Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/VfkpnxmJ6YbR6gBnjIy8CFlwkx8.roa
File: VfkpnxmJ6YbR6gBnjIy8CFlwkx8.roa (raw, json)
Hash identifier: urm8eRp3bKRZQCohpLhk5NDmk01RL/mb2SnEh2DRLU4=
Subject key identifier: 55:F9:29:9F:19:89:E9:86:D1:EA:00:67:8C:8C:BC:08:59:70:93:1F
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0476A699
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/VfkpnxmJ6YbR6gBnjIy8CFlwkx8.roa
Signing time: Fri 04 Mar 2022 10:28:48 +0000
ROA not before: Fri 04 Mar 2022 10:28:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39838
IP address blocks: 217.26.188.0/22 maxlen: 22
141.136.60.0/22 maxlen: 22
89.42.112.0/23 maxlen: 23
77.247.120.0/22 maxlen: 22
89.45.208.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74884761 (0x476a699)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Mar 4 10:28:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55f9299f1989e986d1ea00678c8cbc085970931f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:24:83:98:a4:bf:e7:a6:6d:be:83:08:b8:2d:
e8:88:1b:ec:72:24:1d:b0:f3:04:f1:23:3d:2f:73:
d4:a2:52:78:13:8e:ab:75:56:51:04:ed:c8:b2:f5:
4b:e3:a5:63:10:fd:f0:0f:ae:be:e8:95:67:ef:8d:
22:cb:17:9c:54:22:60:f0:3b:af:e3:d7:ff:f0:62:
e4:ed:81:8a:dd:55:d6:b4:9f:64:6b:44:51:b3:aa:
d7:62:49:0b:67:ab:23:9f:83:fc:a1:c1:d0:a4:c1:
7e:e2:c9:60:b0:21:d6:9b:b9:41:fe:eb:c4:c8:29:
b1:6b:10:ad:a6:c2:8c:11:9a:dc:00:1d:13:47:02:
2e:2a:c5:3e:f0:5c:16:75:c1:ec:37:88:6b:8f:9d:
b2:77:8c:07:90:ff:65:7e:6c:c5:f3:44:29:06:15:
4a:1e:cd:b8:cb:d2:17:f0:ca:db:9d:2b:31:85:de:
de:82:ad:77:95:57:04:1a:88:50:22:1f:58:1c:41:
f8:b2:ca:ef:b5:45:c5:3d:23:6a:37:e3:fd:d6:b5:
fe:26:e1:23:f8:45:a6:38:88:bd:7c:12:db:be:ed:
d5:d2:cc:d0:63:8d:10:c7:a1:53:b9:c5:06:98:f8:
66:58:22:77:2e:39:c2:04:20:a3:9c:05:87:f8:e3:
19:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:F9:29:9F:19:89:E9:86:D1:EA:00:67:8C:8C:BC:08:59:70:93:1F
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/VfkpnxmJ6YbR6gBnjIy8CFlwkx8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.247.120.0/22
89.42.112.0/23
89.45.208.0/23
141.136.60.0/22
217.26.188.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:53:78:ab:36:c8:ad:01:1b:26:0c:25:4e:4e:e7:b1:3a:e4:
1e:cb:9b:e4:ed:83:e8:7b:be:6d:45:cb:b6:34:1d:9a:d6:9d:
02:33:74:37:ca:56:bd:51:26:ee:db:3b:2a:27:78:e1:27:b6:
36:dd:4d:1f:c4:e9:26:ec:9a:52:7a:2b:3c:bc:b0:9e:5c:95:
ad:27:60:df:04:ab:d3:ec:72:f8:cc:e3:8f:a7:3c:32:cd:85:
89:8f:6b:08:64:b2:17:04:f5:1f:68:55:18:c7:3e:91:a2:23:
e1:e6:69:5f:6e:fe:49:96:73:83:03:8c:39:b9:ab:b1:a3:84:
86:4e:d6:90:00:06:a5:30:1d:77:d5:68:eb:81:d3:f2:ec:b9:
57:c7:82:04:65:50:0a:5c:c2:e2:87:06:6b:1d:a2:c1:fe:12:
53:08:ac:96:05:e2:bb:df:3f:9b:c7:f9:b2:ae:f1:b2:b7:59:
f0:af:65:5e:7d:9b:7f:57:6d:06:a7:97:71:cb:8c:b3:aa:88:
c9:c0:10:90:8d:44:15:e5:a5:49:e4:b2:11:1f:bf:9d:84:5f:
29:e9:b0:01:e3:60:67:d0:0e:2a:7c:39:e8:dd:b7:d2:db:10:
b3:d0:31:ad:1f:57:a3:f3:a4:46:4e:71:80:a5:61:af:2d:0d:
55:6a:78:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:49 2023 by rpki-client on console-fra.rpki-client.org