Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/167903-f426-4bf0-9233-a9ac66be48f7/1/VM34BNsi_bUqqstiyKkU3_AOKnQ.roa
File: VM34BNsi_bUqqstiyKkU3_AOKnQ.roa (raw, json)
Hash identifier: rXSj0n+TcyBpxU/t/rLYt1y9oeQ/5s5YIJTlbPTOx4Y=
Subject key identifier: 54:CD:F8:04:DB:22:FD:B5:2A:AA:CB:62:C8:A9:14:DF:F0:0E:2A:74
Certificate issuer: /CN=4a4ad03a0f592bb9c97c3052a690125d846415a4
Certificate serial: 0879311A
Authority key identifier: 4A:4A:D0:3A:0F:59:2B:B9:C9:7C:30:52:A6:90:12:5D:84:64:15:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SkrQOg9ZK7nJfDBSppASXYRkFaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/167903-f426-4bf0-9233-a9ac66be48f7/1/VM34BNsi_bUqqstiyKkU3_AOKnQ.roa
Signing time: Thu 13 Jan 2022 12:56:37 +0000
ROA not before: Thu 13 Jan 2022 12:56:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58293
IP address blocks: 185.195.50.0/24 maxlen: 24
185.195.49.0/24 maxlen: 24
185.195.48.0/24 maxlen: 24
185.195.51.0/24 maxlen: 24
2a07:a5c0::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142160154 (0x879311a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a4ad03a0f592bb9c97c3052a690125d846415a4
Validity
Not Before: Jan 13 12:56:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=54cdf804db22fdb52aaacb62c8a914dff00e2a74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:24:92:52:d7:31:92:e7:d2:04:b1:f2:c9:15:
2b:8f:91:5b:4e:80:43:0b:43:ca:1c:10:aa:b1:82:
d1:a6:f7:76:b7:d0:ba:ff:49:18:23:f8:7e:84:68:
be:29:0b:48:a4:3d:86:10:88:2a:3c:c8:a3:e4:31:
ef:e6:d6:ae:38:bb:6a:ae:56:15:d2:8e:d1:c0:94:
4c:92:fb:0b:8a:cc:80:08:ac:3a:df:1a:f9:09:d7:
4f:5a:90:d4:b2:f4:9c:dd:ba:a6:b5:cc:bb:35:52:
70:03:44:b1:c9:0f:bf:7c:69:4d:ee:e4:53:3e:23:
09:c0:05:04:fb:2f:8b:86:05:f5:7b:0c:8f:e1:1c:
c0:cd:c7:86:f3:f1:01:4e:15:77:c7:84:5c:74:88:
6b:49:30:a7:b6:cc:8f:92:a8:fe:d6:ed:9e:1a:59:
f1:ac:7b:d3:f0:7c:b7:f0:2d:eb:a3:d2:fb:0f:11:
8d:b7:fc:34:42:05:01:37:11:64:bf:45:93:0d:c1:
a6:f8:93:a5:87:50:34:1e:84:f5:03:5b:17:29:6c:
70:44:89:b5:0e:77:ed:aa:39:05:b2:ee:aa:06:e0:
47:37:f7:c7:46:e9:e2:36:5a:50:20:b0:8c:dd:b2:
fc:1e:a1:cc:cb:61:78:1b:32:86:28:48:4a:52:ef:
01:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:CD:F8:04:DB:22:FD:B5:2A:AA:CB:62:C8:A9:14:DF:F0:0E:2A:74
X509v3 Authority Key Identifier:
keyid:4A:4A:D0:3A:0F:59:2B:B9:C9:7C:30:52:A6:90:12:5D:84:64:15:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SkrQOg9ZK7nJfDBSppASXYRkFaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/167903-f426-4bf0-9233-a9ac66be48f7/1/VM34BNsi_bUqqstiyKkU3_AOKnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/167903-f426-4bf0-9233-a9ac66be48f7/1/SkrQOg9ZK7nJfDBSppASXYRkFaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.195.48.0/22
IPv6:
2a07:a5c0::/36
Signature Algorithm: sha256WithRSAEncryption
d8:fb:c3:fa:b0:d5:d4:9e:cf:6b:81:29:b1:0f:b9:fa:fc:98:
6d:2e:fb:71:df:19:c0:6d:1e:1a:21:46:1c:95:a0:5e:35:be:
14:70:a1:2b:9f:3b:59:6c:80:fa:c8:d6:43:15:be:bc:94:eb:
7e:b8:6b:39:27:36:de:9b:6d:f6:35:d7:f0:80:90:17:22:54:
2e:04:54:32:81:6e:da:6e:c5:76:ac:e7:06:fe:ed:b4:81:a0:
ff:e3:60:8c:75:26:31:1a:24:1c:ed:6c:77:f8:c0:ec:90:d0:
f0:39:b9:ff:d6:02:78:45:c6:6a:aa:eb:f7:30:bc:f8:d4:a9:
ac:af:aa:5a:88:96:8e:7d:7c:51:f9:71:f7:d9:49:d6:61:69:
d4:ec:7a:8a:85:59:2a:11:6e:b4:43:d7:25:bd:6e:12:7a:23:
33:90:29:04:f9:e6:85:7e:45:fb:c4:d6:c9:95:94:59:bc:87:
6a:e2:68:e7:41:52:9e:de:62:b0:e7:2a:b6:cd:11:1e:25:e9:
3b:39:b6:0a:b1:75:29:34:28:68:9c:8f:6d:5e:bf:47:93:3b:
b8:aa:71:42:cd:d8:f3:a5:34:2e:22:d4:a7:cf:23:8f:4e:89:
10:9a:f9:db:e5:71:8f:8e:74:d2:c2:10:36:45:9f:38:af:4c:
3e:fc:d8:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:28 2023 by rpki-client on console-fra.rpki-client.org