Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/vrzcPIQw4CKBaLFcPlmRULfuhis.roa
File: vrzcPIQw4CKBaLFcPlmRULfuhis.roa (raw, json)
Hash identifier: mkvR1+Hig/DWR2NhjpYYOCmxEmFlvfdbvdhG2jp3k7s=
Subject key identifier: BE:BC:DC:3C:84:30:E0:22:81:68:B1:5C:3E:59:91:50:B7:EE:86:2B
Certificate issuer: /CN=3ad65216812ed24fd1c719871a59a971dec30a26
Certificate serial: 02150BE0
Authority key identifier: 3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/vrzcPIQw4CKBaLFcPlmRULfuhis.roa
Signing time: Sat 01 Jan 2022 16:10:46 +0000
ROA not before: Sat 01 Jan 2022 16:10:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35579
IP address blocks: 78.142.80.0/22 maxlen: 24
2a04:5080::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34933728 (0x2150be0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad65216812ed24fd1c719871a59a971dec30a26
Validity
Not Before: Jan 1 16:10:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bebcdc3c8430e0228168b15c3e599150b7ee862b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:47:e2:65:0f:72:f7:85:41:12:dd:f4:27:be:
ee:bc:03:66:84:aa:74:7c:5b:0e:50:8f:dc:b1:40:
6f:a3:cb:f2:06:40:f0:55:ca:02:1e:76:00:e9:1f:
b6:79:f6:a8:d7:bc:88:b9:e9:34:00:02:9e:f1:2c:
09:2b:f2:e3:e9:42:56:2a:ba:d5:36:01:b3:cc:6b:
32:9a:f1:a0:21:32:1d:37:a9:a1:7c:c7:cf:52:bc:
5e:20:4d:e9:8a:29:6f:63:b7:92:f6:47:c7:32:b1:
de:35:e9:01:57:9b:c6:d5:1d:65:07:6c:48:68:94:
fe:f9:2d:27:3a:a6:34:1c:e4:9e:38:58:36:07:7a:
39:db:86:af:8e:68:18:e7:4d:11:74:13:a7:3f:f4:
9c:5b:66:22:e5:da:e4:90:de:0e:63:81:14:88:07:
9a:30:51:9c:3d:9d:3e:2a:54:98:53:36:3b:ba:eb:
cd:59:e2:6b:2e:5a:e3:f0:a5:c0:86:d6:48:b4:59:
9e:77:7f:d4:4e:03:f1:a1:39:77:d5:db:e9:3b:17:
a8:74:67:37:62:50:ea:b4:41:70:a8:87:91:61:1e:
60:cb:4c:f5:eb:d8:d6:e9:53:2d:1a:69:0a:76:1d:
54:42:6b:7e:d7:79:8b:db:ee:19:12:a3:41:21:73:
7b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:BC:DC:3C:84:30:E0:22:81:68:B1:5C:3E:59:91:50:B7:EE:86:2B
X509v3 Authority Key Identifier:
keyid:3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/vrzcPIQw4CKBaLFcPlmRULfuhis.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.142.80.0/22
IPv6:
2a04:5080::/29
Signature Algorithm: sha256WithRSAEncryption
29:bd:c5:af:64:d8:8c:e2:13:b9:59:47:f8:46:d8:fb:84:e5:
81:c9:8c:9d:ad:aa:4d:e9:8e:01:64:04:49:92:9a:49:27:dd:
f8:e8:cf:f1:0b:f2:34:4d:4e:e3:d1:e3:5b:a2:31:87:fc:5b:
38:60:6c:da:e9:88:9f:6f:ce:54:59:1b:77:85:14:57:e5:67:
1b:0e:85:eb:79:1a:bb:cf:ad:24:17:08:0a:8d:50:8b:17:e6:
2f:07:65:c6:8b:e8:36:15:f4:1d:45:44:ef:96:93:0e:ac:e3:
17:05:b6:62:eb:3c:eb:0c:2c:56:d3:6c:29:80:2b:93:ea:9e:
47:57:14:52:69:f6:ad:c8:18:a6:9f:f7:16:7f:e5:b5:e4:10:
6b:67:dc:db:51:cc:01:4a:fe:14:4b:91:2e:ac:1b:99:e5:7b:
8d:c7:98:e2:8b:3d:75:a1:4f:09:72:7d:3a:a8:82:1f:0e:af:
e1:c3:e4:7d:56:95:f4:fc:13:fe:ee:24:a2:ab:9b:ce:96:41:
df:7b:5b:5d:a2:6e:43:34:19:9b:d8:ab:8e:58:36:f2:64:98:
4a:eb:8b:0d:fe:f7:79:7f:d9:bd:d9:3d:cc:af:63:3f:24:fb:
1d:5c:34:45:06:de:78:28:6e:ff:63:40:5b:16:57:2a:e7:5c:
96:a6:f8:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:49 2024 by rpki-client on console-ams.rpki-client.org