Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/a2ce7e-52e4-44ab-bba3-68d29f3af9a7/1/vvctgfKQzleafex5mPyDIi3JLts.roa
File: vvctgfKQzleafex5mPyDIi3JLts.roa (raw, json)
Hash identifier: b39vI3fDit8E33bDWNQfzuS8H525aA/stR7s2u/HPd4=
Subject key identifier: BE:F7:2D:81:F2:90:CE:57:9A:7D:EC:79:98:FC:83:22:2D:C9:2E:DB
Certificate issuer: /CN=c309f99595e6f9251944e26b794b481bf57c7f95
Certificate serial: 0B2D9D00
Authority key identifier: C3:09:F9:95:95:E6:F9:25:19:44:E2:6B:79:4B:48:1B:F5:7C:7F:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wwn5lZXm-SUZROJreUtIG_V8f5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/a2ce7e-52e4-44ab-bba3-68d29f3af9a7/1/vvctgfKQzleafex5mPyDIi3JLts.roa
Signing time: Sat 01 Jan 2022 10:54:45 +0000
ROA not before: Sat 01 Jan 2022 10:54:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201211
IP address blocks: 194.110.8.0/22 maxlen: 22
2a0d:3c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 187538688 (0xb2d9d00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c309f99595e6f9251944e26b794b481bf57c7f95
Validity
Not Before: Jan 1 10:54:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bef72d81f290ce579a7dec7998fc83222dc92edb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5f:a8:e0:4d:70:83:ef:a8:ee:23:76:b6:95:
61:c2:b8:dc:3e:76:46:77:bb:58:50:38:52:5a:0c:
7a:89:49:65:dc:a1:22:e9:a9:3f:3a:6d:c0:1a:5f:
b6:7a:51:05:e6:78:eb:38:b3:97:71:d1:dc:f9:9c:
25:c3:57:3b:23:9b:b7:06:d0:87:7d:ac:d0:41:92:
e1:35:a9:cc:f3:9b:d7:7d:2c:87:97:3d:93:bf:0f:
bc:aa:44:f0:e5:60:73:d2:c2:e3:1b:cb:7a:c0:a1:
a9:3d:02:47:7d:7d:e0:40:27:00:41:7e:ca:4c:bb:
ba:d3:e6:e6:ba:51:eb:90:fb:f6:e6:11:3c:8a:fe:
5c:65:10:38:c3:db:c2:48:72:fb:01:1d:f7:41:ad:
87:9a:2c:ad:7a:c0:f8:55:2e:a9:70:f5:60:05:81:
2e:17:d2:37:38:96:99:81:93:50:85:c7:bf:5e:e4:
18:b5:02:84:aa:ca:20:a9:57:b0:33:a5:22:d4:cf:
d9:9d:98:17:64:24:93:51:84:5a:32:9d:42:6b:b1:
eb:6d:cf:d7:de:42:dc:99:ba:1c:3c:3b:13:fe:d1:
c4:d3:5e:41:4f:23:59:c4:07:13:13:2b:b5:0c:ba:
a9:a2:3f:99:c5:35:31:07:b2:c3:16:36:39:d7:7c:
91:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:F7:2D:81:F2:90:CE:57:9A:7D:EC:79:98:FC:83:22:2D:C9:2E:DB
X509v3 Authority Key Identifier:
keyid:C3:09:F9:95:95:E6:F9:25:19:44:E2:6B:79:4B:48:1B:F5:7C:7F:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wwn5lZXm-SUZROJreUtIG_V8f5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/a2ce7e-52e4-44ab-bba3-68d29f3af9a7/1/vvctgfKQzleafex5mPyDIi3JLts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/a2ce7e-52e4-44ab-bba3-68d29f3af9a7/1/wwn5lZXm-SUZROJreUtIG_V8f5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.8.0/22
IPv6:
2a0d:3c0::/29
Signature Algorithm: sha256WithRSAEncryption
44:8e:3d:2d:08:c7:67:41:08:78:65:5f:5c:e0:19:af:3e:96:
8c:21:bd:0a:d6:b5:24:f1:61:eb:b6:72:2a:8f:c9:38:db:3c:
93:a3:7e:6a:f4:8c:f7:7e:40:14:97:bb:7e:83:89:12:b4:51:
a6:e0:0a:c5:85:f6:be:6b:70:93:08:4d:7f:9f:d0:61:3b:61:
f3:b8:ed:6e:f9:f1:a4:35:6e:68:29:be:53:b9:96:83:42:c0:
3a:2a:fa:62:73:66:29:a4:e1:2b:99:ef:49:e9:92:7c:30:4a:
92:b7:18:b7:32:f6:85:70:d6:f4:96:8e:bf:9a:35:3a:42:b9:
07:a3:45:52:14:8a:65:bd:81:6f:80:ea:9b:2d:52:ae:f7:ce:
76:dc:ee:10:fe:4b:c2:dd:a7:0d:b5:58:1a:86:b8:71:50:40:
29:7e:0d:c9:4a:96:6d:09:51:a2:f2:c6:ce:c8:52:ff:d8:1b:
c9:18:65:73:89:b8:0d:36:4f:71:5d:0e:62:31:83:63:20:cb:
15:0f:65:18:7c:27:1b:93:c7:8c:67:88:98:49:d9:56:3a:a1:
63:f6:2e:ff:8e:10:03:69:bf:cc:9d:84:77:5e:f6:e5:3a:ba:
86:d0:f2:0f:2a:63:76:a1:96:b4:49:eb:c4:73:44:aa:7f:c6:
cd:bf:3c:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:53 2024 by rpki-client on console-fra.rpki-client.org