Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/26b619-55cf-4489-a9b3-58a20f34f2ec/1/VaJJ0vYjTUPw8PMbsMJfBqdrmbs.roa
File: VaJJ0vYjTUPw8PMbsMJfBqdrmbs.roa (raw, json)
Hash identifier: qZ5X48bObKkQ6IfTASCrH1PQHZKW8G44qhEuo1+7OFM=
Subject key identifier: 55:A2:49:D2:F6:23:4D:43:F0:F0:F3:1B:B0:C2:5F:06:A7:6B:99:BB
Certificate issuer: /CN=4e42466070ff8c3cc967da48e14da12df71b2671
Certificate serial: 088FEE3C
Authority key identifier: 4E:42:46:60:70:FF:8C:3C:C9:67:DA:48:E1:4D:A1:2D:F7:1B:26:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TkJGYHD_jDzJZ9pI4U2hLfcbJnE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/26b619-55cf-4489-a9b3-58a20f34f2ec/1/VaJJ0vYjTUPw8PMbsMJfBqdrmbs.roa
Signing time: Sat 01 Jan 2022 07:00:02 +0000
ROA not before: Sat 01 Jan 2022 07:00:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15600
IP address blocks: 5.153.240.0/21 maxlen: 21
185.74.152.0/22 maxlen: 22
2a00:d560::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143650364 (0x88fee3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e42466070ff8c3cc967da48e14da12df71b2671
Validity
Not Before: Jan 1 07:00:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55a249d2f6234d43f0f0f31bb0c25f06a76b99bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:78:55:9e:7d:93:02:f7:a0:f6:6e:2c:04:09:
14:1e:c9:41:fd:20:40:18:ff:ac:fe:ce:53:76:83:
b3:55:03:cb:5a:fd:30:ae:42:d2:fa:c9:dc:1d:ef:
83:f5:0a:5c:ae:67:b8:a0:b7:94:05:a9:58:93:41:
9b:ba:0b:0a:4b:c1:07:01:c8:ca:1f:54:2f:ad:bc:
38:84:30:bf:3f:74:95:e1:d1:64:f6:f7:6d:1b:56:
a4:d8:ce:4e:fd:61:1d:d6:93:c3:79:e6:dc:6f:fd:
a9:82:1e:99:e0:17:37:97:82:b4:5b:ab:fb:08:98:
2f:5f:fe:42:2d:d7:48:c8:58:9e:40:d8:e0:cf:69:
34:25:73:07:fd:48:05:86:ea:81:fb:22:8b:45:72:
39:e2:13:79:4a:3d:c3:79:4b:09:80:7e:e9:e0:d2:
4f:eb:c3:5d:df:29:6c:b6:02:eb:83:32:46:96:3b:
a4:c0:5e:50:af:64:e2:f5:bd:ca:f7:ca:ae:5b:c4:
d6:4f:5a:96:78:fd:fb:6d:4c:08:a9:b4:16:cb:9d:
09:e2:d7:12:78:65:f3:98:ce:67:ef:cb:e7:a7:bf:
aa:90:6a:e4:11:28:d8:54:2d:23:fb:a3:a2:e3:3b:
6b:8b:7d:d4:35:02:23:8f:d9:86:dc:cb:e2:6f:c7:
22:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:A2:49:D2:F6:23:4D:43:F0:F0:F3:1B:B0:C2:5F:06:A7:6B:99:BB
X509v3 Authority Key Identifier:
keyid:4E:42:46:60:70:FF:8C:3C:C9:67:DA:48:E1:4D:A1:2D:F7:1B:26:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TkJGYHD_jDzJZ9pI4U2hLfcbJnE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/26b619-55cf-4489-a9b3-58a20f34f2ec/1/VaJJ0vYjTUPw8PMbsMJfBqdrmbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/26b619-55cf-4489-a9b3-58a20f34f2ec/1/TkJGYHD_jDzJZ9pI4U2hLfcbJnE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.153.240.0/21
185.74.152.0/22
IPv6:
2a00:d560::/29
Signature Algorithm: sha256WithRSAEncryption
72:59:13:87:71:98:66:6e:64:71:c2:d3:20:84:31:d5:6a:7d:
5c:71:bc:b3:eb:f0:b2:ce:03:05:7e:41:3f:96:d6:a3:43:12:
83:64:97:a9:8d:5c:f1:61:5f:19:81:0b:36:e9:73:d8:07:10:
4b:b4:45:f5:c2:0f:51:68:3e:66:05:02:bc:4a:ef:d0:d3:41:
e0:b7:dc:58:d2:06:94:36:70:a6:e8:59:27:2e:ef:44:86:85:
cf:45:87:87:a8:77:ee:3c:b6:26:cf:07:02:8f:c3:83:25:76:
94:18:a8:bc:f4:91:dd:63:95:14:19:9b:c6:ee:c7:30:23:a3:
54:52:62:8a:6e:50:31:1f:b7:16:ff:96:50:a9:ef:e9:ed:79:
34:30:f7:56:86:94:27:f2:4f:7a:c5:1c:9a:2e:82:c4:69:90:
db:f0:a3:2d:2c:56:8e:a1:af:ff:22:ab:f6:32:e0:ca:ae:33:
b9:7b:01:cc:c2:4a:37:03:46:b5:12:0f:d9:8e:7c:65:54:fa:
f3:69:97:a3:b0:3d:f1:ba:4b:f1:14:9e:f3:99:62:1e:0a:64:
d6:86:59:f6:b9:69:07:3b:ef:73:ed:ef:d7:36:ce:43:af:5b:
01:b4:63:08:36:63:22:c4:98:4b:c0:dd:ab:fc:ed:cc:d2:b8:
33:4c:8b:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:51 2024 by rpki-client on console-ams.rpki-client.org