Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/VfxzCqJcXJ6rpHUYZhG-aqwkKBQ.roa
File: VfxzCqJcXJ6rpHUYZhG-aqwkKBQ.roa (raw, json)
Hash identifier: 5h9izV5Nl5INTsj46bTRoJ1tdLEB2JbBRRAV5Gsp0G0=
Subject key identifier: 55:FC:73:0A:A2:5C:5C:9E:AB:A4:75:18:66:11:BE:6A:AC:24:28:14
Certificate issuer: /CN=d04265fb11c2a220bc350718673e0704d1edadde
Certificate serial: 023959EE
Authority key identifier: D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/VfxzCqJcXJ6rpHUYZhG-aqwkKBQ.roa
Signing time: Sat 01 Jan 2022 12:04:33 +0000
ROA not before: Sat 01 Jan 2022 12:04:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209711
IP address blocks: 134.255.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37313006 (0x23959ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d04265fb11c2a220bc350718673e0704d1edadde
Validity
Not Before: Jan 1 12:04:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55fc730aa25c5c9eaba475186611be6aac242814
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5f:e9:27:49:72:2e:c3:8b:eb:8a:9f:15:6a:
c9:65:ae:6f:0e:94:7e:40:e6:3c:16:1e:57:62:43:
ba:a1:68:54:44:23:9a:87:c8:01:c0:99:b6:9e:a4:
3b:1f:4f:08:11:2e:f4:65:ea:30:37:31:3f:fc:28:
0c:57:dc:a1:e2:32:95:51:9a:5c:e7:a8:df:6a:4f:
80:f8:f1:bd:f7:88:f7:b2:6a:81:49:ec:93:b0:9a:
38:fc:0d:9f:ce:4b:32:17:20:42:d1:fb:f6:37:55:
fc:de:93:64:da:a3:f9:92:2b:79:93:3a:14:c1:7c:
fc:81:cd:18:1b:27:65:9f:ec:58:1a:90:cd:07:16:
fa:92:49:8e:2e:ae:54:62:7e:9a:a5:ee:ba:bb:2e:
d9:75:b8:87:6d:72:86:db:ff:e6:f5:1d:34:01:54:
cc:eb:5f:ce:a4:9a:29:bb:a6:cc:ca:5d:35:6f:b4:
08:bb:8e:f9:12:8b:d9:07:37:6b:82:8f:02:ae:4c:
f6:ec:d4:ed:23:d7:26:93:95:62:c4:ad:a5:7a:7d:
35:d1:5c:43:f4:0a:83:b5:70:56:07:e0:dc:7b:5b:
d7:46:c2:f9:9e:eb:c1:6f:9a:22:c8:cc:58:af:15:
65:4e:39:75:83:90:d6:8c:8c:d0:5d:b7:11:1d:07:
94:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:FC:73:0A:A2:5C:5C:9E:AB:A4:75:18:66:11:BE:6A:AC:24:28:14
X509v3 Authority Key Identifier:
keyid:D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/VfxzCqJcXJ6rpHUYZhG-aqwkKBQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.255.199.0/24
Signature Algorithm: sha256WithRSAEncryption
58:e9:0a:2f:26:37:3a:0b:33:0d:a9:6e:28:a4:48:7b:d3:09:
dc:80:80:b8:88:0f:a6:8c:ee:20:ff:f0:4e:5b:5f:40:7e:3b:
3a:83:67:45:e9:de:af:a9:33:a9:36:38:ea:2d:85:a4:ce:77:
d8:9c:26:44:39:0d:35:d1:2d:df:e4:76:ff:b7:88:2a:a4:10:
a5:f1:c0:f5:b8:ed:d4:34:65:86:22:23:8d:59:cc:80:c4:cd:
fd:2c:08:f8:f0:30:66:be:14:5d:54:f4:db:87:3b:dc:a2:0a:
78:06:a6:dd:1e:15:46:99:d3:64:56:2e:17:62:7e:97:08:34:
8d:75:59:56:85:a5:f3:bf:10:90:c4:ec:25:8b:8a:ec:e0:e6:
ce:30:9a:49:b8:5b:a7:12:5d:47:a8:8c:ba:f8:ca:f7:5b:35:
20:96:42:db:5f:6c:16:5b:5d:7e:3e:53:42:f1:3d:96:31:e4:
cb:67:35:db:de:22:8b:8b:8a:a9:c6:48:c8:27:45:33:cf:2a:
04:28:2e:21:cc:8e:96:53:b5:d8:a5:20:20:1c:2c:bd:33:25:
aa:c3:cb:8d:79:69:58:5c:8b:ae:61:ed:11:4c:cc:2d:fa:db:
6f:ec:bd:69:40:4b:64:1e:e4:cc:9b:a7:bc:b6:54:f2:71:25:
4c:82:52:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:32 2024 by rpki-client on console-ams.rpki-client.org