Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/680922-ec15-4435-8b2f-b22130cccc8a/1/VbtJh69vkM5G_qP1n5Ao_cNsO_k.roa
File: VbtJh69vkM5G_qP1n5Ao_cNsO_k.roa (raw, json)
Hash identifier: oeqVBps/JlCcdZiv1zQEkAJ52wXs326zWVGVCuWXruU=
Subject key identifier: 55:BB:49:87:AF:6F:90:CE:46:FE:A3:F5:9F:90:28:FD:C3:6C:3B:F9
Certificate issuer: /CN=52f2b1b3a98e83c06162550f791f4bcaa313903a
Certificate serial: 3F4F
Authority key identifier: 52:F2:B1:B3:A9:8E:83:C0:61:62:55:0F:79:1F:4B:CA:A3:13:90:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UvKxs6mOg8BhYlUPeR9LyqMTkDo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/680922-ec15-4435-8b2f-b22130cccc8a/1/VbtJh69vkM5G_qP1n5Ao_cNsO_k.roa
Signing time: Wed 26 Jan 2022 18:27:29 +0000
ROA not before: Wed 26 Jan 2022 18:27:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49392
IP address blocks: 185.207.214.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16207 (0x3f4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52f2b1b3a98e83c06162550f791f4bcaa313903a
Validity
Not Before: Jan 26 18:27:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55bb4987af6f90ce46fea3f59f9028fdc36c3bf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:0b:c5:bb:e5:5c:e6:9d:43:52:f8:dc:10:80:
08:22:8b:ef:16:37:11:91:54:ff:f1:b9:da:ee:b3:
2e:05:07:9a:20:95:28:ac:ab:d0:86:7c:b7:ea:99:
20:7e:15:47:88:8e:fb:9e:91:aa:8d:37:53:96:18:
36:81:04:99:e2:8c:c2:81:81:fd:88:c5:2c:3c:4b:
da:d3:98:81:20:49:93:20:41:36:91:33:ae:11:83:
af:ce:e4:fd:8e:8c:bd:3a:b4:cb:69:cb:0e:07:57:
14:6e:8f:ea:e2:9d:2d:ed:c7:06:8b:94:72:fe:2a:
07:51:d3:db:de:42:7b:36:d0:25:7d:fa:2d:24:4c:
e9:75:91:08:e5:28:75:77:01:c2:5c:37:2c:8f:5b:
23:56:ef:98:7d:81:62:68:79:46:b1:d8:db:0d:33:
5e:f2:19:ed:d3:c9:60:be:56:3a:14:80:92:49:f3:
8e:78:ca:8b:d1:19:60:c2:49:21:a0:4f:f2:66:f0:
bc:ae:d0:b1:5b:4a:7f:0f:ac:11:bf:53:6d:e6:53:
0a:ff:77:74:59:88:07:45:1b:34:84:b9:e3:a1:67:
62:8a:3c:26:85:79:53:e8:79:08:34:a7:9f:b0:a0:
26:24:98:c0:4d:9a:0a:04:bd:6b:01:c5:c2:58:aa:
1a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:BB:49:87:AF:6F:90:CE:46:FE:A3:F5:9F:90:28:FD:C3:6C:3B:F9
X509v3 Authority Key Identifier:
keyid:52:F2:B1:B3:A9:8E:83:C0:61:62:55:0F:79:1F:4B:CA:A3:13:90:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UvKxs6mOg8BhYlUPeR9LyqMTkDo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/680922-ec15-4435-8b2f-b22130cccc8a/1/VbtJh69vkM5G_qP1n5Ao_cNsO_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/680922-ec15-4435-8b2f-b22130cccc8a/1/UvKxs6mOg8BhYlUPeR9LyqMTkDo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.214.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:72:52:e1:97:fa:87:49:a1:20:a5:c0:42:c8:19:af:a1:df:
7c:0e:2a:9e:cf:6c:a2:a5:b5:d8:c0:63:73:20:d1:f9:16:10:
9d:18:89:5a:c4:9d:49:b5:15:59:f0:6a:73:b5:77:ff:0a:29:
f0:b6:c3:20:21:dc:dd:e7:07:86:a3:2d:d4:68:be:ee:aa:1a:
ea:b3:89:a9:19:f9:45:b4:d0:3b:d2:3d:9c:0d:55:c4:7f:20:
ed:21:95:94:81:4d:4e:ee:d9:32:2c:f7:8e:f6:3c:e0:06:bf:
f8:3f:86:ea:75:4e:cc:d8:a9:b9:ab:1a:25:db:9a:c4:dc:82:
d7:a7:9a:e7:e5:3f:a8:c8:fa:db:7b:19:7b:a4:a4:43:b2:40:
e2:76:f4:14:17:dc:d4:6c:b3:4f:b7:d4:7b:03:23:90:2f:24:
75:ce:bd:0a:5f:48:4e:fa:c2:ca:c5:7c:83:1c:4a:27:6e:0a:
69:5b:c6:32:fa:28:4c:0b:c8:87:a0:a0:6c:14:7d:8e:34:04:
36:bb:cb:db:0a:f2:55:fc:2a:0c:c8:41:1c:03:2a:fa:47:24:
6b:ba:39:e1:a6:59:d3:67:4a:59:78:b9:61:b7:4d:50:f5:15:
24:fe:04:be:50:c8:96:2f:11:43:5a:3c:e9:3f:4d:ac:5e:0f:
64:7e:91:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:30 2023 by rpki-client on console-fra.rpki-client.org