Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/VR2NR26KHzoZji7FgPtrhpdBgNs.roa
File: VR2NR26KHzoZji7FgPtrhpdBgNs.roa (raw, json)
Hash identifier: fhe1JxO8lA6wFTcf7EZ96qYDKB/ABpcOnS18fMUh52w=
Subject key identifier: 55:1D:8D:47:6E:8A:1F:3A:19:8E:2E:C5:80:FB:6B:86:97:41:80:DB
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 08C7BA6E
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/VR2NR26KHzoZji7FgPtrhpdBgNs.roa
Signing time: Sat 01 Jan 2022 07:04:34 +0000
ROA not before: Sat 01 Jan 2022 07:04:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211227
IP address blocks: 193.38.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147307118 (0x8c7ba6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 1 07:04:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=551d8d476e8a1f3a198e2ec580fb6b86974180db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:60:0d:44:06:7f:b0:67:49:f2:a7:a0:ff:a9:
fa:4d:a1:ba:2e:55:53:b4:36:08:0a:1e:f2:44:f9:
86:3c:7d:c6:a3:30:b5:ff:83:03:1d:0b:aa:66:49:
f3:cf:09:e9:8b:61:0a:54:ef:35:a2:a9:c6:47:16:
5b:6e:90:e8:6b:6a:b4:03:11:fd:48:84:23:c0:b2:
e8:51:96:d7:8d:fa:db:dd:9a:6c:00:d8:82:05:15:
db:f7:94:b6:05:c2:6c:89:b2:36:2b:fd:fd:b2:b2:
11:70:e5:29:11:8e:d1:0b:76:18:0e:05:f2:99:36:
6d:17:df:d8:0f:6d:0b:b9:94:9b:54:61:44:09:54:
e7:a6:fa:0b:2e:40:b7:42:73:d4:a3:83:3b:23:af:
90:4e:d4:55:77:20:0b:a0:ae:27:35:47:79:d2:fb:
1c:76:84:d9:0f:29:53:7c:cf:b2:c4:da:ad:01:76:
8b:8e:5c:4a:7c:67:95:d0:2c:f7:5e:c3:26:eb:bc:
a4:ce:fe:90:ea:97:99:be:bd:d4:01:b8:5c:2f:fc:
47:e3:2f:5b:06:04:74:f9:cc:ab:94:69:e9:e4:91:
28:29:fa:83:a4:fb:55:27:1f:16:1a:09:bf:e1:a7:
b5:82:aa:e2:71:97:27:85:a0:37:1f:59:69:9a:b1:
03:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:1D:8D:47:6E:8A:1F:3A:19:8E:2E:C5:80:FB:6B:86:97:41:80:DB
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/VR2NR26KHzoZji7FgPtrhpdBgNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.38.249.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:24:9f:32:94:4f:e9:bb:cb:81:93:27:7f:47:76:a7:4c:3d:
bb:5b:7b:7d:33:d2:43:5c:c0:e4:70:ee:f7:87:af:a8:f3:ce:
f1:b3:40:e9:8f:0f:4c:ce:ff:54:97:f9:44:22:af:9c:cc:3b:
47:1e:07:95:ef:4b:92:50:49:5f:b6:ff:3c:2d:03:62:08:b9:
94:9c:91:65:29:d0:6f:2d:9a:d0:6d:4b:87:0a:d5:c9:17:00:
52:42:00:a3:59:c3:a6:42:68:ab:e1:82:b8:f8:53:ae:f3:61:
ed:45:7a:05:22:da:f8:cd:3f:8e:62:00:05:62:2a:f3:ea:c2:
ca:80:b7:c1:a5:06:86:e4:90:be:9f:74:4e:88:91:8b:54:de:
eb:d4:79:99:53:34:1b:e5:7d:9e:b7:8e:30:2d:7e:b9:bd:1e:
d5:ad:66:7d:dc:75:f8:e0:03:8e:dd:cb:56:9d:9c:53:dc:57:
97:95:bc:42:38:cd:07:1d:4e:9f:ea:15:a3:f4:02:57:36:52:
e2:5d:23:94:53:57:6e:a1:08:8d:9d:54:0a:43:a2:8c:ab:bc:
32:0c:80:f7:20:71:98:9a:29:9e:37:71:33:3d:2b:da:18:2e:
7b:7a:24:a5:da:37:06:49:82:04:4a:2e:18:64:fa:75:ad:fe:
a3:cd:2b:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:34 2023 by rpki-client on console-fra.rpki-client.org