Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/VJfxNW71h7hvMd7I9xfgmTQzhWY.roa
File: VJfxNW71h7hvMd7I9xfgmTQzhWY.roa (raw, json)
Hash identifier: c2JKajQROaBqDZUV+c1FVTFwGfQEK6CTXYep1zERNPE=
Subject key identifier: 54:97:F1:35:6E:F5:87:B8:6F:31:DE:C8:F7:17:E0:99:34:33:85:66
Certificate issuer: /CN=827af17f0499627e4b3c8cc5c333ec4b8e7635e0
Certificate serial: 0FB4C035
Authority key identifier: 82:7A:F1:7F:04:99:62:7E:4B:3C:8C:C5:C3:33:EC:4B:8E:76:35:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnrxfwSZYn5LPIzFwzPsS452NeA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/VJfxNW71h7hvMd7I9xfgmTQzhWY.roa
Signing time: Sat 01 Jan 2022 05:06:25 +0000
ROA not before: Sat 01 Jan 2022 05:06:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.195.0.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 263503925 (0xfb4c035)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827af17f0499627e4b3c8cc5c333ec4b8e7635e0
Validity
Not Before: Jan 1 05:06:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5497f1356ef587b86f31dec8f717e09934338566
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b1:65:16:65:de:bf:c3:85:92:d2:72:80:70:
b2:91:02:90:76:55:9e:60:4a:26:db:07:6c:5d:03:
da:3e:1b:65:fe:ef:d0:1f:ed:41:e9:fc:1e:5f:ed:
20:9e:aa:cc:af:9c:6d:77:2a:0f:cb:f3:f4:84:5f:
31:4d:2c:f8:84:0c:60:ae:20:a8:0c:fa:47:4d:68:
13:ac:16:81:f3:10:5a:80:df:61:56:8a:9f:a8:61:
52:7e:ff:95:44:dd:e1:6f:e2:f4:36:4b:0e:1b:5d:
6f:f3:84:7f:ba:c2:de:bf:7d:4a:5a:80:ae:15:02:
13:bd:2e:72:16:e9:ea:14:43:cb:12:01:4e:8f:38:
7f:b9:a4:10:8d:14:e2:f8:e3:7d:e6:46:e1:17:fc:
48:70:c2:cf:a8:95:16:a6:16:ac:b8:5f:90:8a:7f:
a5:3b:16:96:12:03:09:3e:59:78:59:3a:48:72:e1:
9b:f9:2c:0d:49:57:8a:1a:80:34:58:d1:1b:11:78:
54:bd:ee:8d:9c:49:a6:49:95:38:ed:66:31:4e:65:
2a:d0:b5:3b:d8:a5:26:77:7f:12:96:c5:2d:a5:bb:
b4:ff:af:3f:a1:62:3e:d8:e2:3d:25:2a:16:17:81:
7f:38:92:eb:68:7d:68:f6:53:56:52:7a:bf:45:e0:
7c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:97:F1:35:6E:F5:87:B8:6F:31:DE:C8:F7:17:E0:99:34:33:85:66
X509v3 Authority Key Identifier:
keyid:82:7A:F1:7F:04:99:62:7E:4B:3C:8C:C5:C3:33:EC:4B:8E:76:35:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnrxfwSZYn5LPIzFwzPsS452NeA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/VJfxNW71h7hvMd7I9xfgmTQzhWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/gnrxfwSZYn5LPIzFwzPsS452NeA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.195.0.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:1a:80:4d:4a:27:27:3b:e0:85:c9:b0:fe:c1:2a:67:8b:d9:
bc:66:a3:22:f6:c1:dc:48:d3:ce:ca:39:7c:97:05:c5:33:c7:
ea:07:28:26:46:95:d7:08:29:b5:7a:39:f0:1f:13:46:ca:42:
30:fb:33:f5:58:29:18:97:60:7e:4a:45:69:d0:7f:99:91:61:
83:99:39:5e:6d:13:a8:77:b5:c8:4a:e6:76:1d:06:a8:1b:a0:
05:b9:99:e7:67:da:e0:a6:65:44:b3:6c:40:1a:6c:86:97:23:
f2:57:78:8e:cb:68:4a:fd:fd:ba:08:71:3f:7b:d5:6e:ff:11:
fa:1f:f9:01:06:95:7f:62:17:3e:03:4e:a8:0c:78:33:3b:85:
e2:9c:8e:e3:09:88:3b:95:d0:23:a7:de:ca:d1:82:08:e3:ff:
b8:32:50:27:24:58:91:67:2c:f4:81:56:0a:4d:6c:67:ac:b0:
73:c2:a5:e4:13:a7:87:23:f2:a4:94:25:9f:f3:63:33:4c:36:
bb:79:e9:86:c3:57:ec:e9:a7:63:43:3d:f7:af:7f:9d:6f:a7:
9f:41:86:7a:14:58:8f:04:0d:67:e7:63:ea:95:47:5a:0a:45:
f0:29:e4:30:4a:a3:69:58:98:52:96:52:8f:d0:35:dd:e3:78:
81:2a:d8:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:01 2024 by rpki-client on console-fra.rpki-client.org