Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/cc8bc8-2440-499d-9d97-ba849778ff58/1/vprEVm-m9wVUqVjVLyw9C7yS2Vs.roa
File: vprEVm-m9wVUqVjVLyw9C7yS2Vs.roa (raw, json)
Hash identifier: RcXA8l0GmYU86DUre4rO6jjTbphBM3mhvSrmZwdhoyc=
Subject key identifier: BE:9A:C4:56:6F:A6:F7:05:54:A9:58:D5:2F:2C:3D:0B:BC:92:D9:5B
Certificate issuer: /CN=07acd9a69e1b8498708458ac52207cfac1f2c3cb
Certificate serial: 03F86E
Authority key identifier: 07:AC:D9:A6:9E:1B:84:98:70:84:58:AC:52:20:7C:FA:C1:F2:C3:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6zZpp4bhJhwhFisUiB8-sHyw8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/cc8bc8-2440-499d-9d97-ba849778ff58/1/vprEVm-m9wVUqVjVLyw9C7yS2Vs.roa
Signing time: Wed 01 Jun 2022 12:26:20 +0000
ROA not before: Wed 01 Jun 2022 12:26:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50698
IP address blocks: 159.253.232.0/21 maxlen: 22
185.116.76.0/22 maxlen: 23
109.202.64.0/19 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 260206 (0x3f86e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07acd9a69e1b8498708458ac52207cfac1f2c3cb
Validity
Not Before: Jun 1 12:26:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be9ac4566fa6f70554a958d52f2c3d0bbc92d95b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ec:9d:3b:02:79:ce:63:00:be:f9:68:be:7b:
24:94:d0:35:a0:b5:e0:c0:ce:6d:2f:78:c8:65:35:
c3:28:d3:38:20:5c:3e:fc:0c:00:f7:27:a7:74:c7:
40:12:a9:76:24:7a:88:06:5d:df:06:ff:af:b3:d4:
c6:d0:5e:4d:b5:7e:c5:94:5b:35:2d:e1:13:e1:b8:
f0:d2:5d:e8:c3:8d:58:e1:f7:8e:fc:51:43:28:23:
28:b1:c3:e8:54:2e:17:22:6b:01:0b:1e:89:f6:c2:
cd:b3:76:14:43:57:72:45:3a:09:77:ba:1c:12:33:
96:c8:5d:6d:5f:58:6b:aa:5d:64:d8:08:70:81:47:
c0:ad:85:1d:60:3e:45:cd:d1:85:06:f7:76:a5:66:
7a:3d:f2:53:1c:2e:95:4a:54:50:92:22:3d:76:32:
a9:c9:45:6f:2d:f3:33:bc:57:52:50:7f:06:35:5b:
9a:54:fc:0f:fe:b7:b5:cd:8a:c0:b5:bd:2f:c5:ce:
dc:31:c8:54:7b:a5:87:04:2f:87:57:65:e1:25:2a:
68:4a:00:b5:c3:6d:80:1b:c6:fb:6d:ec:7e:5f:5f:
6f:d9:ea:32:d3:a4:3a:06:41:eb:73:08:0c:af:1a:
c5:30:4d:1b:ed:3b:df:da:61:8f:86:46:20:eb:6d:
91:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:9A:C4:56:6F:A6:F7:05:54:A9:58:D5:2F:2C:3D:0B:BC:92:D9:5B
X509v3 Authority Key Identifier:
keyid:07:AC:D9:A6:9E:1B:84:98:70:84:58:AC:52:20:7C:FA:C1:F2:C3:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6zZpp4bhJhwhFisUiB8-sHyw8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/cc8bc8-2440-499d-9d97-ba849778ff58/1/vprEVm-m9wVUqVjVLyw9C7yS2Vs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/cc8bc8-2440-499d-9d97-ba849778ff58/1/B6zZpp4bhJhwhFisUiB8-sHyw8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.202.64.0/19
159.253.232.0/21
185.116.76.0/22
Signature Algorithm: sha256WithRSAEncryption
97:8a:83:72:17:6c:25:aa:ee:69:62:24:06:50:7b:db:95:ea:
37:4a:95:60:16:76:4d:c3:a5:93:31:02:e3:d4:dd:25:f4:c4:
8e:69:ce:6b:19:f1:fe:0d:95:6c:e6:55:c4:7a:3b:7c:18:ec:
4b:3e:fc:2e:6a:d5:49:d8:84:1a:6f:7d:30:bc:37:93:f4:86:
da:d9:0b:1d:13:d0:de:cb:f9:db:76:25:c0:18:c7:f7:dc:6a:
d2:27:ce:01:d8:d1:10:64:54:fe:40:28:52:c5:c2:8d:03:5e:
27:f5:a3:e0:c0:b9:24:9e:3c:10:39:02:4f:d5:cc:2b:9d:c4:
4f:49:f8:89:d4:6f:03:e8:76:cd:bb:1a:57:e3:6b:54:07:f4:
ab:ac:89:a7:e4:9a:b4:2d:07:18:f9:6c:75:f8:b6:26:9b:b9:
66:b5:e9:0f:50:d7:64:83:73:60:f2:57:ac:fe:8d:64:c2:26:
5a:c5:06:2a:bc:0a:23:b7:c3:7b:04:c5:67:b8:78:57:83:06:
62:9a:2d:f0:9e:47:64:a3:6f:1f:fc:aa:24:23:0d:cd:16:75:
12:cd:9a:05:62:4b:cc:15:99:b4:65:c7:fc:b2:ae:32:da:36:
e5:e8:c6:27:a3:d7:db:d6:d3:35:e9:65:48:a5:35:bf:56:8e:
16:d6:32:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:23 2024 by rpki-client on console-ams.rpki-client.org