e:e1:3f:54:b6:61:4c:42:47:aa:f3:47:02:99:e9:
39:9a:3b:8e:19:2b:6d:05:aa:54:69:09:62:98:7b:
76:02:9e:5f:5d:d3:9e:20:7d:f5:bb:d0:16:cc:14:
47:a2:f7:80:7d:ee:48:ef:17:58:e8:75:08:4e:96:
a1:39:ce:13:3a:33:25:d3:43:0a:1d:29:ff:06:d3:
90:ee:cc:61:a6:c4:a3:be:68:1b:40:1c:e7:80:8f:
db:08:6c:9e:2f:2a:0d:d5:71:19:26:a3:73:59:88:
98:a3:4f:06:84:9e:38:8b:cb:7d:ce:e9:cf:67:30:
82:3b:59:4c:a9:13:33:cb:30:75:48:9e:d0:3d:d7:
f8:fb:6c:25:e3:4d:53:5b:2c:88:73:83:42:94:ea:
37:cf:55:4b:95:1b:e9:7b:59:92:95:da:a2:0b:71:
d5:aa:3c:9e:68:94:13:f3:e5:bb:4d:27:1b:eb:01:
2b:11:81:6d:71:ae:59:f2:36:70:58:a9:09:0b:86:
c4:ce:88:48:8e:b8:a0:40:cb:d7:fb:30:0d:f7:f6:
65:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:3E:04:29:2B:85:CE:50:D0:ED:01:FB:C5:1A:6D:C0:B8:50:8B:14
X509v3 Authority Key Identifier:
keyid:BB:62:FE:6B:7F:3D:36:43:32:BC:D6:E0:DA:F7:92:26:CC:F8:09:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u2L-a389NkMyvNbg2veSJsz4CeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/ffbf18-aa03-434c-8bbd-141450f10a85/1/vz4EKSuFzlDQ7QH7xRptwLhQixQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/ffbf18-aa03-434c-8bbd-141450f10a85/1/u2L-a389NkMyvNbg2veSJsz4CeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.189.144.0/21
Signature Algorithm: sha256WithRSAEncryption
58:52:dd:25:6c:ab:9a:72:45:37:0a:4b:4e:36:ce:a8:10:31:
6c:00:5a:5a:b5:89:9e:da:08:34:fd:8e:cd:18:b4:96:47:0e:
02:7d:0e:ce:9f:0b:0c:ac:11:af:94:b6:99:aa:b2:48:81:bb:
a6:14:6e:0e:40:c7:dc:19:93:3e:6b:72:e0:24:7d:04:a5:0b:
53:b7:2d:57:68:4b:f2:30:99:e0:87:22:b3:56:7b:7a:eb:66:
50:2d:78:ab:99:c2:1c:fd:78:60:ce:97:73:fe:da:5c:5b:84:
f8:4c:d3:4a:07:9a:d0:24:f5:bc:d2:6a:8c:19:9d:e8:51:27:
1e:6b:18:dc:e6:28:2e:8c:a4:2b:0e:19:0a:e1:54:51:e3:90:
01:cd:5a:9c:e0:27:1b:68:e9:8c:3c:57:da:2c:98:a0:4c:af:
74:3d:a2:b4:3e:b9:f4:ee:e2:44:56:7f:c5:93:d2:b5:f2:82:
cc:2f:c4:48:8d:07:dc:44:cc:b9:f6:21:8d:42:c1:be:fd:fc:
8b:b7:c6:39:7b:30:a0:6d:04:3b:80:5f:72:fb:98:ed:1d:ec:
91:f7:b6:d7:2b:64:c6:2e:bb:8c:16:95:8b:39:a6:0e:06:ff:
6b:a6:e3:b5:0d:f8:82:a7:85:a7:59:e7:dc:d9:61:76:99:c6:
e7:15:7c:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:17 2024 by rpki-client on console-ams.rpki-client.org