Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/eb1cd5-c871-4d4f-ac3f-4b599d08ed1c/1/VsrMGW6u5DtvRa7asHJHC9G_XVs.roa
File: VsrMGW6u5DtvRa7asHJHC9G_XVs.roa (raw, json)
Hash identifier: KvvuNwzNjvX4SRnN49pE/5YklB167LckWUtGxpyY9no=
Subject key identifier: 56:CA:CC:19:6E:AE:E4:3B:6F:45:AE:DA:B0:72:47:0B:D1:BF:5D:5B
Certificate issuer: /CN=cafd3133df47ce2bb07c472fbe6bb4e9178c6233
Certificate serial: D76DB0
Authority key identifier: CA:FD:31:33:DF:47:CE:2B:B0:7C:47:2F:BE:6B:B4:E9:17:8C:62:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yv0xM99HziuwfEcvvmu06ReMYjM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/eb1cd5-c871-4d4f-ac3f-4b599d08ed1c/1/VsrMGW6u5DtvRa7asHJHC9G_XVs.roa
Signing time: Sat 01 Jan 2022 11:56:39 +0000
ROA not before: Sat 01 Jan 2022 11:56:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 37.72.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14118320 (0xd76db0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cafd3133df47ce2bb07c472fbe6bb4e9178c6233
Validity
Not Before: Jan 1 11:56:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56cacc196eaee43b6f45aedab072470bd1bf5d5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:cc:19:e7:43:3a:f3:e2:2e:cd:2a:59:b3:b2:
41:03:ad:aa:cd:f7:3e:af:69:a7:0d:93:96:16:51:
01:6c:65:27:65:7a:f5:1a:2d:24:24:45:3a:24:5d:
e4:09:9b:78:8c:2b:8d:c1:3e:ad:50:4c:34:92:58:
3d:15:2c:55:b4:bf:a9:de:1f:38:02:01:ea:2b:9a:
37:2c:7f:6c:ac:ff:82:67:66:0f:f6:99:c9:6e:58:
3d:6f:2c:75:8e:91:1a:bd:d3:05:7d:99:88:a5:0a:
9b:df:69:bf:51:ce:08:51:29:6a:c1:22:45:dc:0f:
83:2f:5e:3c:13:97:27:d5:6f:c2:a4:aa:a4:5e:05:
88:a3:d6:98:d9:de:a5:02:fa:fc:0f:15:42:74:b3:
51:91:fb:37:6b:7a:0a:b1:6e:e1:d7:36:2f:76:1b:
8d:62:eb:44:19:18:27:61:db:ff:ca:bc:a5:75:54:
53:70:0f:f0:24:85:d8:a1:6e:db:0b:be:9c:7e:a0:
3f:cb:53:8e:15:a5:21:33:fd:ff:aa:97:b1:71:e2:
9f:67:72:f2:c7:6a:dd:87:2d:12:60:84:e8:f6:7d:
22:31:69:27:4e:6a:81:06:43:c3:01:cf:99:df:17:
2d:51:88:c9:38:69:0d:b9:26:b8:20:34:ea:b2:22:
56:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:CA:CC:19:6E:AE:E4:3B:6F:45:AE:DA:B0:72:47:0B:D1:BF:5D:5B
X509v3 Authority Key Identifier:
keyid:CA:FD:31:33:DF:47:CE:2B:B0:7C:47:2F:BE:6B:B4:E9:17:8C:62:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yv0xM99HziuwfEcvvmu06ReMYjM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/eb1cd5-c871-4d4f-ac3f-4b599d08ed1c/1/VsrMGW6u5DtvRa7asHJHC9G_XVs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/eb1cd5-c871-4d4f-ac3f-4b599d08ed1c/1/yv0xM99HziuwfEcvvmu06ReMYjM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.72.133.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:48:06:3e:59:61:c1:38:06:68:1a:27:3c:89:3b:cf:01:6a:
32:c8:b2:5f:eb:79:45:94:b4:e6:dd:27:b9:06:b8:b9:92:52:
6e:41:49:b6:7e:58:1c:38:34:aa:49:db:d9:fe:f4:8c:a4:e4:
21:5b:ae:18:dd:33:0c:9a:7f:d3:38:91:83:c6:27:05:34:36:
4a:8e:35:8e:f7:10:cb:3c:31:02:45:76:23:61:e0:5f:48:e9:
ea:c2:20:dd:0d:24:10:cd:99:79:60:46:f4:be:47:ee:1c:56:
94:7e:a1:8f:51:2d:58:bb:c0:a4:9a:e0:dc:e0:d6:58:f7:3b:
bb:80:7c:87:08:67:c5:7d:d3:f0:f6:3b:77:36:1e:a3:a9:15:
6c:47:96:a6:f7:bd:f3:dc:05:02:8b:42:e3:0b:96:18:e3:d9:
54:94:bb:e0:39:b3:93:74:fa:fb:08:da:fa:f9:10:2d:fa:c9:
ae:3d:05:32:11:64:e3:3c:be:2e:1f:e8:04:59:2a:c2:aa:5a:
9c:23:0e:7a:cf:1d:a3:da:51:00:8d:7f:92:c8:78:b7:76:f4:
30:ab:27:e1:3d:86:b9:b0:22:2a:64:08:49:7d:4a:96:53:da:
02:bd:60:d6:e2:20:e6:16:9d:80:ff:45:0f:22:7a:3f:d3:bb:
ba:43:09:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:16 2023 by rpki-client on console-ams.rpki-client.org