Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/617715-9484-40f9-896c-724b1a0212d4/1/vfSbb_KuplWuemPykwAu730qxa4.roa
File: vfSbb_KuplWuemPykwAu730qxa4.roa (raw, json)
Hash identifier: BCF+dQLMXEnphjTUZSAhktakAxRvso/Edo9coIaWvIY=
Subject key identifier: BD:F4:9B:6F:F2:AE:A6:55:AE:7A:63:F2:93:00:2E:EF:7D:2A:C5:AE
Certificate issuer: /CN=ea1c951d61b87da19439784d23667a89cb3290a4
Certificate serial: 02431B56
Authority key identifier: EA:1C:95:1D:61:B8:7D:A1:94:39:78:4D:23:66:7A:89:CB:32:90:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6hyVHWG4faGUOXhNI2Z6icsykKQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/617715-9484-40f9-896c-724b1a0212d4/1/vfSbb_KuplWuemPykwAu730qxa4.roa
Signing time: Fri 18 Mar 2022 09:57:12 +0000
ROA not before: Fri 18 Mar 2022 09:57:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204463
IP address blocks: 185.113.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37952342 (0x2431b56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea1c951d61b87da19439784d23667a89cb3290a4
Validity
Not Before: Mar 18 09:57:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bdf49b6ff2aea655ae7a63f293002eef7d2ac5ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ad:70:0b:5a:23:12:82:0a:44:b4:ac:99:54:
59:e3:38:6e:1b:00:6c:78:39:f8:ac:b8:89:b7:c0:
7b:29:12:af:0d:2a:4c:88:1e:09:fe:4c:c4:c1:27:
f1:b3:54:96:a0:b7:77:05:b3:47:22:ce:59:ac:31:
95:f6:b1:65:5b:47:2c:52:6c:1b:d0:fa:fd:29:7c:
b2:4b:5f:54:8a:7c:6a:d7:55:88:e8:a3:28:24:7d:
74:0d:e6:0f:c6:a3:43:f6:7c:d3:92:a4:f2:06:ca:
06:69:61:33:20:fb:22:c2:49:0b:ce:5d:00:5e:d7:
e3:92:af:a5:5b:1c:37:07:3d:7c:04:21:a5:ce:67:
5e:db:52:95:6b:84:15:57:ca:20:2a:76:28:74:3a:
b5:d0:8b:4e:77:ea:14:30:78:93:ca:55:b3:f5:20:
bd:e9:9f:e7:6b:d4:8d:a3:22:c8:00:db:8b:ce:40:
5f:5a:3c:f0:e2:4a:8f:9d:f1:f3:d3:ad:d9:a3:4a:
93:83:66:f4:ab:de:fb:0f:59:af:cd:44:82:c4:0e:
81:5d:95:e6:0b:78:9a:7c:61:71:48:e7:9f:07:e3:
0d:33:d1:5c:fc:2d:4a:b8:41:c4:e4:37:89:dd:9f:
5d:9e:f3:10:d6:5e:d8:3e:a6:f9:6b:dc:a5:58:98:
3e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:F4:9B:6F:F2:AE:A6:55:AE:7A:63:F2:93:00:2E:EF:7D:2A:C5:AE
X509v3 Authority Key Identifier:
keyid:EA:1C:95:1D:61:B8:7D:A1:94:39:78:4D:23:66:7A:89:CB:32:90:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6hyVHWG4faGUOXhNI2Z6icsykKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/617715-9484-40f9-896c-724b1a0212d4/1/vfSbb_KuplWuemPykwAu730qxa4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/617715-9484-40f9-896c-724b1a0212d4/1/6hyVHWG4faGUOXhNI2Z6icsykKQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.113.239.0/24
Signature Algorithm: sha256WithRSAEncryption
94:e4:3c:db:84:9b:b8:d1:2b:3a:87:38:50:39:2b:98:63:83:
e7:34:a8:b5:88:99:29:f5:6d:05:e7:01:85:7b:ae:60:dd:b3:
5a:6c:2c:dc:c9:5f:65:48:74:26:f5:04:2f:cd:59:d3:62:47:
58:42:6c:93:8d:9b:54:11:36:d9:63:70:a6:42:d7:34:19:95:
df:35:e1:72:68:3b:1f:1b:36:67:3b:27:3d:d0:19:87:f3:ab:
d6:4d:c4:c4:52:54:9f:05:f1:b1:b0:b8:d9:be:6e:90:e4:05:
37:c7:20:82:c0:45:d6:47:13:46:c1:f6:01:af:ac:59:5b:03:
6b:40:08:a4:b1:2d:9f:68:c9:8e:2d:2f:b3:d6:ec:04:bb:96:
54:e6:67:4b:f1:94:9d:28:01:f5:35:29:ed:fb:4e:de:10:13:
cf:ef:64:2b:2e:d2:64:81:57:c5:63:0f:97:3d:25:7e:ab:a5:
ea:f5:4a:8a:14:07:88:18:e1:1c:19:e9:a6:60:c2:a2:14:e0:
35:b7:e3:df:e1:21:71:da:9a:93:7b:15:65:3d:b4:db:18:dc:
b1:c0:f0:f9:04:91:ea:23:1d:18:c3:63:08:7a:99:44:64:16:
ad:6d:ba:66:38:04:c1:b2:6f:37:1c:6c:ff:6f:96:dd:c1:f4:
26:85:f1:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:49 2023 by rpki-client on console-ams.rpki-client.org