Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/VOgTnIvdaVfp8KIZTzo8FGmerQg.roa
File: VOgTnIvdaVfp8KIZTzo8FGmerQg.roa (raw, json)
Hash identifier: PkDdF3lhoS32dNGkhN2m09TK1v3BZw0rG8GpZNuZi1g=
Subject key identifier: 54:E8:13:9C:8B:DD:69:57:E9:F0:A2:19:4F:3A:3C:14:69:9E:AD:08
Certificate issuer: /CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Certificate serial: 0182AC531054E151ED02F08B8F2A603F920F
Authority key identifier: D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/VOgTnIvdaVfp8KIZTzo8FGmerQg.roa
Signing time: Wed 17 Aug 2022 15:01:40 +0000
ROA not before: Wed 17 Aug 2022 15:01:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60506
IP address blocks: 81.199.24.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ac:53:10:54:e1:51:ed:02:f0:8b:8f:2a:60:3f:92:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Validity
Not Before: Aug 17 15:01:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=54e8139c8bdd6957e9f0a2194f3a3c14699ead08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:5d:5b:4f:29:15:33:2f:78:79:e5:21:8a:9c:
1b:14:2a:ce:f0:f6:93:40:a6:c0:37:ba:a7:c0:dd:
74:69:5e:26:7f:07:df:8b:3f:d5:d7:9f:b2:6f:8d:
f4:1e:6a:db:a2:f4:7a:3e:b7:a9:99:94:57:8a:34:
4a:9f:b6:84:48:4b:13:ec:f0:86:4b:51:9e:2d:f0:
1e:d0:2a:71:e7:55:b7:66:b2:da:4e:77:a8:85:e3:
e4:c9:76:19:f5:c5:30:24:eb:64:9e:7e:9b:b2:92:
e1:65:77:d5:82:3d:f8:61:7e:1b:e2:cd:e1:99:d6:
be:d1:92:c0:f9:23:8e:b6:1c:b9:f2:b4:63:6e:9a:
5b:05:5f:67:db:d4:51:c2:f6:d8:bb:7a:70:d2:ad:
96:0f:37:c6:dc:53:9e:ef:51:72:7f:f2:33:54:9b:
7e:eb:a6:25:fa:73:f9:8e:76:af:55:fe:6f:1d:9a:
ff:74:72:e8:e9:9c:87:9a:64:16:b5:af:82:3e:33:
2d:2b:43:7f:0c:66:44:3f:71:27:d6:aa:ca:27:6a:
26:b9:ad:48:d7:18:37:ab:90:51:d8:ec:5b:44:57:
70:eb:1a:aa:57:13:e7:f0:77:ce:6f:87:e5:2e:10:
c0:a8:27:1f:c0:e2:74:76:c4:08:89:24:5f:89:81:
fc:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:E8:13:9C:8B:DD:69:57:E9:F0:A2:19:4F:3A:3C:14:69:9E:AD:08
X509v3 Authority Key Identifier:
keyid:D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/VOgTnIvdaVfp8KIZTzo8FGmerQg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/0d4STg-K2059lXbOrjJfZo3SJLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.199.24.0/23
Signature Algorithm: sha256WithRSAEncryption
3c:0f:fe:7f:27:20:66:bd:a4:15:3c:36:e8:13:5e:e2:fd:dd:
12:99:9f:24:fa:9e:b2:9f:5c:29:e9:1f:47:3b:12:ff:11:4c:
c1:40:d8:4a:32:53:d0:2c:f1:6b:d5:a4:c2:91:6a:c5:6b:df:
13:3c:07:f3:05:91:8a:2c:1f:e1:82:ea:7b:05:72:0f:a1:6f:
45:35:80:59:1f:f3:05:9a:96:a1:cd:51:d8:82:cd:cb:fd:cb:
85:8b:b0:3b:7a:12:de:46:72:22:c9:40:5b:fe:3c:32:6e:4d:
d9:38:6a:e2:f3:63:ad:13:ff:57:86:ed:72:84:95:3b:89:12:
9e:43:3f:39:61:30:ca:57:5b:00:9d:93:73:cf:5a:bc:47:e0:
c8:bf:83:26:69:41:6c:f9:46:b4:4c:9a:a4:82:22:9c:e5:d2:
1d:d2:11:9a:0b:5d:42:93:16:73:20:2d:d7:41:ff:d2:42:69:
59:d1:28:47:10:a9:9a:52:a4:cd:03:25:7c:61:57:8a:7f:1b:
3e:34:43:97:a6:9b:35:79:5a:91:3a:03:56:bf:a4:20:43:6f:
2f:3c:01:40:8c:30:22:f3:8f:86:66:a1:42:f8:f7:bc:84:a9:
50:7a:25:52:cc:cf:74:35:99:c4:e1:2a:41:e0:23:bc:7c:4e:
22:64:6c:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:32 2023 by rpki-client on console-ams.rpki-client.org