Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/5d7df8-b464-4ca7-ba6c-800c99851368/1/Vkx5LF7pjL_f_k4lecWobqBcFW0.roa
File: Vkx5LF7pjL_f_k4lecWobqBcFW0.roa (raw, json)
Hash identifier: 2N+7Z/jBesLBvCxwq31xaaeQZO9DIl245UqkRVn/nsQ=
Subject key identifier: 56:4C:79:2C:5E:E9:8C:BF:DF:FE:4E:25:79:C5:A8:6E:A0:5C:15:6D
Certificate issuer: /CN=e36b4c58e6cfd9fa7e7222a58b3626db7b985324
Certificate serial: 109E3B17
Authority key identifier: E3:6B:4C:58:E6:CF:D9:FA:7E:72:22:A5:8B:36:26:DB:7B:98:53:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/42tMWObP2fp-ciKlizYm23uYUyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/5d7df8-b464-4ca7-ba6c-800c99851368/1/Vkx5LF7pjL_f_k4lecWobqBcFW0.roa
Signing time: Sat 01 Jan 2022 15:02:19 +0000
ROA not before: Sat 01 Jan 2022 15:02:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43016
IP address blocks: 195.181.192.0/20 maxlen: 20
185.121.216.0/22 maxlen: 22
2a06:a0c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 278805271 (0x109e3b17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e36b4c58e6cfd9fa7e7222a58b3626db7b985324
Validity
Not Before: Jan 1 15:02:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=564c792c5ee98cbfdffe4e2579c5a86ea05c156d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3d:66:18:c7:a1:c2:87:82:cc:d3:df:28:50:
04:18:72:38:dd:f6:89:68:7d:8d:38:47:01:5f:4f:
49:72:49:6a:c8:ea:34:db:a0:f0:f0:08:91:9b:dd:
58:36:78:85:33:4f:a0:1a:f1:d9:3b:16:df:b8:0c:
f5:07:1c:cf:74:b8:6f:4d:50:c6:7d:d9:30:91:32:
38:2a:62:02:f0:ed:43:7b:05:54:8f:c6:98:e5:e1:
eb:c9:ac:6f:71:62:b4:2d:35:fa:b5:8f:31:16:eb:
05:bd:a0:c0:81:dc:99:c2:98:95:fe:c9:b5:2d:94:
b9:25:c8:bd:07:71:55:84:44:b3:f5:88:2b:f3:5e:
b1:34:53:d0:a4:fe:c2:cd:a0:2b:0f:b5:48:29:55:
7d:7f:b1:3e:9e:0d:c6:21:ae:b6:43:b2:37:cd:b6:
bd:7a:88:d8:f7:2a:73:32:a2:ac:aa:7a:56:a5:85:
b5:5e:98:f5:b9:b8:4c:a9:6a:30:8a:e9:87:a4:77:
c5:43:33:c5:15:93:77:d0:27:5e:73:38:93:a8:f5:
37:12:93:93:19:87:09:dc:4a:44:92:f9:01:26:16:
3f:07:45:a8:70:c4:78:ae:5b:63:a7:0a:b4:0f:14:
56:46:c6:ff:af:7d:ad:f4:47:46:06:3d:e5:86:63:
50:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:4C:79:2C:5E:E9:8C:BF:DF:FE:4E:25:79:C5:A8:6E:A0:5C:15:6D
X509v3 Authority Key Identifier:
keyid:E3:6B:4C:58:E6:CF:D9:FA:7E:72:22:A5:8B:36:26:DB:7B:98:53:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/42tMWObP2fp-ciKlizYm23uYUyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/5d7df8-b464-4ca7-ba6c-800c99851368/1/Vkx5LF7pjL_f_k4lecWobqBcFW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/5d7df8-b464-4ca7-ba6c-800c99851368/1/42tMWObP2fp-ciKlizYm23uYUyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.121.216.0/22
195.181.192.0/20
IPv6:
2a06:a0c0::/29
Signature Algorithm: sha256WithRSAEncryption
08:b4:d0:89:85:a0:6c:ef:da:df:d5:da:9a:44:b1:02:42:c7:
ae:3b:34:0b:d8:0a:96:07:a8:67:3e:ee:1b:c3:09:5c:4d:01:
66:9c:d7:05:9d:fc:8c:3c:ed:ba:8b:84:24:c9:a4:61:43:4b:
5e:0a:7a:1f:47:ab:95:b0:6f:ff:72:93:74:b1:93:48:1a:e7:
af:9f:6f:24:1f:c2:32:f9:f8:7c:1a:b0:5d:41:78:f5:21:bb:
d3:cb:6b:5b:72:f9:13:04:d9:1e:a4:70:6a:a2:8d:c5:5e:37:
0c:a4:05:d9:41:bf:b7:c4:33:19:f8:b6:3e:39:2e:57:87:26:
33:4e:33:09:5a:36:b6:63:0c:33:e5:b5:3b:01:9c:0e:87:ca:
6d:fb:a1:f8:3c:73:ac:ba:71:c1:2f:f0:31:81:5d:2d:46:84:
d6:a4:24:3c:80:fa:f4:8a:8b:b3:e1:19:b4:95:9b:94:9a:38:
29:05:f5:11:28:0a:f1:39:38:c2:e0:53:3a:a9:06:e9:dc:92:
fe:43:43:3e:a4:93:66:d2:2d:b0:54:9e:c2:ee:8b:34:31:18:
11:04:35:9c:a0:b9:e4:ed:84:ff:07:d6:16:5f:0e:10:74:de:
b3:a5:22:ec:f1:31:d5:36:05:66:33:46:02:60:3a:03:5b:a5:
ec:62:d2:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:19 2024 by rpki-client on console-fra.rpki-client.org