Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/VDu_Tfv3Tk6_XCDS_dQp4fJAI0I.roa
File: VDu_Tfv3Tk6_XCDS_dQp4fJAI0I.roa (raw, json)
Hash identifier: 9+P3manQ2ureBH877/0tNyoA/eFBcc7xxB0UIS2ov74=
Subject key identifier: 54:3B:BF:4D:FB:F7:4E:4E:BF:5C:20:D2:FD:D4:29:E1:F2:40:23:42
Certificate issuer: /CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9
Certificate serial: 01848B11E5ECAFCA65F7AA988FC7AE7F21FA
Authority key identifier: 4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/VDu_Tfv3Tk6_XCDS_dQp4fJAI0I.roa
Signing time: Fri 18 Nov 2022 14:08:36 +0000
ROA not before: Fri 18 Nov 2022 14:08:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396356
IP address blocks: 194.34.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:8b:11:e5:ec:af:ca:65:f7:aa:98:8f:c7:ae:7f:21:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9
Validity
Not Before: Nov 18 14:08:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=543bbf4dfbf74e4ebf5c20d2fdd429e1f2402342
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ec:eb:3b:16:af:11:aa:2c:9c:f3:de:72:8d:
89:7a:0a:4a:4d:03:4d:b9:57:6f:0e:0a:92:a0:fe:
d1:cf:8d:01:fb:66:ae:a3:e4:23:27:28:4c:98:00:
92:f8:db:d8:eb:b1:15:33:c2:69:2c:ba:c6:55:85:
e7:04:53:b2:d4:27:9d:21:a2:9b:1d:a5:3c:f7:2e:
dd:fb:79:93:b0:ec:1a:31:a1:d3:6e:26:8a:17:cc:
e9:17:69:ae:4a:15:6a:92:02:0a:13:06:44:16:d6:
8b:a2:6f:ee:93:56:df:27:cd:5f:a5:15:00:f4:92:
8a:31:f9:87:72:3f:5e:40:03:be:e0:87:b8:e4:74:
db:d9:25:3c:80:ef:f3:22:99:3e:20:c1:83:25:86:
e8:e3:d5:ec:37:60:01:8f:39:b7:6e:1d:97:8a:e1:
d1:21:ae:1c:09:51:dd:e5:52:1c:9c:7d:7b:f0:71:
9e:69:a7:6a:12:5a:8c:62:2a:ef:84:01:51:50:e7:
92:f0:c0:28:77:e5:5e:3a:61:98:d4:b4:b4:91:54:
64:bc:f6:0e:d8:60:60:11:5d:83:e6:68:e2:5b:86:
7a:5e:fb:f8:b2:74:ec:e2:c4:35:42:33:ed:c6:52:
63:ed:10:f4:cd:18:bd:6b:48:04:42:6a:4e:fe:b6:
43:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:3B:BF:4D:FB:F7:4E:4E:BF:5C:20:D2:FD:D4:29:E1:F2:40:23:42
X509v3 Authority Key Identifier:
keyid:4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/VDu_Tfv3Tk6_XCDS_dQp4fJAI0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/TdlU08d8nE437r91PYbz3PCR1Kk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.34.105.0/24
Signature Algorithm: sha256WithRSAEncryption
69:e3:b5:68:59:16:d2:0c:86:1c:28:9e:33:db:78:c8:ae:2e:
3d:0b:38:a5:2c:d8:d5:b1:0f:ef:c9:91:68:02:5f:ae:a2:9b:
2e:d7:37:db:91:f3:15:3f:43:2c:0a:55:20:23:f4:1f:ad:89:
3e:de:34:72:36:a0:9d:a2:fc:9f:64:57:7a:74:1f:b5:24:c0:
0b:cf:35:b3:3b:56:2a:18:a9:fa:ed:72:af:f8:f2:95:b3:35:
4e:c4:30:ff:27:24:df:08:ac:4f:66:03:93:e1:f6:4a:7d:ec:
8e:cb:3a:77:4d:ac:0e:6e:6f:d2:78:d6:7f:c7:1f:bd:84:39:
e6:93:b7:7a:d0:12:e9:28:bc:9d:a4:9d:db:c2:c0:97:2a:2a:
7f:31:e8:58:9f:ad:50:22:5e:c0:1e:0d:68:4f:b2:33:19:f6:
be:0b:c1:3a:55:5c:41:3d:5f:28:33:16:41:e9:e9:29:e6:6b:
87:d6:6b:ec:55:c9:b5:5e:60:25:75:94:41:a6:bf:3b:33:43:
a1:45:fb:71:a4:21:3f:d6:ed:4d:b7:6f:fe:45:4e:42:9d:8c:
b9:9f:7d:53:f1:fc:1d:7b:73:f2:96:7f:58:d9:d6:89:f3:1e:
87:0d:f0:a2:d6:ca:9a:18:7c:3d:50:10:56:09:5c:b7:22:91:
88:5c:8c:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:23 2024 by rpki-client on console-fra.rpki-client.org