Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/8d85d7-4049-4b5a-9bf7-91c70f61a067/1/VGHyVWeP234_oWyKaSUJzRJah8s.roa
File: VGHyVWeP234_oWyKaSUJzRJah8s.roa (raw, json)
Hash identifier: eEvKDG/K/m0bL5z+qEK2lXmvPuFjY4DxoI4858iaFk4=
Subject key identifier: 54:61:F2:55:67:8F:DB:7E:3F:A1:6C:8A:69:25:09:CD:12:5A:87:CB
Certificate issuer: /CN=7c4b917dc9046a065678ae0df4d3e30369c59c69
Certificate serial: 09625774
Authority key identifier: 7C:4B:91:7D:C9:04:6A:06:56:78:AE:0D:F4:D3:E3:03:69:C5:9C:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fEuRfckEagZWeK4N9NPjA2nFnGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/8d85d7-4049-4b5a-9bf7-91c70f61a067/1/VGHyVWeP234_oWyKaSUJzRJah8s.roa
Signing time: Fri 01 Apr 2022 08:58:42 +0000
ROA not before: Fri 01 Apr 2022 08:58:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57183
IP address blocks: 45.12.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157439860 (0x9625774)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c4b917dc9046a065678ae0df4d3e30369c59c69
Validity
Not Before: Apr 1 08:58:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5461f255678fdb7e3fa16c8a692509cd125a87cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1e:cc:9f:4d:a7:57:2a:fc:62:c2:06:48:fc:
99:2a:60:78:e5:4c:8e:98:08:ea:08:5b:09:1a:0e:
53:b7:d9:e6:a6:87:0e:51:01:1f:6b:d3:0c:98:65:
b3:d9:88:c7:6e:76:41:1d:78:2b:9a:9d:f6:bc:a6:
6b:a1:24:fd:96:e0:0d:d0:c4:70:a8:a0:31:3d:a5:
a1:7b:d0:a5:36:05:9c:55:3f:e4:b2:a6:88:dc:6f:
9f:de:07:64:7d:66:15:d3:3a:37:5b:99:90:5f:3c:
55:cc:1a:58:4b:8e:ce:0e:f8:f1:ab:10:12:ad:35:
57:e1:e1:9f:7a:5a:9c:68:96:3c:67:6e:01:06:d4:
08:db:d3:09:7b:70:0a:c8:62:c9:7e:78:1a:3d:8e:
9e:98:3e:72:1b:31:bf:e4:8e:19:e9:a7:a7:78:76:
b3:73:32:fd:42:23:4b:e2:7d:69:9a:72:27:aa:93:
40:e4:8a:ff:71:db:f0:8c:f8:39:37:6f:f4:06:dc:
41:84:bb:82:5f:94:16:2e:18:2b:8d:6a:3a:8b:e7:
ca:cb:43:56:17:6f:d6:ac:22:16:1f:f2:f6:09:99:
8b:29:40:86:56:17:43:47:af:1e:1d:e4:54:c2:e5:
e2:ad:73:86:c7:42:8e:a8:df:b5:d2:72:47:da:93:
ce:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:61:F2:55:67:8F:DB:7E:3F:A1:6C:8A:69:25:09:CD:12:5A:87:CB
X509v3 Authority Key Identifier:
keyid:7C:4B:91:7D:C9:04:6A:06:56:78:AE:0D:F4:D3:E3:03:69:C5:9C:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fEuRfckEagZWeK4N9NPjA2nFnGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/8d85d7-4049-4b5a-9bf7-91c70f61a067/1/VGHyVWeP234_oWyKaSUJzRJah8s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/8d85d7-4049-4b5a-9bf7-91c70f61a067/1/fEuRfckEagZWeK4N9NPjA2nFnGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.120.0/24
Signature Algorithm: sha256WithRSAEncryption
04:e9:88:7d:ed:cc:e9:36:41:1f:c0:86:60:82:67:72:e3:ad:
3a:db:be:d4:74:ac:8c:8e:6c:b4:49:7d:9e:23:5c:0b:b2:f9:
e2:c3:4d:d1:4f:ae:29:30:96:6d:27:aa:30:0d:6c:3c:bb:3a:
07:b5:c4:f5:a9:01:4a:25:61:7f:08:31:7f:79:16:ce:b3:4f:
dd:ca:ac:dc:ca:51:1f:10:ed:04:94:67:17:ae:1f:0f:e6:98:
bd:23:02:ee:ee:a8:f6:8c:72:33:55:9b:6c:9c:dd:0a:ab:fc:
b4:3f:7a:7b:71:04:df:8a:59:eb:13:6f:2c:99:b2:ae:16:8d:
0d:14:e8:b2:93:ce:ad:95:d2:e5:89:8b:0b:27:73:32:40:79:
55:e8:17:df:57:61:dd:e4:4f:a0:0e:55:47:4c:5f:aa:a5:1f:
83:24:b9:23:11:93:55:8e:e8:f1:6c:a1:0c:68:b1:b0:a3:7e:
dd:85:0a:a5:f6:55:c4:86:d5:e9:35:cf:a4:e3:54:82:79:54:
07:29:41:3e:db:22:d7:e4:9a:34:c8:65:d7:73:42:9f:88:65:
ee:f6:5e:8f:63:ad:46:b6:22:be:31:c5:37:98:a0:8e:7c:4b:
1f:fa:34:dc:d9:85:94:8d:f2:67:e5:58:f9:19:ee:83:d9:df:
ec:06:eb:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:59 2023 by rpki-client on console-fra.rpki-client.org