Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/8d9136-1cb2-4349-ab86-5dc392de637b/1/vkGGdUe6PxlNmFNLvtnHMY6pH9w.roa
File: vkGGdUe6PxlNmFNLvtnHMY6pH9w.roa (raw, json)
Hash identifier: 0yjst8GN+kGLRldczoElDO+92e0Mcwp+yWiwHfN9fSQ=
Subject key identifier: BE:41:86:75:47:BA:3F:19:4D:98:53:4B:BE:D9:C7:31:8E:A9:1F:DC
Certificate issuer: /CN=78356c6a831680e9b8b7c95514953007a9407e87
Certificate serial: 0756EA9C
Authority key identifier: 78:35:6C:6A:83:16:80:E9:B8:B7:C9:55:14:95:30:07:A9:40:7E:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eDVsaoMWgOm4t8lVFJUwB6lAfoc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/8d9136-1cb2-4349-ab86-5dc392de637b/1/vkGGdUe6PxlNmFNLvtnHMY6pH9w.roa
Signing time: Sat 01 Jan 2022 11:02:53 +0000
ROA not before: Sat 01 Jan 2022 11:02:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34997
IP address blocks: 45.87.156.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123136668 (0x756ea9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78356c6a831680e9b8b7c95514953007a9407e87
Validity
Not Before: Jan 1 11:02:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be41867547ba3f194d98534bbed9c7318ea91fdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:04:ee:a6:59:ea:16:d7:dc:c1:f0:f7:8b:a2:
f8:82:b0:0b:aa:d2:38:43:37:90:38:da:99:8b:2b:
19:3b:1f:a1:44:6a:76:ca:50:1c:22:bc:51:e0:3e:
c6:24:db:72:a8:c0:83:9d:67:52:07:5f:cc:09:50:
c3:cc:97:1f:79:87:4b:c2:29:3b:b6:d9:9f:a1:85:
ba:69:1f:af:1d:10:1b:7e:24:ea:47:0d:75:6c:36:
28:0a:66:95:31:ce:ff:68:3d:51:a9:e9:40:19:f3:
0c:f2:a1:97:06:19:0e:42:8f:02:ce:d9:ba:8b:d0:
24:16:fd:21:21:63:55:f9:a8:23:0b:52:0b:37:37:
97:04:3e:c8:02:9d:6c:e9:f4:d8:f1:1a:35:34:df:
42:1b:22:11:65:b1:9b:2f:de:69:af:f8:2b:c7:f4:
8e:35:44:78:90:1e:d2:30:42:d9:2c:ef:48:00:6d:
15:f3:d8:d8:bc:fc:a9:6a:ee:e9:05:c5:bd:4d:9c:
5a:db:6c:52:60:42:fd:27:bb:ed:b8:98:4f:c1:47:
5f:6f:c3:5c:35:46:4b:e6:2d:3e:17:41:e6:a2:d3:
d2:c3:93:16:18:8a:52:35:a0:cb:62:6e:50:1b:bf:
44:20:7d:4f:f8:7f:76:de:55:b3:59:44:7c:04:cc:
0c:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:41:86:75:47:BA:3F:19:4D:98:53:4B:BE:D9:C7:31:8E:A9:1F:DC
X509v3 Authority Key Identifier:
keyid:78:35:6C:6A:83:16:80:E9:B8:B7:C9:55:14:95:30:07:A9:40:7E:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eDVsaoMWgOm4t8lVFJUwB6lAfoc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/8d9136-1cb2-4349-ab86-5dc392de637b/1/vkGGdUe6PxlNmFNLvtnHMY6pH9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/8d9136-1cb2-4349-ab86-5dc392de637b/1/eDVsaoMWgOm4t8lVFJUwB6lAfoc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.156.0/23
Signature Algorithm: sha256WithRSAEncryption
96:4f:b4:2c:e1:94:f4:27:fb:c6:8e:b3:f7:0d:3a:c3:b5:11:
61:13:04:75:eb:31:c4:b0:39:b6:76:61:d2:4a:58:2a:1a:6b:
29:e6:5e:9e:d9:46:bc:b7:c2:91:b6:ce:37:21:c8:83:02:02:
67:3c:96:50:e6:4f:bb:98:1b:4b:1b:e8:b1:5d:e1:2a:b3:86:
4f:8b:79:9d:e1:3f:98:eb:0c:0e:e4:b4:c8:57:41:7a:e1:50:
5e:95:a4:b3:66:67:59:72:c9:2b:21:52:e0:06:da:82:f2:6d:
2b:d6:f5:43:37:2c:d3:0e:e3:50:63:b0:14:f0:fc:10:40:09:
01:d7:13:b9:f6:73:f9:7e:07:4e:12:8f:3c:f0:de:87:d1:6f:
ed:ce:35:9b:78:ed:ff:25:6d:71:44:02:e5:04:19:7e:77:c5:
2d:92:76:d1:21:53:b0:be:5e:fd:1d:ee:8e:79:e7:66:7e:80:
b2:c6:0f:78:2e:71:c1:34:ae:dc:5f:75:41:0c:60:58:8d:9f:
a9:2a:65:aa:52:18:45:f4:c3:a2:8d:d6:34:91:02:98:e9:26:
67:64:ec:a1:d5:4f:55:5a:ae:24:78:73:cb:25:2c:91:87:11:
f0:39:28:86:0c:4d:c6:3f:05:89:50:fd:9d:5f:4e:85:4a:e3:
3a:0d:e4:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:24 2024 by rpki-client on console-fra.rpki-client.org