Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/2dba5c-9a90-4052-a1eb-6a8477cb6c2a/1/vYOtXtzKh5dc3PfEgW1SsnIddaA.roa
File: vYOtXtzKh5dc3PfEgW1SsnIddaA.roa (raw, json)
Hash identifier: c7RtzqOYxN7lZR/T2LSiVkt+SyL3OkkarzjhH9EOtaI=
Subject key identifier: BD:83:AD:5E:DC:CA:87:97:5C:DC:F7:C4:81:6D:52:B2:72:1D:75:A0
Certificate issuer: /CN=e61c07c951488f04cb3b0fd338af84d77e46bf52
Certificate serial: 1B85D6C4
Authority key identifier: E6:1C:07:C9:51:48:8F:04:CB:3B:0F:D3:38:AF:84:D7:7E:46:BF:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5hwHyVFIjwTLOw_TOK-E135Gv1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/2dba5c-9a90-4052-a1eb-6a8477cb6c2a/1/vYOtXtzKh5dc3PfEgW1SsnIddaA.roa
Signing time: Sat 01 Jan 2022 08:59:59 +0000
ROA not before: Sat 01 Jan 2022 08:59:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15507
IP address blocks: 193.201.36.0/24 maxlen: 24
2001:678:b18::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 461756100 (0x1b85d6c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e61c07c951488f04cb3b0fd338af84d77e46bf52
Validity
Not Before: Jan 1 08:59:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd83ad5edcca87975cdcf7c4816d52b2721d75a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d9:63:bb:f6:6e:dd:9c:8b:60:33:7c:f6:12:
cb:5a:d3:0e:cd:cc:a1:ff:dc:d8:39:79:96:2f:82:
75:cc:40:66:a2:10:27:c4:82:ee:30:33:b5:ba:c7:
50:33:29:1b:90:79:16:3d:53:e6:2a:a0:e0:b9:75:
08:20:3f:c7:4b:90:bc:2b:e4:51:73:d0:46:25:6f:
78:f9:6e:20:53:66:da:93:a7:e9:ab:54:00:71:c4:
11:dc:24:c5:fb:c6:99:eb:36:a8:28:19:75:27:fa:
2e:cb:a9:4e:9e:3d:4c:2c:5d:71:39:f0:18:40:10:
10:0f:19:10:43:21:0a:24:cb:cd:44:e5:d4:0b:f8:
29:c2:b5:87:11:1c:ca:7d:d6:b4:00:b5:30:e3:84:
ed:bb:6a:a5:71:85:73:51:c0:7c:b2:56:3d:26:57:
e0:26:86:eb:f8:76:81:64:4f:c2:0e:46:07:b5:46:
32:8e:81:52:f9:2f:7c:61:93:33:a4:ba:42:4f:ac:
3e:db:a1:c3:9c:e7:b0:11:be:44:d6:87:10:d5:19:
d1:69:34:bf:fb:4d:5c:54:8a:b3:8e:e9:69:d5:ed:
98:f7:1a:7b:87:22:e8:26:1e:dd:30:84:f7:51:d7:
ca:48:b1:df:f8:de:cc:27:d3:24:a3:f9:62:93:ab:
cc:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:83:AD:5E:DC:CA:87:97:5C:DC:F7:C4:81:6D:52:B2:72:1D:75:A0
X509v3 Authority Key Identifier:
keyid:E6:1C:07:C9:51:48:8F:04:CB:3B:0F:D3:38:AF:84:D7:7E:46:BF:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5hwHyVFIjwTLOw_TOK-E135Gv1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/2dba5c-9a90-4052-a1eb-6a8477cb6c2a/1/vYOtXtzKh5dc3PfEgW1SsnIddaA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/2dba5c-9a90-4052-a1eb-6a8477cb6c2a/1/5hwHyVFIjwTLOw_TOK-E135Gv1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.201.36.0/24
IPv6:
2001:678:b18::/48
Signature Algorithm: sha256WithRSAEncryption
70:63:6f:73:00:7b:6d:65:98:3b:0f:6f:ec:24:78:dc:d3:06:
b2:2c:26:56:7c:54:f0:9b:8e:67:2c:45:ca:b4:31:f6:ee:09:
46:b1:59:ba:46:2a:c3:4d:47:d6:70:57:a7:f2:e8:37:c5:af:
d9:3b:71:75:e0:6c:be:cf:c1:37:3c:41:55:37:53:4f:f1:d5:
59:66:bb:d8:64:70:5c:b9:b4:46:cb:98:f0:27:e6:56:9e:65:
49:74:b6:14:c9:34:d7:06:8e:c7:c7:46:38:f8:42:1d:2f:5d:
2f:f6:38:cf:5a:b3:57:af:81:cd:4d:2c:03:30:1e:fc:d2:32:
7f:6d:fd:03:70:90:3a:3f:cf:d7:03:c5:48:fa:3c:26:87:55:
50:f6:57:84:f0:b3:33:45:6e:d6:25:5f:5b:74:69:f3:d4:2e:
85:f0:75:2c:53:a3:a5:21:52:cc:80:74:79:47:f9:36:bf:e3:
55:f2:38:70:da:52:60:3f:88:2c:1c:28:e8:a6:b0:43:14:da:
a0:39:78:90:5f:4f:34:28:b8:80:a3:09:f1:dc:df:63:86:00:
dd:d8:0a:17:75:62:b0:be:55:50:48:05:9a:74:6d:42:10:b1:
63:9b:8e:90:74:ed:98:67:3c:d2:09:b4:ca:59:77:80:48:bc:
52:09:ce:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:03 2024 by rpki-client on console-ams.rpki-client.org