Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/VECFmFDSVxRa9UaAB3oVNmwkuxM.roa
File: VECFmFDSVxRa9UaAB3oVNmwkuxM.roa (raw, json)
Hash identifier: 7BKWr98dlSwNY5lWk7JHoFT36TNwI7Wy0rxK42xOJtk=
Subject key identifier: 54:40:85:98:50:D2:57:14:5A:F5:46:80:07:7A:15:36:6C:24:BB:13
Certificate issuer: /CN=95b30111b0b720a209f788c8b90f60380b465c2e
Certificate serial: 0184010FEE04F2181ACBE4A8F42F700B3038
Authority key identifier: 95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/VECFmFDSVxRa9UaAB3oVNmwkuxM.roa
Signing time: Sat 22 Oct 2022 18:58:51 +0000
ROA not before: Sat 22 Oct 2022 18:58:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205718
IP address blocks: 185.228.124.0/22 maxlen: 24
2a09:eac0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:01:0f:ee:04:f2:18:1a:cb:e4:a8:f4:2f:70:0b:30:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95b30111b0b720a209f788c8b90f60380b465c2e
Validity
Not Before: Oct 22 18:58:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5440859850d257145af54680077a15366c24bb13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f0:75:69:de:cd:35:d9:57:cd:a4:b7:51:bc:
9a:da:59:9a:b0:e5:f2:ca:f4:31:9e:7a:f2:20:8a:
82:94:7d:38:70:9e:ef:dc:e9:0d:1f:b3:02:48:a9:
9d:43:f2:70:94:6d:1f:ea:3d:82:f9:5a:2c:80:b9:
09:29:0e:a9:71:b9:da:ca:98:2b:b2:7f:f3:59:84:
5d:2d:de:2a:74:d8:75:f3:2e:15:f4:22:1c:c4:05:
d2:45:90:18:d7:86:69:2c:58:27:7e:29:d1:7c:82:
6b:61:53:34:3d:bd:65:ba:f8:cf:71:4f:8c:c6:08:
f7:04:7a:1d:4c:15:67:48:58:52:25:1a:cf:88:d1:
d7:ba:4b:49:df:26:bb:ba:e9:53:1b:e1:dd:53:d9:
0f:3c:b8:6f:db:03:99:36:cc:28:48:8a:de:1e:f2:
aa:65:b0:a5:93:fa:8f:6f:81:3b:58:8e:b2:9b:70:
bd:38:ad:78:4e:f2:70:2d:19:05:57:2e:01:5c:ba:
06:51:7b:26:12:ac:4e:96:92:bf:97:99:b9:8e:8c:
99:46:f4:b0:18:3c:ab:ca:aa:7d:e5:3e:86:7f:ac:
51:06:a7:8c:51:b0:d6:1c:08:fe:bf:8d:7e:56:68:
d4:f8:df:ce:21:09:45:a7:0d:3a:e2:d6:41:3b:7e:
03:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:40:85:98:50:D2:57:14:5A:F5:46:80:07:7A:15:36:6C:24:BB:13
X509v3 Authority Key Identifier:
keyid:95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/VECFmFDSVxRa9UaAB3oVNmwkuxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.124.0/22
IPv6:
2a09:eac0::/32
Signature Algorithm: sha256WithRSAEncryption
85:05:c6:98:42:41:a4:f6:94:b4:29:87:26:a9:e3:dd:d1:2c:
d3:fa:89:f4:1a:81:3e:d1:10:28:d6:1b:c3:4c:84:60:c4:a9:
dc:53:6c:43:fb:27:e1:ea:57:f0:fe:f5:5d:1e:73:64:42:bc:
67:ae:55:f6:f8:77:d4:c7:3f:74:49:04:8d:7e:d3:67:09:e7:
89:32:3c:ce:ca:39:c0:91:f4:11:d0:35:84:ba:4e:4c:c8:20:
4d:7b:e2:48:10:25:6d:af:98:30:29:e5:f7:85:d1:27:66:c2:
74:ce:3e:4e:74:67:ef:08:18:fc:1c:93:44:fb:91:02:0b:27:
39:c7:63:87:b4:20:73:c9:41:81:89:95:d3:0d:dd:c6:ea:93:
6c:26:64:d3:0d:7f:95:45:04:82:f3:8b:e3:88:99:8e:06:15:
e8:57:52:58:21:15:91:57:3d:b2:fe:5d:a9:3f:1a:1e:4c:31:
f4:b7:04:65:f4:0f:90:92:09:4d:74:89:7b:75:cd:30:0b:95:
98:20:4c:f6:b1:52:15:3b:94:22:1e:1b:fb:2a:bb:44:97:25:
4f:21:ee:30:d2:8e:42:25:f9:e5:96:a1:29:ae:83:6f:09:3e:
81:93:e3:f5:b6:8b:42:f9:21:24:02:e5:23:25:8f:3f:07:ac:
69:91:02:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:18 2024 by rpki-client on console-fra.rpki-client.org