Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/f6a0c1-480a-4232-9fb7-8fd384b42c9e/1/vHISw5SgK_Az7OogA59qP79Vhic.roa
File: vHISw5SgK_Az7OogA59qP79Vhic.roa (raw, json)
Hash identifier: 1tv/OO89L5iauSLRudPBcAcLBIANKF5jeENWprE3U/o=
Subject key identifier: BC:72:12:C3:94:A0:2B:F0:33:EC:EA:20:03:9F:6A:3F:BF:55:86:27
Certificate issuer: /CN=f9ff7b68633cec51a181067b831826637df98d6e
Certificate serial: 0AF507A8
Authority key identifier: F9:FF:7B:68:63:3C:EC:51:A1:81:06:7B:83:18:26:63:7D:F9:8D:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-f97aGM87FGhgQZ7gxgmY335jW4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/f6a0c1-480a-4232-9fb7-8fd384b42c9e/1/vHISw5SgK_Az7OogA59qP79Vhic.roa
Signing time: Sat 01 Jan 2022 02:56:31 +0000
ROA not before: Sat 01 Jan 2022 02:56:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24904
IP address blocks: 185.251.160.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 183830440 (0xaf507a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f9ff7b68633cec51a181067b831826637df98d6e
Validity
Not Before: Jan 1 02:56:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc7212c394a02bf033ecea20039f6a3fbf558627
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d9:cd:42:24:57:22:77:e1:c7:05:f1:03:a2:
61:a5:bb:4b:d7:51:32:5b:61:e8:16:ec:f7:ea:39:
97:bd:68:56:50:06:63:13:9b:bd:29:76:19:30:b9:
64:fb:33:59:f6:64:78:ff:66:7c:41:93:0d:37:72:
3d:9d:96:15:6f:28:a3:b2:a3:3f:f8:84:87:1b:6f:
e3:c0:d2:4f:7f:8f:93:96:e1:5f:55:14:7e:89:83:
40:47:cb:ab:88:81:c6:0c:72:e4:3b:c4:0b:bb:36:
0a:19:c6:21:3f:d0:19:68:3d:e1:3f:30:87:f6:cf:
5e:7d:e5:cf:ad:8f:bd:be:d8:6c:17:1a:68:c2:e7:
49:c9:ec:32:c9:72:1b:12:05:3c:0b:d7:00:38:6a:
f1:95:b4:6a:55:5c:bc:25:11:46:e3:83:ad:89:4a:
b0:55:b2:6c:b2:cf:82:38:83:55:0e:1f:08:0e:80:
bc:67:a9:14:98:2a:04:78:1d:d2:74:96:c8:85:6a:
91:14:96:e6:19:ab:7f:80:fd:ca:34:07:8f:9c:ac:
b5:1d:14:fb:8b:63:ce:8f:af:ae:a5:a5:cd:c3:10:
41:a1:10:c0:ec:18:a7:d2:8f:7b:43:a4:40:1d:69:
74:e7:ec:e9:39:55:e4:bf:c7:63:8a:3e:01:46:4c:
3c:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:72:12:C3:94:A0:2B:F0:33:EC:EA:20:03:9F:6A:3F:BF:55:86:27
X509v3 Authority Key Identifier:
keyid:F9:FF:7B:68:63:3C:EC:51:A1:81:06:7B:83:18:26:63:7D:F9:8D:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-f97aGM87FGhgQZ7gxgmY335jW4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/f6a0c1-480a-4232-9fb7-8fd384b42c9e/1/vHISw5SgK_Az7OogA59qP79Vhic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/f6a0c1-480a-4232-9fb7-8fd384b42c9e/1/1-f97aGM87FGhgQZ7gxgmY335jW4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.160.0/22
Signature Algorithm: sha256WithRSAEncryption
58:e6:f6:b8:cc:c9:da:97:e0:34:5c:d5:b8:bc:da:ab:95:31:
8f:07:6b:28:ec:e7:fd:f8:df:5d:6c:50:58:e0:6b:e0:6d:74:
27:3f:89:66:67:04:25:8a:b3:33:73:78:d1:07:9e:8c:88:f6:
6f:3d:45:c0:81:a5:03:33:44:18:ca:3f:ca:e7:1b:f2:59:4a:
84:2e:28:b9:85:00:a8:a5:9e:d7:9d:98:d9:49:a8:ae:7a:dc:
df:93:cf:ca:12:4c:9e:1b:08:f0:af:86:d1:95:ff:96:a8:15:
ca:a4:1d:81:db:10:64:4a:f6:39:d0:fd:81:7b:cf:89:a5:1e:
22:9f:a3:97:1f:26:e6:1e:aa:e5:77:f5:2d:d5:e9:b8:1a:4c:
a9:af:29:19:b9:28:dd:19:6e:f2:95:81:73:3e:47:b4:bb:12:
48:de:e2:c9:fc:30:d1:1f:08:69:27:7c:8d:50:38:b5:1c:6d:
53:62:95:98:c5:5b:29:e6:f5:36:63:a2:97:2f:4a:44:bc:a8:
07:7d:aa:5c:f8:e8:3f:c7:d2:44:5f:46:f0:eb:cf:ee:99:a3:
6d:dd:b5:9a:7a:0d:f8:0a:af:cb:0a:38:e5:bc:e5:3b:1e:94:
0f:01:7f:e7:4f:16:d8:17:d4:4d:ff:72:42:ce:55:36:69:1f:
c2:76:49:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:23 2023 by rpki-client on console-ams.rpki-client.org