Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/a27329-3ecf-4885-a773-58e5b76bebb7/1/VKFRvCuQorTpAAHVqs8pf-R30yg.roa
File: VKFRvCuQorTpAAHVqs8pf-R30yg.roa (raw, json)
Hash identifier: QEXVwT31hZ0T5tf66yjugptVXF5uaUEi6b/l8XssGj4=
Subject key identifier: 54:A1:51:BC:2B:90:A2:B4:E9:00:01:D5:AA:CF:29:7F:E4:77:D3:28
Certificate issuer: /CN=03e85fa4be66942e5909fd3a1fd4a0c26e36a0d2
Certificate serial: 02EDFC56
Authority key identifier: 03:E8:5F:A4:BE:66:94:2E:59:09:FD:3A:1F:D4:A0:C2:6E:36:A0:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A-hfpL5mlC5ZCf06H9Sgwm42oNI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/a27329-3ecf-4885-a773-58e5b76bebb7/1/VKFRvCuQorTpAAHVqs8pf-R30yg.roa
Signing time: Sat 01 Jan 2022 03:54:03 +0000
ROA not before: Sat 01 Jan 2022 03:54:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39543
IP address blocks: 194.150.84.0/22 maxlen: 22
194.150.84.0/23 maxlen: 23
194.150.86.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49151062 (0x2edfc56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03e85fa4be66942e5909fd3a1fd4a0c26e36a0d2
Validity
Not Before: Jan 1 03:54:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=54a151bc2b90a2b4e90001d5aacf297fe477d328
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:0b:85:1e:9c:cf:3a:9f:ee:7c:63:d6:b7:80:
7e:6a:1d:46:1e:be:3a:20:c6:df:a0:6d:bc:e1:80:
3a:28:c3:32:67:19:b6:dd:9e:6f:ea:7b:ad:49:27:
41:07:3b:92:84:20:c8:39:3a:bf:95:16:be:cd:1b:
54:14:27:23:15:6c:66:2a:50:83:07:07:40:e5:0a:
7f:c9:3e:98:f2:0c:e0:6b:92:2f:a1:81:86:1b:71:
1d:03:b0:78:15:f8:6a:0d:c1:94:aa:3c:38:cb:75:
f0:bd:06:d7:ca:c6:5c:9e:1f:e8:d0:9f:18:3e:6c:
f2:6f:d3:6a:1a:2f:4f:6a:4f:18:dd:de:42:d5:23:
c9:e5:08:b4:a7:2e:f3:37:3d:ea:46:b3:6b:0b:07:
7c:11:d0:53:72:87:cd:ca:c5:13:c4:9d:9e:07:4c:
d9:ef:af:fe:50:41:3c:5f:ad:09:9f:1e:97:5d:16:
18:bc:b4:85:c9:ca:59:51:e8:ed:ac:d9:26:09:70:
42:de:5b:9b:85:c2:44:9b:21:71:a8:d2:a0:a7:5c:
93:4d:5b:f3:a6:c2:cd:a4:a5:5f:a3:32:55:a0:8c:
7d:de:86:95:5c:9c:40:23:76:a6:d2:72:c5:d7:9c:
43:b0:27:3d:11:0c:fc:63:36:8c:00:be:4e:85:61:
eb:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:A1:51:BC:2B:90:A2:B4:E9:00:01:D5:AA:CF:29:7F:E4:77:D3:28
X509v3 Authority Key Identifier:
keyid:03:E8:5F:A4:BE:66:94:2E:59:09:FD:3A:1F:D4:A0:C2:6E:36:A0:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-hfpL5mlC5ZCf06H9Sgwm42oNI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a27329-3ecf-4885-a773-58e5b76bebb7/1/VKFRvCuQorTpAAHVqs8pf-R30yg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a27329-3ecf-4885-a773-58e5b76bebb7/1/A-hfpL5mlC5ZCf06H9Sgwm42oNI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.150.84.0/22
Signature Algorithm: sha256WithRSAEncryption
71:91:3f:64:8f:a4:1a:f4:64:8a:d5:1c:22:c7:d9:1f:8a:ce:
0a:fa:95:62:72:ca:43:7d:39:8c:86:73:53:07:f0:5f:0f:a6:
80:28:0e:bd:67:dc:e5:4c:be:96:dd:e1:43:94:77:d9:91:68:
8a:07:eb:4d:54:ef:c0:96:9f:89:5d:46:c0:04:8b:97:d2:0c:
b4:df:a2:bd:9d:62:4d:98:5b:58:10:bc:1f:3c:68:b3:a8:01:
52:81:b8:9f:27:37:70:35:ce:36:a3:cb:c0:bc:20:8c:65:bc:
67:58:c2:cd:f6:58:29:dc:80:07:ea:15:44:e9:2f:31:3a:cd:
32:d5:03:d7:8d:d5:de:bc:b3:f9:96:e7:68:68:0b:8d:b2:0f:
1a:52:2b:12:bd:08:ea:74:c9:50:72:e9:a9:a4:65:8c:bc:12:
6a:f2:ca:61:f3:85:79:df:f5:07:59:ca:35:31:38:04:a9:2f:
c7:93:f1:40:f2:0d:82:5e:f0:95:f6:ab:dd:ec:cc:0a:d6:3e:
a7:78:14:a9:b5:57:35:e9:4c:f4:d7:ba:38:3b:78:a6:a5:b8:
32:59:a6:b7:01:58:a7:72:bc:ea:93:27:a4:8e:cb:e1:82:49:
bc:8e:b8:d9:c3:28:af:d0:dd:03:f2:7e:57:36:f3:82:1b:63:
27:8f:51:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:17 2023 by rpki-client on console-ams.rpki-client.org