Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/vc88DHqetvP0lYj6CPKa4fKmf1U.roa
File: vc88DHqetvP0lYj6CPKa4fKmf1U.roa (raw, json)
Hash identifier: e9N47Dqc6GTHBMJn+wC1wuVzFCrRjmlkZjNGcThgRSc=
Subject key identifier: BD:CF:3C:0C:7A:9E:B6:F3:F4:95:88:FA:08:F2:9A:E1:F2:A6:7F:55
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0CB16743
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/vc88DHqetvP0lYj6CPKa4fKmf1U.roa
Signing time: Thu 31 Mar 2022 06:16:46 +0000
ROA not before: Thu 31 Mar 2022 06:16:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142430
IP address blocks: 194.233.144.0/24 maxlen: 24
194.233.147.0/24 maxlen: 24
195.180.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 212952899 (0xcb16743)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Mar 31 06:16:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bdcf3c0c7a9eb6f3f49588fa08f29ae1f2a67f55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:cc:a0:32:1c:a0:98:03:b7:36:46:a5:20:88:
c7:2a:20:1b:87:e6:12:20:44:56:b6:03:5a:ee:06:
6a:3b:a8:e8:b8:e6:1a:0b:06:d5:6f:e3:c3:a7:1f:
a4:7b:f2:7c:08:d1:b6:d7:e9:8f:84:e1:36:a8:22:
3d:5b:ae:81:0e:34:10:ad:1d:c4:78:cd:9f:21:a3:
4a:3b:b5:8b:e5:cd:7d:52:ee:d3:cf:d3:7b:5a:ae:
59:ba:30:cb:c2:69:2d:a9:d1:96:40:e6:a4:ed:e9:
a2:aa:fa:12:32:95:d2:8c:6f:92:43:b0:c4:45:30:
c4:ce:8d:ab:9d:9b:d7:fb:e0:49:dc:47:5e:19:10:
5f:f7:14:07:e5:e6:d3:dc:d6:05:ad:e2:52:59:77:
c4:17:a9:66:8a:bf:e0:a4:e3:2f:b0:ff:09:8c:73:
84:4b:50:98:6b:97:33:dd:50:94:69:14:01:f6:ea:
40:93:64:65:a3:7b:1d:d0:14:e4:19:77:9e:e4:2d:
64:fb:d2:4e:e3:e0:8d:a6:ad:d1:19:f2:31:1b:7f:
17:27:0d:a5:2c:9e:2e:90:1e:fc:53:34:f8:6f:f7:
a8:ef:62:6e:66:00:c1:71:db:82:43:b3:32:f5:e3:
04:9a:cf:de:7a:ee:50:c1:81:a3:74:c9:1c:e4:c0:
58:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:CF:3C:0C:7A:9E:B6:F3:F4:95:88:FA:08:F2:9A:E1:F2:A6:7F:55
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/vc88DHqetvP0lYj6CPKa4fKmf1U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.233.144.0/24
194.233.147.0/24
195.180.138.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:a0:87:59:2a:15:3b:51:65:42:e0:cd:12:b2:7d:f3:fd:4d:
d1:88:11:c8:ee:c9:69:89:8a:e9:c4:44:e5:4b:65:7c:24:7c:
92:1b:d3:98:cb:99:dc:dd:ce:f9:cd:20:56:6f:b5:37:e0:fc:
13:7c:b7:c8:47:17:04:32:97:dc:70:9f:30:1b:57:5b:00:36:
45:c7:41:0c:c9:c1:ae:b4:4c:d5:84:09:38:3e:84:7b:44:5f:
12:a9:9f:24:dc:da:da:48:2d:54:88:6e:5f:e5:5c:69:d5:76:
db:e3:67:b9:9c:ae:79:5f:f4:d0:c6:d9:41:3c:66:05:8d:d0:
08:46:f0:4e:38:14:5e:a6:09:92:db:9b:d5:c5:3d:2a:58:21:
47:ef:c3:96:75:ec:c2:f3:ae:3c:07:06:a6:57:87:d0:e8:de:
05:7f:2d:c4:cc:d8:5a:f8:69:09:f5:7b:af:01:f2:59:cf:27:
7e:97:cd:26:5f:0b:55:c8:83:0c:86:6a:35:1d:56:a8:fe:a5:
91:25:43:68:ea:75:61:75:7d:39:89:01:9d:e0:52:02:58:ee:
51:3c:78:a2:a7:18:7b:97:3d:64:90:f2:70:c5:1e:e7:3a:bd:
43:c3:4c:8a:69:1f:31:cd:f8:e6:06:1f:cd:e7:25:9e:01:d9:
d7:87:eb:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:42 2023 by rpki-client on console-fra.rpki-client.org