Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/VrAFzn1NATSCoBv12OnFkamJVPw.roa
File: VrAFzn1NATSCoBv12OnFkamJVPw.roa (raw, json)
Hash identifier: Z2LZCkpe4T13z09m8Gn2xnCGtDU+jWdjKZWd0JMOtIw=
Subject key identifier: 56:B0:05:CE:7D:4D:01:34:82:A0:1B:F5:D8:E9:C5:91:A9:89:54:FC
Certificate issuer: /CN=d8772aac1b62b87d6b01d57a1a00a6a72b8a7da6
Certificate serial: 052B45F4
Authority key identifier: D8:77:2A:AC:1B:62:B8:7D:6B:01:D5:7A:1A:00:A6:A7:2B:8A:7D:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2HcqrBtiuH1rAdV6GgCmpyuKfaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/VrAFzn1NATSCoBv12OnFkamJVPw.roa
Signing time: Sat 01 Jan 2022 09:53:09 +0000
ROA not before: Sat 01 Jan 2022 09:53:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29601
IP address blocks: 193.24.64.0/24 maxlen: 24
193.24.67.0/24 maxlen: 24
193.24.71.0/24 maxlen: 24
193.24.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86722036 (0x52b45f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8772aac1b62b87d6b01d57a1a00a6a72b8a7da6
Validity
Not Before: Jan 1 09:53:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56b005ce7d4d013482a01bf5d8e9c591a98954fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:95:de:66:a8:fe:03:3a:c2:21:6d:05:6d:8d:
a7:e0:61:39:c6:22:d8:ee:98:e6:3c:50:a7:33:46:
c9:70:fe:ac:1f:de:a0:72:f6:f2:01:5e:2f:f8:a3:
7f:2e:43:42:43:da:c1:1c:23:2c:42:de:3e:79:c7:
03:e5:bc:f0:e2:52:b4:d7:18:fc:49:fd:7e:8d:c9:
dd:38:57:c1:2f:19:1f:c9:12:f6:ff:4d:80:9f:c8:
db:0f:2b:82:b6:69:35:99:bf:2f:17:bb:04:58:4d:
bc:a1:7f:e7:1e:f0:ce:29:48:21:8c:43:26:03:32:
82:1e:10:42:c0:fe:23:99:af:19:0a:01:e9:54:93:
ca:bd:d2:c8:34:30:c3:07:9e:76:aa:c7:59:bb:fd:
23:2d:5a:82:58:cd:c1:f4:8f:be:ae:7e:3a:6f:ef:
d6:5a:2c:b4:05:c6:a4:85:fc:96:4d:e6:73:75:59:
a9:bf:b0:9c:e0:11:a5:73:c0:4f:dc:cb:8b:d7:fc:
e8:b0:94:f0:67:92:a0:65:c4:a8:43:51:4b:50:6e:
77:ed:92:99:63:bf:85:0d:e1:f9:08:7f:a8:f7:f6:
ce:0f:66:6d:64:8a:65:00:38:a4:87:83:48:ea:e4:
5b:1a:61:26:e8:65:10:b3:a9:89:59:a5:d0:46:03:
aa:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:B0:05:CE:7D:4D:01:34:82:A0:1B:F5:D8:E9:C5:91:A9:89:54:FC
X509v3 Authority Key Identifier:
keyid:D8:77:2A:AC:1B:62:B8:7D:6B:01:D5:7A:1A:00:A6:A7:2B:8A:7D:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2HcqrBtiuH1rAdV6GgCmpyuKfaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/VrAFzn1NATSCoBv12OnFkamJVPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/2HcqrBtiuH1rAdV6GgCmpyuKfaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.24.64.0/24
193.24.67.0/24
193.24.70.0/23
Signature Algorithm: sha256WithRSAEncryption
49:c7:4c:e3:d0:77:1b:cd:35:78:2c:3f:7c:0b:40:36:67:87:
22:0a:a0:6f:88:8d:0e:35:76:61:62:a6:7a:9d:62:c5:d9:d0:
18:3f:d7:8e:fe:c6:6d:03:bd:f0:95:8d:4a:3e:3b:31:51:3e:
86:fe:4e:aa:01:39:97:2b:68:77:47:ee:54:fa:f8:41:ca:f4:
5a:33:c8:3b:42:a3:ee:f7:4b:72:1f:e0:a8:76:dc:d4:7d:89:
c3:01:f3:a1:4d:50:b8:ba:a8:06:01:d4:fa:5c:64:b6:f7:7b:
e1:4c:2b:ad:bc:06:0a:c9:4d:97:78:58:f0:1a:a7:c9:3a:ca:
a8:1d:97:06:65:7a:8f:4e:69:fc:c1:27:1d:8b:58:e7:91:e4:
a2:bd:ce:9a:f4:1c:01:5e:a5:19:b0:2f:55:ef:3b:59:33:5c:
0e:ff:e8:f0:19:44:28:a6:0d:36:3c:36:65:eb:97:88:ac:34:
16:14:11:b7:da:2d:fc:be:e1:04:b9:9a:a1:15:09:a7:a3:cf:
4d:d9:64:71:af:34:45:e3:ee:ef:38:fd:4a:a9:48:0f:22:9d:
17:b4:13:2b:e7:c4:6d:0d:c0:7c:c7:d3:ac:45:11:e1:00:3b:
d6:9d:bf:9b:cc:c8:09:cd:63:e6:75:a2:d4:a1:f6:b3:3e:e5:
c3:24:fb:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:27 2023 by rpki-client on console-fra.rpki-client.org