Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/VlvXaTS5Rh_fWNJpFNgWYYbLG1k.roa
File: VlvXaTS5Rh_fWNJpFNgWYYbLG1k.roa (raw, json)
Hash identifier: hdF/NqZQrWTBMcX7DPJEWyWGQxdszRI72yG8o5yhPrw=
Subject key identifier: 56:5B:D7:69:34:B9:46:1F:DF:58:D2:69:14:D8:16:61:86:CB:1B:59
Certificate issuer: /CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Certificate serial: 058AB168
Authority key identifier: DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/VlvXaTS5Rh_fWNJpFNgWYYbLG1k.roa
Signing time: Mon 24 Jan 2022 19:41:49 +0000
ROA not before: Mon 24 Jan 2022 19:41:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 94.154.43.0/24 maxlen: 24
94.154.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92975464 (0x58ab168)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Validity
Not Before: Jan 24 19:41:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=565bd76934b9461fdf58d26914d8166186cb1b59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:6a:87:5d:59:3d:ce:17:7b:54:36:18:8b:19:
d3:86:0b:f2:c5:7d:d5:70:3e:8b:4e:ff:c8:64:b2:
7f:d9:6e:f8:27:c9:a1:9b:ba:ee:02:c5:1c:a6:c1:
8b:4c:fe:be:73:60:ef:c6:0c:21:2c:24:c4:10:55:
f8:5f:28:1b:3f:aa:bb:78:58:2f:fe:73:84:ca:d6:
3b:4f:c7:b3:08:e2:8e:d0:31:6a:f6:e3:16:43:47:
0a:29:f7:7d:c4:4a:a1:f1:10:f9:ed:e1:f1:cf:2f:
70:a5:a7:2c:47:6b:f2:24:33:9e:99:97:bc:be:da:
81:38:44:26:89:9c:67:34:8d:9b:61:2f:37:31:26:
f3:d4:21:ae:16:0f:fd:a9:09:03:1f:bf:28:92:90:
d9:41:d2:38:a5:fc:9f:35:e2:8f:c3:1c:d1:1c:56:
b8:3a:09:5d:99:00:7f:9d:4c:d0:1e:07:d4:c9:2b:
a4:f6:e1:a2:a6:38:14:26:ff:76:d1:83:cc:db:71:
1f:86:b5:b9:ec:89:3e:1c:8a:50:78:46:4b:c9:d9:
99:66:18:06:e9:a9:ea:97:d3:4b:7b:2b:d0:d8:de:
8c:c5:87:e5:a0:df:2b:91:c4:50:80:9c:fa:56:6e:
40:86:a6:5c:e7:42:a9:8c:b0:28:e1:86:40:b2:dc:
c6:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:5B:D7:69:34:B9:46:1F:DF:58:D2:69:14:D8:16:61:86:CB:1B:59
X509v3 Authority Key Identifier:
keyid:DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/VlvXaTS5Rh_fWNJpFNgWYYbLG1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/3BHa76_4HH5QEnjYfZvCsgTXEVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.40.0/24
94.154.43.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:6f:96:6d:a1:ce:b2:ba:3f:58:1e:f9:f4:40:82:6b:4f:c2:
39:b7:66:68:59:e4:b2:b8:a5:b9:cc:1d:43:ce:55:b2:a0:47:
b3:fb:10:88:29:7c:e0:40:36:1e:c6:83:96:ad:09:73:24:6a:
b3:a3:e2:9d:f4:be:0f:b1:37:42:08:8c:17:b8:ae:e5:8a:3a:
43:c6:b1:a0:37:2f:3d:e6:9d:b4:bb:91:d2:c8:67:73:e7:c6:
07:44:c7:6e:3c:9d:ba:3b:45:1a:34:8f:dd:7b:65:a1:f8:09:
81:85:e1:d2:f4:04:7a:ee:d3:7e:de:b0:d5:0d:cd:01:9c:8f:
4d:ca:f4:28:98:f5:09:ea:c1:be:58:c9:41:4b:2b:bd:39:55:
b2:69:1f:22:34:4e:61:22:ed:8d:fd:77:46:e9:a8:79:1c:ad:
39:f9:df:4e:0a:42:17:fc:1a:45:44:cd:62:a9:84:d2:cc:99:
51:ee:67:3e:43:b0:0f:59:97:96:d6:e8:2f:cf:85:4d:77:fd:
39:b9:0d:6e:32:5d:e7:38:6e:f7:05:cf:4d:b8:54:2e:c2:bb:
3d:8d:ba:b4:c5:bb:7a:47:88:a1:10:c5:ae:a3:38:f7:ca:13:
1e:ce:fd:86:91:19:bd:5a:3a:45:6e:af:09:61:de:3c:f1:d2:
10:74:4a:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:31 2024 by rpki-client on console-fra.rpki-client.org