Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/bc268d-61f0-471f-aab9-800eda2cfb36/1/VCqQ6SwvM9WVlq2Z3CHvHwCoBds.roa
File: VCqQ6SwvM9WVlq2Z3CHvHwCoBds.roa (raw, json)
Hash identifier: RVfgichkj7cQD0veQMxoZqkL2JhkPDEsoPWu5EhujGA=
Subject key identifier: 54:2A:90:E9:2C:2F:33:D5:95:96:AD:99:DC:21:EF:1F:00:A8:05:DB
Certificate issuer: /CN=0a37d807d4f7cdd3e0afe4abc8ee5a880c6090f1
Certificate serial: 097488BE
Authority key identifier: 0A:37:D8:07:D4:F7:CD:D3:E0:AF:E4:AB:C8:EE:5A:88:0C:60:90:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CjfYB9T3zdPgr-SryO5aiAxgkPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/bc268d-61f0-471f-aab9-800eda2cfb36/1/VCqQ6SwvM9WVlq2Z3CHvHwCoBds.roa
Signing time: Sat 19 Feb 2022 16:04:27 +0000
ROA not before: Sat 19 Feb 2022 16:04:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9583
IP address blocks: 159.151.254.0/24 maxlen: 24
192.109.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158632126 (0x97488be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a37d807d4f7cdd3e0afe4abc8ee5a880c6090f1
Validity
Not Before: Feb 19 16:04:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=542a90e92c2f33d59596ad99dc21ef1f00a805db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:1b:51:ad:56:ae:92:d0:a0:67:1e:77:6f:6f:
85:7f:07:1b:bb:fc:15:88:7b:9d:45:7f:f4:91:90:
62:4b:bc:5a:c4:56:60:e0:4f:0c:9f:e7:f0:28:38:
32:57:2c:85:3d:e0:99:0c:c0:7b:df:a6:db:99:2d:
42:a8:e1:25:c4:f8:c6:96:cb:8f:40:0e:94:35:bf:
23:72:24:47:da:56:bc:07:51:0d:fe:57:8d:e0:da:
b3:61:d0:e5:e7:b3:15:10:1f:f7:02:f4:d3:6f:9e:
a6:67:6a:b4:59:36:13:e0:73:b1:11:7f:d2:9b:eb:
b2:d3:92:d4:9a:c5:19:c2:38:e8:c7:b9:da:24:fa:
66:be:bd:da:52:b8:f9:d1:a1:18:f7:3d:97:90:85:
3a:41:d6:67:ca:0c:e6:20:5f:8f:ba:ec:7c:42:43:
e6:6c:2f:3d:db:b0:f2:26:90:6e:04:f3:ed:c1:02:
93:97:2e:75:46:78:98:3b:7b:b0:f3:ed:cd:49:3a:
af:89:fe:4c:42:07:88:4e:f1:84:6e:e3:89:2d:c5:
47:05:ce:4b:87:bb:05:cf:6f:d4:09:86:27:4a:35:
da:22:33:1b:8a:7c:ad:ee:2f:71:4f:9d:99:b0:08:
19:bb:15:64:79:56:e0:eb:a7:49:d2:b7:a6:21:bb:
ce:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:2A:90:E9:2C:2F:33:D5:95:96:AD:99:DC:21:EF:1F:00:A8:05:DB
X509v3 Authority Key Identifier:
keyid:0A:37:D8:07:D4:F7:CD:D3:E0:AF:E4:AB:C8:EE:5A:88:0C:60:90:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CjfYB9T3zdPgr-SryO5aiAxgkPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/bc268d-61f0-471f-aab9-800eda2cfb36/1/VCqQ6SwvM9WVlq2Z3CHvHwCoBds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/bc268d-61f0-471f-aab9-800eda2cfb36/1/CjfYB9T3zdPgr-SryO5aiAxgkPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.151.254.0/24
192.109.146.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:d1:86:41:a0:66:0e:65:f2:fe:71:bd:62:8c:3c:bd:69:42:
4a:19:74:5f:c8:d8:b2:b4:87:32:f8:17:cf:86:46:1e:e7:c5:
b3:19:cf:db:77:a7:ce:10:91:d3:dd:c7:65:40:d6:31:51:77:
d5:5b:33:75:b7:8e:e9:eb:7c:03:34:02:50:08:39:a7:7c:f0:
c6:40:6b:28:d9:aa:35:b1:3e:e6:bb:d2:33:f6:06:4d:15:d0:
f2:1c:e0:c6:9a:bc:73:98:37:62:de:58:90:e1:d6:b3:e8:d0:
97:1b:31:59:84:18:51:e4:f4:b5:a8:21:dd:f8:6f:81:1f:38:
04:65:29:b0:f8:29:fb:15:d9:2b:11:2c:a8:ed:af:64:ff:6f:
9f:7f:81:7e:75:6f:a8:fb:fc:9e:71:af:79:3b:6e:4e:22:7d:
a3:5e:28:a8:eb:c7:c5:62:5d:2d:50:85:7d:ff:24:8f:60:e3:
c3:2f:d4:61:ce:f6:50:87:33:78:d2:e5:ba:86:fb:aa:7b:ea:
d4:2a:87:5c:17:48:a6:56:f6:b6:6a:1d:c1:dc:53:54:3e:bc:
06:01:85:86:74:9f:f0:46:8f:31:34:67:8c:02:b5:9a:8d:fb:
e6:33:cb:4c:a4:35:45:1e:20:09:2c:b8:97:2a:68:35:0a:ae:
d7:c1:77:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:54 2024 by rpki-client on console-fra.rpki-client.org