Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/Vwm4gC_9QWQ8bZVJ4KEQafuNcZw.roa
File: Vwm4gC_9QWQ8bZVJ4KEQafuNcZw.roa (raw, json)
Hash identifier: 2VZqDtcxrMEGUQ7DpxOtjj9MDwStcMLeQGQw8BTcOvg=
Subject key identifier: 57:09:B8:80:2F:FD:41:64:3C:6D:95:49:E0:A1:10:69:FB:8D:71:9C
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0BF989BB
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/Vwm4gC_9QWQ8bZVJ4KEQafuNcZw.roa
Signing time: Fri 28 Jan 2022 15:31:31 +0000
ROA not before: Fri 28 Jan 2022 15:31:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142430
IP address blocks: 195.180.136.0/24 maxlen: 24
195.180.138.0/24 maxlen: 24
194.233.147.0/24 maxlen: 24
194.163.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 200903099 (0xbf989bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jan 28 15:31:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5709b8802ffd41643c6d9549e0a11069fb8d719c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:38:d8:a4:51:9b:54:b3:f4:29:39:a7:a3:3e:
ff:18:02:f0:5d:b6:ae:01:c7:43:5f:e9:3b:7f:85:
21:56:3b:4d:9a:63:7e:95:97:47:61:00:46:ae:bb:
ed:48:6f:77:a2:c1:b3:5e:26:c1:7f:02:00:ac:8f:
30:5f:0b:6b:eb:69:10:44:fa:32:8a:0a:9f:db:54:
a5:03:94:ea:9d:14:a7:c6:7b:0f:3b:87:ea:af:e3:
d4:90:64:2e:5a:e5:0e:dc:b7:4d:e9:f5:c3:5b:e6:
e2:cb:8e:a9:7e:79:b1:f6:a7:71:1a:fd:b3:31:ad:
1e:9b:85:69:ff:d9:74:0c:2e:35:3f:51:bc:f1:19:
6c:d6:94:b1:2e:c9:26:f1:77:b9:f1:c3:71:ca:a8:
9d:43:5e:1a:d8:a2:bb:a5:7a:d0:77:99:3b:f1:be:
05:78:19:4c:69:fc:ab:21:47:5f:57:bf:77:ed:4b:
71:c4:3f:3a:1c:d9:c9:a0:bd:94:55:70:55:8f:22:
74:c8:a5:94:48:e3:06:ec:06:a4:7b:62:03:d4:f6:
13:63:a9:7b:5b:10:56:0f:0e:b2:35:66:4e:74:fb:
83:7e:8b:5e:b9:57:78:7f:ae:a0:ce:dd:35:79:14:
42:79:5b:f0:a0:af:13:6c:61:b8:78:ac:eb:0c:c6:
9f:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:09:B8:80:2F:FD:41:64:3C:6D:95:49:E0:A1:10:69:FB:8D:71:9C
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/Vwm4gC_9QWQ8bZVJ4KEQafuNcZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.163.91.0/24
194.233.147.0/24
195.180.136.0/24
195.180.138.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:3e:ff:f1:b8:d3:42:73:7d:49:36:c5:40:66:91:ba:02:43:
b5:e8:cc:cc:72:56:0d:85:54:f6:a2:5f:bf:81:d1:ee:c2:68:
40:27:1c:61:bf:c9:f1:82:07:3d:14:1d:0f:ae:8a:5a:d2:90:
60:fc:4b:ff:19:83:05:fb:83:f8:77:e7:bf:84:e3:02:f4:af:
11:8e:bd:42:f5:e9:dd:03:f2:19:2a:57:64:f7:e7:49:c6:87:
0e:b2:53:15:98:c5:fe:ed:da:b7:9d:f7:6e:2a:9c:9c:4f:a5:
e9:eb:c7:89:09:99:c1:bf:80:a4:f9:2f:44:81:07:dc:fe:8f:
a2:d3:20:1f:5b:d5:00:c9:fe:d0:37:ba:76:6c:26:88:61:1c:
ea:2c:62:cd:24:87:17:07:c8:f3:92:af:b4:84:79:fc:5e:a3:
72:37:de:4f:29:e8:79:9c:87:a3:50:01:40:6b:3e:a2:aa:d8:
6b:39:80:bf:be:c1:e2:3c:93:a6:76:a8:45:96:b0:b2:e6:04:
91:98:8d:a1:20:02:32:6e:43:32:62:f8:34:f7:2b:27:59:81:
e3:34:af:96:98:05:d2:38:23:fc:d4:bf:24:05:a8:13:4e:07:
f0:2f:fa:91:f6:5a:2c:45:4f:8e:ff:37:64:09:63:ef:79:88:
ce:c2:11:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:29 2023 by rpki-client on console-ams.rpki-client.org