Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/4f918b-28d9-419b-8647-338986176b1f/1/d8rAYEkjHkeMORKPUIb4B7oynE4.roa
File: d8rAYEkjHkeMORKPUIb4B7oynE4.roa (raw, json)
Hash identifier: wOLEw1iL2By95z7zRycrJ/bSj6neURf6XHQeGy6skAc=
Subject key identifier: 77:CA:C0:60:49:23:1E:47:8C:39:12:8F:50:86:F8:07:BA:32:9C:4E
Certificate issuer: /CN=55a72cff41bdb7c7e01855d39076daf721742c70
Certificate serial: 02DA927A
Authority key identifier: 55:A7:2C:FF:41:BD:B7:C7:E0:18:55:D3:90:76:DA:F7:21:74:2C:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vacs_0G9t8fgGFXTkHba9yF0LHA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/4f918b-28d9-419b-8647-338986176b1f/1/d8rAYEkjHkeMORKPUIb4B7oynE4.roa
Signing time: Sat 01 Jan 2022 10:54:28 +0000
ROA not before: Sat 01 Jan 2022 10:54:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212356
IP address blocks: 185.234.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47878778 (0x2da927a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55a72cff41bdb7c7e01855d39076daf721742c70
Validity
Not Before: Jan 1 10:54:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77cac06049231e478c39128f5086f807ba329c4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e9:ac:e2:37:e6:b5:3e:3b:92:c5:21:8e:38:
d7:39:be:8b:d1:1f:6a:87:3b:98:4e:5d:11:df:c2:
a8:21:a5:a4:4a:ec:99:ea:59:73:70:07:e7:45:99:
4a:75:04:c9:a6:49:08:75:3f:9f:a2:17:8b:36:f3:
14:1c:d3:5f:36:3d:89:27:38:e0:84:21:2d:96:ea:
77:b3:14:85:22:09:ff:56:7b:b6:65:38:b8:07:3a:
0d:3e:83:3f:6f:78:aa:43:b7:2b:1b:b6:76:ee:d4:
02:78:d8:4a:15:45:de:83:75:97:37:16:06:05:f6:
cb:34:d1:10:90:e3:ba:62:8f:79:e3:2e:16:67:c3:
7d:38:c2:e4:30:bb:c7:82:d8:57:94:8f:5a:c2:e1:
d2:db:21:32:2f:3f:56:27:36:bc:18:87:50:d2:83:
d5:fa:ca:1a:66:36:fa:b0:f3:a7:c4:a8:a1:6e:fb:
2a:50:64:8a:c4:2d:29:a8:05:83:2f:b7:48:d6:23:
f3:25:ef:f4:b3:6c:e2:94:36:cd:52:ab:b5:01:20:
97:d8:2d:01:b3:27:f6:a0:93:91:bb:da:4b:a6:f3:
a9:ff:d3:ab:b0:4c:4d:a9:0b:28:ac:06:36:7f:68:
c3:1b:02:24:b6:99:e3:51:6d:cd:27:a6:90:94:17:
da:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:CA:C0:60:49:23:1E:47:8C:39:12:8F:50:86:F8:07:BA:32:9C:4E
X509v3 Authority Key Identifier:
keyid:55:A7:2C:FF:41:BD:B7:C7:E0:18:55:D3:90:76:DA:F7:21:74:2C:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vacs_0G9t8fgGFXTkHba9yF0LHA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/4f918b-28d9-419b-8647-338986176b1f/1/d8rAYEkjHkeMORKPUIb4B7oynE4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/4f918b-28d9-419b-8647-338986176b1f/1/Vacs_0G9t8fgGFXTkHba9yF0LHA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.244.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:a7:3e:33:1e:9f:c8:ea:eb:61:ef:38:8e:96:e3:8b:ff:0b:
1e:80:04:41:e4:1f:dd:ae:30:05:07:c1:91:d0:84:9e:45:0e:
dd:76:5f:fc:bb:26:1d:67:16:6b:73:c8:81:33:8b:cd:bb:d7:
e2:a1:f3:ab:67:b9:c9:f6:ab:e2:6e:5b:99:28:d1:bb:af:18:
6d:73:a2:da:7c:c8:98:eb:f9:46:93:43:6b:18:d3:00:62:02:
4d:fb:c0:c0:20:16:90:0d:b5:3e:fe:f3:53:f6:7e:68:de:15:
e7:ea:b8:51:a9:7c:f7:a7:05:86:15:f7:0f:53:de:1f:9b:0a:
6c:83:02:07:c4:eb:7d:50:c0:55:d1:24:23:a6:15:11:5c:a6:
ea:9f:8b:c6:2a:5a:ba:2a:db:a4:33:52:3f:d0:aa:80:b8:a3:
2c:d3:a2:02:3a:8b:47:28:ba:2e:5e:d6:52:a4:f1:93:28:9d:
b2:45:95:fb:18:e1:60:73:cd:76:4d:63:86:f0:6d:4e:24:ae:
6e:43:2a:c7:39:4d:7a:e1:ed:73:e2:df:eb:f5:7e:c8:f9:cb:
be:fb:04:ff:b4:fd:39:b8:ad:e8:45:02:d5:f7:67:7b:29:d1:
39:fb:8c:d7:df:64:ff:94:be:fc:c8:38:4f:4a:15:29:15:65:
1f:96:f9:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:19 2024 by rpki-client on console-ams.rpki-client.org