Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/vtplMqHylmlynWzpvDmlOsIJvFk.roa
File: vtplMqHylmlynWzpvDmlOsIJvFk.roa (raw, json)
Hash identifier: I42QsONtbM+CBEif3+9icTGEkxUzMkjbbsu25SLgNDE=
Subject key identifier: BE:DA:65:32:A1:F2:96:69:72:9D:6C:E9:BC:39:A5:3A:C2:09:BC:59
Certificate issuer: /CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Certificate serial: 01E3954B
Authority key identifier: B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/vtplMqHylmlynWzpvDmlOsIJvFk.roa
Signing time: Sat 01 Jan 2022 14:05:02 +0000
ROA not before: Sat 01 Jan 2022 14:05:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205010
IP address blocks: 185.226.32.0/22 maxlen: 22
2a0c:2600::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31692107 (0x1e3954b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Validity
Not Before: Jan 1 14:05:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=beda6532a1f29669729d6ce9bc39a53ac209bc59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:0f:b8:5d:fe:e9:f7:9b:b6:97:31:e2:ff:5c:
5b:46:8b:01:7d:f5:ce:3f:c9:ea:81:22:c2:34:a0:
fe:e8:c1:31:e9:4a:59:9b:8c:f4:71:6e:0f:f5:4c:
5d:0b:f2:34:d7:45:dc:ed:7e:89:52:9b:b0:9c:97:
8b:54:a0:91:ad:54:23:b7:96:d2:aa:8d:57:1b:5f:
1f:0a:14:d6:81:e5:a5:e1:30:c8:df:0d:09:ec:c1:
c9:47:69:c7:5f:59:57:f1:0d:86:f4:73:29:1e:3e:
bf:a0:54:3a:ff:88:31:41:bd:db:eb:34:37:bf:90:
6a:02:5d:62:32:8f:94:e6:dc:e5:e9:f9:62:6d:8b:
ca:25:ae:86:5e:1f:e4:6a:49:b5:22:f5:02:60:16:
32:dc:d2:4c:5b:55:4c:f7:ff:a0:cc:4a:de:2e:7d:
1d:47:8f:d8:b0:f0:d8:b7:56:80:f0:74:68:a5:1b:
25:a4:62:2c:8a:a0:6f:87:a2:57:55:70:38:dc:58:
3b:69:4c:53:80:09:af:97:dc:88:0c:65:66:71:6c:
41:4a:ed:a5:ae:74:16:61:3d:a5:e2:38:74:1a:56:
d0:b6:ba:ff:10:ec:69:37:a6:93:32:8a:8c:a7:c9:
da:4a:95:10:37:61:25:d1:47:28:c1:aa:81:5e:bb:
b1:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:DA:65:32:A1:F2:96:69:72:9D:6C:E9:BC:39:A5:3A:C2:09:BC:59
X509v3 Authority Key Identifier:
keyid:B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/vtplMqHylmlynWzpvDmlOsIJvFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.32.0/22
IPv6:
2a0c:2600::/29
Signature Algorithm: sha256WithRSAEncryption
21:e1:b2:fa:99:4d:f1:ef:0d:72:02:ec:6e:6e:d6:ae:96:1b:
d8:f6:b3:25:e8:67:c6:c7:3d:4c:60:d8:2f:f0:58:8a:75:04:
60:b5:dd:42:94:6d:f5:53:f5:fe:8d:48:a8:a4:be:27:5f:b2:
c6:b5:0c:8f:20:44:9f:5a:1e:d9:09:35:d5:96:ee:6c:b7:f9:
92:a0:10:b6:6a:57:85:2d:4a:1f:c1:6f:c9:8b:12:3c:f7:e4:
b1:e2:ca:ee:8c:21:4a:12:93:5d:c1:b5:2b:13:b8:b3:3b:66:
24:df:65:e5:f9:e5:f8:b7:23:44:e0:eb:4f:76:cb:8e:8c:c1:
4b:b1:cb:02:83:f7:78:54:6c:29:54:87:17:fe:71:83:75:98:
26:8a:a7:af:32:4f:06:49:b0:e6:0e:a8:8b:19:ef:fe:c7:9f:
58:c8:a7:d7:ca:46:9e:9f:6e:24:3c:d9:6a:88:f5:cb:1e:5f:
0d:4c:5c:b2:9e:d8:0e:45:0f:b9:63:06:86:9a:1d:63:d6:2a:
84:3f:6c:a7:e1:3e:4c:83:74:38:3b:8a:dc:05:8b:50:7a:df:
de:4a:d8:14:3c:3f:cf:39:ff:8d:95:dd:33:3b:48:5e:3c:75:
6d:f7:59:f1:d2:97:b9:2e:bf:18:0b:2e:56:f5:00:32:73:26:
a5:84:a6:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:54 2023 by rpki-client on console-fra.rpki-client.org