Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/7c07e8-3b8c-4c93-9a08-a909cb0a138f/1/VDx7C8bq7i3QLCWJGLKiBidtdnc.roa
File: VDx7C8bq7i3QLCWJGLKiBidtdnc.roa (raw, json)
Hash identifier: qkk7o3Ho2MDO6++UmyTt1deNf+aK3hmxX5JBVZSzrhk=
Subject key identifier: 54:3C:7B:0B:C6:EA:EE:2D:D0:2C:25:89:18:B2:A2:06:27:6D:76:77
Certificate issuer: /CN=a802b73ef4a8b6b0e0883a9c8bc6e7f012db93a0
Certificate serial: A8E36B
Authority key identifier: A8:02:B7:3E:F4:A8:B6:B0:E0:88:3A:9C:8B:C6:E7:F0:12:DB:93:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qAK3PvSotrDgiDqci8bn8BLbk6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/7c07e8-3b8c-4c93-9a08-a909cb0a138f/1/VDx7C8bq7i3QLCWJGLKiBidtdnc.roa
Signing time: Thu 07 Apr 2022 00:33:42 +0000
ROA not before: Thu 07 Apr 2022 00:33:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49581
IP address blocks: 193.141.60.0/24 maxlen: 24
2a12:8640::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11068267 (0xa8e36b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a802b73ef4a8b6b0e0883a9c8bc6e7f012db93a0
Validity
Not Before: Apr 7 00:33:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=543c7b0bc6eaee2dd02c258918b2a206276d7677
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:83:33:08:5b:34:45:3a:a8:f9:e0:46:fa:fc:
af:81:d7:e5:d7:a8:da:57:74:e8:a9:24:73:e0:d2:
f9:f8:fa:1c:bc:00:6e:6e:29:84:de:34:14:69:c2:
92:ab:39:f9:ff:bd:49:3c:27:7b:e4:5e:dd:59:8d:
1c:c2:d4:62:9b:84:28:49:a7:de:68:0a:a9:16:71:
d0:c1:33:6a:52:5f:e6:a7:10:77:ec:33:3a:ab:87:
57:21:24:85:d0:0d:35:4a:1f:fd:de:ae:1c:b1:03:
6b:07:f0:ef:43:cc:4b:06:4a:27:b5:91:93:c3:6b:
29:ae:60:a3:11:b6:df:76:18:47:3a:27:3e:85:37:
8b:92:19:b3:a6:4c:79:bd:b4:21:a8:82:f7:09:be:
b8:62:e2:8a:78:e7:c1:e7:31:58:b9:56:04:f8:5d:
4c:9c:9c:a9:46:29:69:f5:fd:f5:0e:b5:36:3f:18:
49:10:cf:66:3d:e4:66:91:cc:05:e0:1a:0f:2e:2e:
f7:15:97:97:e9:ba:91:bc:7f:92:14:13:be:2e:4c:
36:48:c9:3e:1a:8c:93:66:28:3e:3b:e1:05:06:6d:
aa:f9:29:f8:ff:00:e7:5f:36:38:ad:54:4f:d1:8c:
f9:61:5b:77:a2:41:9e:31:f9:c2:38:15:30:a9:c1:
cc:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:3C:7B:0B:C6:EA:EE:2D:D0:2C:25:89:18:B2:A2:06:27:6D:76:77
X509v3 Authority Key Identifier:
keyid:A8:02:B7:3E:F4:A8:B6:B0:E0:88:3A:9C:8B:C6:E7:F0:12:DB:93:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qAK3PvSotrDgiDqci8bn8BLbk6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/7c07e8-3b8c-4c93-9a08-a909cb0a138f/1/VDx7C8bq7i3QLCWJGLKiBidtdnc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/7c07e8-3b8c-4c93-9a08-a909cb0a138f/1/qAK3PvSotrDgiDqci8bn8BLbk6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.141.60.0/24
IPv6:
2a12:8640::/29
Signature Algorithm: sha256WithRSAEncryption
78:c3:36:19:ff:dd:36:f8:01:c0:22:89:e1:5e:e2:5c:67:6c:
c2:f1:6f:cf:a8:8d:3a:35:28:ce:eb:46:43:c4:e7:53:99:45:
b2:03:67:11:f1:05:36:10:3d:74:2f:82:19:0d:82:51:96:8a:
73:ec:ba:61:0d:c6:92:ff:88:fc:15:d0:4f:b9:d8:da:b1:7c:
98:8e:be:2a:1c:5d:9f:46:64:04:a6:e1:a9:f5:b9:7a:45:51:
db:68:01:4d:80:d6:ac:7d:0f:36:dd:2a:ce:17:33:e0:c5:ee:
ac:a6:a6:6e:97:de:56:51:5e:72:c4:62:00:cc:3e:64:0b:c5:
27:58:91:05:35:76:42:7d:c8:65:0d:ad:51:20:cd:69:4a:c4:
b3:09:5b:44:b5:96:9f:7a:75:7d:7c:df:d8:84:01:31:dd:7d:
76:e5:56:1f:fa:14:f7:30:f0:e4:7b:b4:6c:0f:59:0a:de:1d:
0f:b1:1f:3b:9e:d2:74:7a:8b:0c:d9:91:2a:e0:3d:a6:db:8e:
10:1e:17:b8:dc:e2:f9:8e:72:68:b9:96:e3:3e:1e:ac:a8:f2:
93:bf:ae:11:75:c3:d1:f3:53:60:c6:4f:d2:4d:40:5e:a8:a6:
62:1a:1e:09:fc:9c:5a:e9:25:49:36:42:40:1c:f8:12:65:84:
0c:4d:3b:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:53 2023 by rpki-client on console-fra.rpki-client.org