Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/d5b1a7-466d-471c-a70c-2fb25abfdc53/1/Vmwre1EM4GLBMSSNnh0gzx-75eE.roa
File: Vmwre1EM4GLBMSSNnh0gzx-75eE.roa (raw, json)
Hash identifier: +nArV4U4HVCZOkBuRJh7gabaYMOatrsxOXMG67liq5Q=
Subject key identifier: 56:6C:2B:7B:51:0C:E0:62:C1:31:24:8D:9E:1D:20:CF:1F:BB:E5:E1
Certificate issuer: /CN=8cdcf26f74860588cac6bae17f99de22dbc49ae6
Certificate serial: 01850725406375BB81936EEFE7C8E12D666A
Authority key identifier: 8C:DC:F2:6F:74:86:05:88:CA:C6:BA:E1:7F:99:DE:22:DB:C4:9A:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jNzyb3SGBYjKxrrhf5neItvEmuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/d5b1a7-466d-471c-a70c-2fb25abfdc53/1/Vmwre1EM4GLBMSSNnh0gzx-75eE.roa
Signing time: Mon 12 Dec 2022 16:22:39 +0000
ROA not before: Mon 12 Dec 2022 16:22:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41114
IP address blocks: 45.157.248.0/22 maxlen: 22
185.98.64.0/22 maxlen: 22
62.192.140.0/22 maxlen: 22
2a0a:7980::/32 maxlen: 32
2a00:7aa0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:07:25:40:63:75:bb:81:93:6e:ef:e7:c8:e1:2d:66:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8cdcf26f74860588cac6bae17f99de22dbc49ae6
Validity
Not Before: Dec 12 16:22:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=566c2b7b510ce062c131248d9e1d20cf1fbbe5e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:ef:ab:ce:17:cb:47:ea:74:35:3d:ed:55:2d:
62:23:08:b7:4c:18:65:29:8c:e7:28:37:0a:98:32:
42:82:0d:bd:da:53:98:0d:9f:f4:02:2e:41:0a:b0:
87:33:d8:83:40:4a:9f:84:50:40:57:a5:5e:c2:22:
4e:93:20:2b:8b:09:61:96:b9:dd:52:7b:8a:89:71:
93:d0:7e:a8:a3:73:0c:d5:be:54:7d:e4:60:fd:d4:
ab:2c:87:48:bb:18:42:7d:98:03:67:1a:c6:5b:03:
fe:98:f9:00:0e:b7:a7:99:fe:41:43:d8:65:73:cc:
6f:bb:dd:6e:67:69:51:6b:10:a4:72:9f:1f:7e:9f:
9e:f4:22:7e:74:fa:63:66:7a:48:ed:58:5d:36:1f:
d2:0f:11:a9:a6:52:3e:3d:45:16:b9:f6:c4:40:30:
7e:f5:cc:09:dd:79:1a:f0:e4:55:19:99:77:9f:8b:
11:e1:11:97:12:e2:5d:b9:54:00:25:61:b4:05:5b:
df:da:8c:9a:0a:30:d4:9a:b4:81:bd:4b:fe:bb:ac:
a3:77:9d:52:f1:83:1a:5f:9f:e8:e8:3b:f1:04:03:
b6:29:30:9d:21:5a:31:4d:7f:74:8d:2d:37:7a:d8:
16:84:e7:1e:bc:f1:56:53:7f:9e:cc:19:85:2f:63:
79:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:6C:2B:7B:51:0C:E0:62:C1:31:24:8D:9E:1D:20:CF:1F:BB:E5:E1
X509v3 Authority Key Identifier:
keyid:8C:DC:F2:6F:74:86:05:88:CA:C6:BA:E1:7F:99:DE:22:DB:C4:9A:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jNzyb3SGBYjKxrrhf5neItvEmuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/d5b1a7-466d-471c-a70c-2fb25abfdc53/1/Vmwre1EM4GLBMSSNnh0gzx-75eE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/d5b1a7-466d-471c-a70c-2fb25abfdc53/1/jNzyb3SGBYjKxrrhf5neItvEmuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.248.0/22
62.192.140.0/22
185.98.64.0/22
IPv6:
2a00:7aa0::/32
2a0a:7980::/32
Signature Algorithm: sha256WithRSAEncryption
a2:e1:94:a8:6b:8c:8d:a2:2a:f7:68:cd:47:9b:82:3c:0b:48:
41:ba:99:9d:1b:61:19:ce:20:2b:52:80:cc:8e:a2:cb:66:a5:
f3:41:87:4c:0c:f7:bb:b3:7c:8d:de:1c:5e:ea:47:e2:9a:12:
c9:1b:80:71:d3:1d:ee:7a:8b:61:28:1c:93:e2:a5:fe:25:32:
9a:67:75:fe:da:d7:b4:c2:3a:95:01:c3:7d:f5:69:70:5e:5d:
13:38:3d:7e:b2:40:ff:3c:a8:d3:b4:48:9b:94:43:14:12:c0:
27:50:c6:ba:11:c7:37:1b:d3:67:06:a7:78:f6:56:8c:c6:ef:
ee:fb:2d:f6:2c:b0:52:23:32:a2:d9:c9:32:4b:19:71:fb:82:
88:d9:bd:ff:c6:88:e5:b7:62:4b:2f:9b:5d:48:37:29:4c:05:
46:4f:3c:fa:e1:dd:79:11:b0:e8:d5:42:7b:c0:e8:3d:c8:a2:
d8:cb:21:3a:7a:80:92:f4:41:a5:9e:18:74:8d:74:ce:65:c1:
e8:ba:2c:76:be:92:27:3e:ae:30:4a:e5:72:cf:76:b2:21:37:
45:a4:c8:15:e0:5a:70:5d:56:5e:c6:20:cc:a9:02:c5:32:74:
d7:2c:89:fa:d9:13:2a:55:18:da:17:ae:7c:2c:35:1d:2e:20:
2d:4f:ba:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:00 2023 by rpki-client on console-ams.rpki-client.org