Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Vm1W-HECEd41tjrh5Ltm6tuoxNM.roa
File: Vm1W-HECEd41tjrh5Ltm6tuoxNM.roa (raw, json)
Hash identifier: +uT03JCmpAHczUHU4089lv7TnQ928TypvZ5kvABdK/o=
Subject key identifier: 56:6D:56:F8:71:02:11:DE:35:B6:3A:E1:E4:BB:66:EA:DB:A8:C4:D3
Certificate issuer: /CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Certificate serial: 018556C2BF9EEF472BDBE52C1A049793B57A
Authority key identifier: 67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Vm1W-HECEd41tjrh5Ltm6tuoxNM.roa
Signing time: Wed 28 Dec 2022 03:24:41 +0000
ROA not before: Wed 28 Dec 2022 03:24:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63859
IP address blocks: 151.249.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:56:c2:bf:9e:ef:47:2b:db:e5:2c:1a:04:97:93:b5:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Validity
Not Before: Dec 28 03:24:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=566d56f8710211de35b63ae1e4bb66eadba8c4d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:59:bc:06:7b:95:1f:50:90:78:9d:51:87:c1:
27:86:fd:3f:df:c7:61:d8:a1:ff:92:8d:36:6d:77:
b6:c5:49:0e:7e:ee:cf:eb:2f:fb:ce:b1:98:2e:39:
cf:14:e1:21:b8:72:81:3e:2d:80:34:3e:00:04:ac:
5b:cc:7e:8a:ec:08:a9:f2:48:a7:4f:b6:66:9a:44:
10:15:e4:7c:15:9a:2d:24:b1:09:a8:03:b3:b6:21:
df:a1:0d:cf:14:51:9f:bd:41:b5:84:e7:62:c9:d4:
94:ef:ae:64:1f:7a:57:63:99:a0:29:72:00:28:57:
c7:43:4a:54:0b:bc:73:dc:0f:72:5c:18:06:31:fc:
15:04:72:37:22:8a:3d:34:2a:8a:ca:5a:5b:81:2c:
fb:67:af:d0:fb:83:c6:04:35:66:7d:6f:23:c2:45:
73:2d:e2:8f:22:28:72:e2:f4:aa:e2:f8:49:dd:65:
5c:60:00:84:03:c0:3c:2d:fc:aa:6d:83:55:6e:72:
dc:0b:3d:56:99:71:86:08:b5:9e:e3:9c:36:33:5d:
74:a3:47:b4:fd:37:94:c0:da:c9:e8:55:cc:30:29:
51:57:b3:65:e7:8e:99:89:6a:06:e7:5c:95:b5:28:
3d:5c:6d:a6:86:89:a1:96:f6:c0:82:ec:6f:b6:29:
29:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:6D:56:F8:71:02:11:DE:35:B6:3A:E1:E4:BB:66:EA:DB:A8:C4:D3
X509v3 Authority Key Identifier:
keyid:67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Vm1W-HECEd41tjrh5Ltm6tuoxNM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Z7WwLcQBZm7gRauQzIiBf-CdcGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.249.95.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:98:f7:72:8c:98:1e:1e:61:51:11:24:53:fa:3e:cb:b9:c7:
04:98:33:93:44:12:eb:ca:53:5d:25:32:84:f4:00:46:90:6c:
4c:90:2a:b6:ea:03:e3:c3:82:bb:bf:28:7a:24:8f:a2:52:61:
38:bd:55:27:7e:2f:2c:12:cd:40:15:1a:4e:1e:94:84:ba:3a:
5c:7c:21:86:23:b1:0c:7b:cf:d3:08:6d:f5:d9:ce:7d:03:b7:
2d:ac:28:a6:80:9d:81:b5:0d:19:80:2b:5a:a6:15:84:43:c2:
1f:52:3f:73:b7:d5:27:06:af:76:c6:2e:0f:48:b1:3b:a4:a8:
cc:71:75:ae:3e:99:1b:77:2c:05:8e:a9:8c:ce:01:e2:21:6b:
1c:4b:52:43:94:e4:19:b8:12:ac:f9:1c:1e:df:f0:58:ac:26:
1d:ec:e8:c1:97:e0:99:26:63:fe:eb:b2:f5:39:c5:93:c4:38:
4c:1c:25:15:5b:8b:e6:22:a9:cd:4a:7a:0b:ee:92:cb:97:39:
8b:5e:ff:aa:72:28:20:2c:fb:a5:b7:66:39:97:bd:5b:d7:88:
1b:d8:27:a1:b4:7d:88:97:25:f7:03:e8:64:85:00:64:d0:fd:
0f:78:9d:89:9c:d0:79:c2:54:51:46:c1:ab:2e:2c:50:e0:10:
83:fc:d9:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:27 2024 by rpki-client on console-ams.rpki-client.org