Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/Vlzvma0ELOZAo5Ar1zRhg6fJbK8.roa
File: Vlzvma0ELOZAo5Ar1zRhg6fJbK8.roa (raw, json)
Hash identifier: Qy5Ou+Tt5ZL3cDTCotfoNyenyXdLLvkX46ZNf0yZbhw=
Subject key identifier: 56:5C:EF:99:AD:04:2C:E6:40:A3:90:2B:D7:34:61:83:A7:C9:6C:AF
Certificate issuer: /CN=6eab53640b0931924b73f760925845150a6ccca5
Certificate serial: 03C16C9E
Authority key identifier: 6E:AB:53:64:0B:09:31:92:4B:73:F7:60:92:58:45:15:0A:6C:CC:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bqtTZAsJMZJLc_dgklhFFQpszKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/Vlzvma0ELOZAo5Ar1zRhg6fJbK8.roa
Signing time: Sat 01 Jan 2022 03:53:22 +0000
ROA not before: Sat 01 Jan 2022 03:53:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41557
IP address blocks: 188.117.204.0/22 maxlen: 22
188.117.212.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63007902 (0x3c16c9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eab53640b0931924b73f760925845150a6ccca5
Validity
Not Before: Jan 1 03:53:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=565cef99ad042ce640a3902bd7346183a7c96caf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:3a:bf:d8:2a:84:48:e7:5b:9b:e3:05:9b:bd:
14:8d:3f:e9:bb:f7:0b:da:4b:f4:4c:a7:b0:36:31:
29:f1:89:6a:f5:7d:ae:b2:1d:17:e6:df:b5:a0:3a:
9e:e0:77:e8:d3:13:d3:66:bc:18:b2:d2:e3:47:d1:
be:df:75:e6:10:31:c4:7f:a0:35:8b:ef:65:bb:7e:
7c:5d:a3:e0:e6:3c:a1:1b:bb:96:f0:5f:86:1b:0a:
fe:89:90:54:3a:9d:95:37:01:b7:c4:aa:8b:f8:90:
ef:34:e6:30:9f:44:90:c0:17:9e:b9:75:6d:2e:d0:
44:e4:27:95:6e:66:37:b1:72:04:0f:32:0d:cb:8c:
42:22:11:d3:ce:18:fc:14:61:a9:4b:07:17:5a:4d:
6a:2a:60:9f:28:9c:84:9b:6d:fb:b5:7a:fa:2b:39:
95:96:24:78:11:6a:61:f3:bd:4f:b8:15:17:4d:b9:
94:6d:99:3e:a1:78:02:1d:f2:f6:44:dd:23:7c:60:
6d:df:57:fb:68:ba:58:6c:19:e2:23:e0:cd:ce:1d:
fa:47:56:38:0b:b1:dd:b6:d0:77:ad:49:e2:f8:a4:
71:56:df:0c:8c:69:72:4d:ec:25:ef:1c:99:87:18:
2e:cc:49:10:4d:55:46:a5:86:17:49:56:08:e1:c8:
cf:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:5C:EF:99:AD:04:2C:E6:40:A3:90:2B:D7:34:61:83:A7:C9:6C:AF
X509v3 Authority Key Identifier:
keyid:6E:AB:53:64:0B:09:31:92:4B:73:F7:60:92:58:45:15:0A:6C:CC:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bqtTZAsJMZJLc_dgklhFFQpszKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/Vlzvma0ELOZAo5Ar1zRhg6fJbK8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/bqtTZAsJMZJLc_dgklhFFQpszKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.117.204.0/22
188.117.212.0/22
Signature Algorithm: sha256WithRSAEncryption
b9:b1:12:96:49:43:fb:db:0b:b1:9e:7d:7e:fd:b8:bf:bb:48:
ec:8b:6e:73:3d:06:1f:9f:26:63:eb:06:15:43:d8:4e:0a:15:
fa:bb:f9:ab:cf:37:11:f4:14:c3:e0:10:fc:d5:55:30:8d:ff:
76:dc:77:c8:40:75:a1:2e:41:82:f5:7b:6c:4d:24:8b:2d:1b:
c3:cc:30:3c:e3:6c:82:dd:48:a4:af:9e:2d:ed:cf:21:6c:16:
7f:3e:80:0b:85:20:af:9c:88:40:42:52:cf:cf:ca:06:a8:87:
f8:b6:dc:89:98:8d:91:69:15:15:ea:85:fe:76:b8:31:eb:ee:
10:52:a0:32:89:79:13:a4:8f:ca:11:0a:e0:05:25:05:a3:3f:
cb:7b:c1:ce:48:fa:8c:0c:16:71:42:4e:22:74:04:1d:c1:60:
db:cf:03:1d:35:0e:d6:3c:86:f1:93:ae:c3:af:78:cb:d3:8b:
18:a9:ff:fe:81:b1:91:bc:27:ae:bc:ff:b9:d8:a1:a0:f8:5a:
2f:33:80:db:ac:2d:cd:46:34:dd:fc:43:82:4d:e7:76:f8:46:
7b:7d:3a:26:9b:34:34:3c:0d:9c:a6:a2:48:11:f2:52:eb:91:
3f:b7:91:dc:52:d8:84:97:0d:49:7a:77:c0:9d:83:03:30:fb:
c9:b8:3b:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:41 2024 by rpki-client on console-ams.rpki-client.org