Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/a99355-2d01-4da5-8e73-1bc552c00dd7/1/VWBVVNgsyncQaquuQzGxLkZUkN0.roa
File: VWBVVNgsyncQaquuQzGxLkZUkN0.roa (raw, json)
Hash identifier: 2xdgF7riGfTcCbgwnytCLRAPo0UoJikdQrXqHwGAcU4=
Subject key identifier: 55:60:55:54:D8:2C:CA:77:10:6A:AB:AE:43:31:B1:2E:46:54:90:DD
Certificate issuer: /CN=10953e607670ff738eee6a6b577d8c8b2804e1e1
Certificate serial: 03FAB2B7
Authority key identifier: 10:95:3E:60:76:70:FF:73:8E:EE:6A:6B:57:7D:8C:8B:28:04:E1:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EJU-YHZw_3OO7mprV32MiygE4eE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/a99355-2d01-4da5-8e73-1bc552c00dd7/1/VWBVVNgsyncQaquuQzGxLkZUkN0.roa
Signing time: Sat 01 Jan 2022 01:57:23 +0000
ROA not before: Sat 01 Jan 2022 01:57:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199639
IP address blocks: 176.124.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66761399 (0x3fab2b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10953e607670ff738eee6a6b577d8c8b2804e1e1
Validity
Not Before: Jan 1 01:57:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55605554d82cca77106aabae4331b12e465490dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:57:d0:f6:c1:13:11:78:65:7f:9f:8d:50:27:
28:02:16:51:81:60:2c:4b:4b:7e:32:ef:8b:f7:58:
9b:7f:63:b6:dd:53:8c:60:08:30:36:7a:c3:bc:6d:
3a:6e:75:04:7e:d2:18:0f:1d:80:d4:bf:3a:41:d5:
24:08:a0:00:27:4d:ef:06:e9:df:9c:6c:89:09:c0:
1a:93:f2:e6:53:1f:19:c2:b0:b6:27:3b:a7:c0:41:
2b:39:ea:21:b8:dc:a0:41:6d:20:71:53:00:0d:3c:
11:93:32:a5:7c:77:c1:f5:41:1d:55:7b:23:a8:1a:
55:70:95:31:4d:48:82:2a:b6:88:50:56:36:bb:03:
ff:0d:cc:e5:e0:95:1d:e8:30:31:60:0c:96:fe:e1:
5a:3c:2e:52:d9:ab:3e:22:1e:2e:9f:85:36:09:31:
b0:16:86:2f:4b:14:9c:7e:b9:63:06:af:e7:55:8e:
be:ce:d2:3f:99:f1:fa:51:d1:25:14:14:7d:07:9d:
64:44:17:f1:d7:57:59:ee:f6:b3:0b:20:dc:19:ff:
7f:fa:11:69:ed:6e:fc:d4:ed:f8:7c:f4:ae:2f:de:
2e:6f:a5:f7:15:fc:c2:22:41:b3:fe:ed:e0:36:96:
c7:6d:ab:d0:53:81:a9:4f:1f:41:82:74:4b:67:9a:
cc:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:60:55:54:D8:2C:CA:77:10:6A:AB:AE:43:31:B1:2E:46:54:90:DD
X509v3 Authority Key Identifier:
keyid:10:95:3E:60:76:70:FF:73:8E:EE:6A:6B:57:7D:8C:8B:28:04:E1:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EJU-YHZw_3OO7mprV32MiygE4eE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/a99355-2d01-4da5-8e73-1bc552c00dd7/1/VWBVVNgsyncQaquuQzGxLkZUkN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/a99355-2d01-4da5-8e73-1bc552c00dd7/1/EJU-YHZw_3OO7mprV32MiygE4eE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.124.224.0/24
Signature Algorithm: sha256WithRSAEncryption
73:68:4b:9c:f0:00:86:75:a7:cc:c8:f3:15:fe:d5:c8:a6:b1:
e2:9a:49:4f:af:57:b1:de:df:b0:a5:b9:62:79:72:42:b6:74:
65:a4:91:33:13:b3:43:85:a8:dd:e8:83:78:80:7e:08:17:c3:
45:aa:bd:fd:92:6e:7e:a8:53:18:51:c8:e0:fd:a9:10:ba:31:
bd:f7:15:90:19:74:0a:e2:39:97:33:3d:ca:d2:77:cf:b9:3a:
f4:1c:47:ff:54:83:d3:68:fc:37:c4:ef:8b:48:be:2a:e2:83:
7d:0b:93:c6:4f:08:48:de:c8:e3:54:cc:06:e8:ce:40:92:03:
e3:5c:31:51:f9:1d:bf:21:a4:95:fe:16:d2:8b:7a:be:6f:aa:
ab:b8:6a:c6:dc:41:73:48:da:cc:d5:c2:51:ff:fc:a0:2d:c2:
d8:56:ee:e7:30:8d:0c:a6:6a:a0:05:c5:f6:43:6a:63:c3:ce:
9b:24:b0:72:71:6d:c9:17:f3:24:bf:b2:13:f1:e0:df:b8:ca:
9a:59:4a:bd:a6:7e:50:17:89:c4:ec:25:d7:4c:d9:57:3c:24:
ea:8d:3e:ba:4d:0a:9c:16:97:4c:7b:4b:1e:a1:10:8c:fe:25:
ff:43:01:5e:fc:88:c7:ce:de:35:2b:3d:d9:56:b9:a6:b9:5e:
25:20:05:ad
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA/qytzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
MDk1M2U2MDc2NzBmZjczOGVlZTZhNmI1NzdkOGM4YjI4MDRlMWUxMB4XDTIyMDEw
MTAxNTcyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTU2MDU1NTRkODJj
Y2E3NzEwNmFhYmFlNDMzMWIxMmU0NjU0OTBkZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMZX0PbBExF4ZX+fjVAnKAIWUYFgLEtLfjLvi/dYm39jtt1T
jGAIMDZ6w7xtOm51BH7SGA8dgNS/OkHVJAigACdN7wbp35xsiQnAGpPy5lMfGcKw
tic7p8BBKznqIbjcoEFtIHFTAA08EZMypXx3wfVBHVV7I6gaVXCVMU1Igiq2iFBW
NrsD/w3M5eCVHegwMWAMlv7hWjwuUtmrPiIeLp+FNgkxsBaGL0sUnH65Ywav51WO
vs7SP5nx+lHRJRQUfQedZEQX8ddXWe72swsg3Bn/f/oRae1u/NTt+Hz0ri/eLm+l
9xX8wiJBs/7t4DaWx22r0FOBqU8fQYJ0S2eazHcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRVYFVU2CzKdxBqq65DMbEuRlSQ3TAfBgNVHSMEGDAWgBQQlT5gdnD/c47u
amtXfYyLKATh4TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0VKVS1ZSFp3XzNPTzdtcHJWMzJNaXlnRTRlRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDIvYTk5MzU1LTJkMDEtNGRhNS04ZTczLTFiYzU1MmMwMGRkNy8x
L1ZXQlZWTmdzeW5jUWFxdXVRekd4TGtaVWtOMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDIv
YTk5MzU1LTJkMDEtNGRhNS04ZTczLTFiYzU1MmMwMGRkNy8xL0VKVS1ZSFp3XzNP
TzdtcHJWMzJNaXlnRTRlRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALB84DANBgkqhkiG9w0BAQsFAAOC
AQEAc2hLnPAAhnWnzMjzFf7VyKax4ppJT69Xsd7fsKW5YnlyQrZ0ZaSRMxOzQ4Wo
3eiDeIB+CBfDRaq9/ZJufqhTGFHI4P2pELoxvfcVkBl0CuI5lzM9ytJ3z7k69BxH
/1SD02j8N8Tvi0i+KuKDfQuTxk8ISN7I41TMBujOQJID41wxUfkdvyGklf4W0ot6
vm+qq7hqxtxBc0jazNXCUf/8oC3C2Fbu5zCNDKZqoAXF9kNqY8POmySwcnFtyRfz
JL+yE/Hg37jKmllKvaZ+UBeJxOwl10zZVzwk6o0+uk0KnBaXTHtLHqEQjP4l/0MB
XvyIx87eNSs92Va5prleJSAFrQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:27 2024 by rpki-client on console-ams.rpki-client.org