Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/204af5-b249-46d0-9126-282f728a8c44/1/VfUxfwm4wGsmCw96f33hrmVvxXY.roa
File: VfUxfwm4wGsmCw96f33hrmVvxXY.roa (raw, json)
Hash identifier: XVhvvydC+8wB+cY7UCqIuHUlLOpXO0d2xpL6z/bbHR8=
Subject key identifier: 55:F5:31:7F:09:B8:C0:6B:26:0B:0F:7A:7F:7D:E1:AE:65:6F:C5:76
Certificate issuer: /CN=15fd8ad5d4700b836671ad66114664cf3303b7ef
Certificate serial: 07DEFEEB
Authority key identifier: 15:FD:8A:D5:D4:70:0B:83:66:71:AD:66:11:46:64:CF:33:03:B7:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ff2K1dRwC4Nmca1mEUZkzzMDt-8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/204af5-b249-46d0-9126-282f728a8c44/1/VfUxfwm4wGsmCw96f33hrmVvxXY.roa
Signing time: Sat 01 Jan 2022 13:00:18 +0000
ROA not before: Sat 01 Jan 2022 13:00:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34281
IP address blocks: 83.137.56.0/22 maxlen: 22
83.137.56.0/21 maxlen: 21
83.137.60.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132054763 (0x7defeeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15fd8ad5d4700b836671ad66114664cf3303b7ef
Validity
Not Before: Jan 1 13:00:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55f5317f09b8c06b260b0f7a7f7de1ae656fc576
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:77:81:18:3e:72:a9:b0:ea:dc:8c:70:51:b2:
2b:23:2c:d6:1c:07:c3:31:84:57:f8:48:38:b4:78:
3e:4c:1f:7c:95:24:af:1f:15:b9:60:7b:37:54:35:
a1:a1:8a:2c:eb:20:f2:d9:2e:a3:46:54:a1:5f:2e:
b3:88:3d:00:70:e5:af:08:56:85:0f:35:da:ed:eb:
bf:83:9f:72:d2:d2:7f:80:7b:85:b6:40:5a:a7:83:
4a:89:21:50:13:95:3b:13:e5:70:c1:17:f7:fb:ac:
a9:bd:e2:37:1e:98:bb:3f:00:d8:43:e2:59:97:a5:
55:22:89:89:64:dd:5d:4d:d1:08:f4:2c:4a:90:ef:
ec:42:13:e9:28:f5:2c:da:bc:1b:54:03:28:6a:36:
eb:20:6c:b3:70:d7:3e:3c:b3:14:99:8f:d3:6e:c0:
4a:ae:37:4d:fa:a3:11:25:ac:5d:ce:ea:cb:19:fe:
56:75:f8:13:f9:c1:8b:86:30:be:83:56:43:f5:2a:
87:60:d8:63:3f:a7:ae:b5:7e:94:48:6e:00:22:28:
ec:fc:bf:b1:2a:90:eb:31:aa:37:8a:a1:57:ab:9a:
9d:ae:ee:2a:17:b1:24:96:88:bf:bb:b2:9e:b2:ef:
8f:b2:26:e2:11:06:da:6a:5c:d4:6e:bf:bc:43:33:
40:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:F5:31:7F:09:B8:C0:6B:26:0B:0F:7A:7F:7D:E1:AE:65:6F:C5:76
X509v3 Authority Key Identifier:
keyid:15:FD:8A:D5:D4:70:0B:83:66:71:AD:66:11:46:64:CF:33:03:B7:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ff2K1dRwC4Nmca1mEUZkzzMDt-8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/204af5-b249-46d0-9126-282f728a8c44/1/VfUxfwm4wGsmCw96f33hrmVvxXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/204af5-b249-46d0-9126-282f728a8c44/1/Ff2K1dRwC4Nmca1mEUZkzzMDt-8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.137.56.0/21
Signature Algorithm: sha256WithRSAEncryption
63:62:5e:80:71:8f:8b:c7:68:a4:da:e4:8d:fc:6e:f5:3a:4c:
d2:d7:de:07:de:ec:b6:e8:81:22:71:dc:23:ca:70:a8:42:30:
ed:b3:ea:a0:20:df:8b:38:5c:8a:68:6a:ef:68:a7:f1:4b:11:
ee:6f:9a:2c:81:b0:71:38:86:0e:05:37:83:f6:1c:eb:43:bf:
ca:26:56:31:aa:92:e5:21:91:58:54:7f:ac:93:b9:38:a4:22:
b2:16:cc:29:2a:5d:10:cc:98:dc:50:55:15:f5:71:7d:4b:ae:
db:c1:13:99:ce:66:de:aa:fd:5f:12:26:f5:51:0a:d1:fe:21:
40:05:ec:0e:00:de:db:c3:2f:b1:e6:a6:cf:20:cf:db:12:15:
fd:56:19:1d:1d:b2:8f:bd:c2:62:ed:f7:81:28:c8:04:2e:be:
5c:26:71:57:67:53:d6:69:86:46:20:35:be:7a:51:d2:8f:c8:
fb:b7:1f:53:b1:58:04:17:9f:04:88:84:91:f2:c9:a8:ea:0b:
d0:25:5a:5d:72:13:c2:b9:ba:3c:00:7b:e0:bc:7b:3d:f3:bd:
94:70:90:82:b3:f6:16:aa:52:1f:71:56:38:dc:64:d8:02:09:
f3:81:f9:1f:9f:9a:b9:9e:2d:cd:75:56:53:9e:1d:14:57:3f:
72:82:c9:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:29 2023 by rpki-client on console-fra.rpki-client.org