Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/vLhyJbOz9Q_QMmbVeKMC1z24GeU.roa
File: vLhyJbOz9Q_QMmbVeKMC1z24GeU.roa (raw, json)
Hash identifier: cnmXywOO7pESv8Ws9WW5Ko5/RnRGoqVqAPBn8Tf+EYA=
Subject key identifier: BC:B8:72:25:B3:B3:F5:0F:D0:32:66:D5:78:A3:02:D7:3D:B8:19:E5
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 018557B9F161FCAC35F2E6D6AEAF8684607F
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/vLhyJbOz9Q_QMmbVeKMC1z24GeU.roa
Signing time: Wed 28 Dec 2022 07:54:41 +0000
ROA not before: Wed 28 Dec 2022 07:54:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211459
IP address blocks: 194.233.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:57:b9:f1:61:fc:ac:35:f2:e6:d6:ae:af:86:84:60:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Dec 28 07:54:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bcb87225b3b3f50fd03266d578a302d73db819e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:9e:6e:35:c2:f9:6a:bf:7a:7b:3f:39:a1:e1:
56:c8:f3:5d:8b:65:59:45:cc:ed:e2:75:66:1d:54:
dd:3a:13:bd:97:88:9c:79:bc:8b:99:e3:bd:70:df:
24:2f:87:28:f8:8a:eb:e3:bc:5d:22:c7:fc:92:05:
7e:9b:f2:34:c1:90:ed:dc:48:29:b2:44:00:8b:1f:
33:20:22:2d:21:c0:b7:06:67:91:2d:7e:84:32:98:
86:ac:16:11:b8:6a:93:43:45:53:aa:af:ba:60:05:
fe:8c:fb:3f:67:3d:b6:41:2b:e8:71:70:d4:f3:c7:
4f:a9:e1:87:78:45:e4:f2:b1:6b:c2:5a:d2:1c:a1:
09:48:8f:02:da:a9:63:71:41:60:e5:28:3e:5d:dc:
fa:a9:d5:2b:85:a4:0e:8a:6e:37:8e:ec:65:78:8a:
b5:77:ca:90:98:10:69:d1:b6:5b:05:68:a7:a2:7d:
ef:fb:6b:2f:fc:fc:d6:08:8d:16:12:b5:fe:e7:29:
49:aa:01:c1:73:6b:8b:13:df:53:5a:7b:6b:8a:70:
f8:01:76:90:1b:c7:46:cc:16:ff:c8:62:1e:9a:3d:
4a:e3:84:1e:a9:d9:71:35:a3:61:ed:e8:9c:d1:b5:
ef:3f:64:1c:31:20:79:72:4e:ef:5a:58:bb:ef:db:
7f:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:B8:72:25:B3:B3:F5:0F:D0:32:66:D5:78:A3:02:D7:3D:B8:19:E5
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/vLhyJbOz9Q_QMmbVeKMC1z24GeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.233.151.0/24
Signature Algorithm: sha256WithRSAEncryption
35:8e:2c:a2:6e:89:ed:ab:86:cc:50:91:08:bf:3c:81:af:4f:
16:c9:77:01:90:11:b0:fe:72:99:d8:c0:3e:27:16:2e:6d:95:
03:9d:b6:59:43:d9:c3:74:46:df:a7:e9:37:0b:a7:43:73:97:
11:b5:5b:dc:a5:74:76:69:c4:d0:74:e8:93:b3:f4:2a:81:c4:
6c:37:37:9a:28:ca:7a:b7:bb:b3:f4:e4:13:05:ff:4b:77:d1:
bd:20:6a:18:8d:0a:3d:00:37:20:9a:ba:e0:3f:58:ba:d2:6f:
8c:4c:94:d2:46:5f:bf:36:10:c2:17:ce:a8:71:78:c9:95:77:
b4:90:e3:96:ed:a0:ba:0e:75:29:b6:39:a7:b0:1f:39:cd:9c:
6d:5b:e2:2b:94:9d:3e:8f:74:d5:b9:ec:06:a7:68:f0:fa:57:
78:7d:69:68:c0:1d:b4:6a:78:d7:08:11:a2:99:99:16:63:36:
f9:55:b9:bd:21:d0:5c:16:d6:47:41:71:c7:cc:8e:ae:b6:f9:
c0:d5:d1:8c:c1:7a:1a:46:91:41:74:8e:58:d0:d4:f4:d9:84:
73:b0:07:0e:38:fd:be:e0:a1:3c:ff:9d:95:e8:06:8e:0f:94:
46:65:37:d3:0a:e1:da:e2:5b:6f:ea:35:72:a9:2f:6e:39:fb:
fe:4f:fb:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:30 2023 by rpki-client on console-ams.rpki-client.org