Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/vWR9L-UlN8Ccl4KJktU0AvvPPHw.roa
File: vWR9L-UlN8Ccl4KJktU0AvvPPHw.roa (raw, json)
Hash identifier: pO6dd0vlFX0bQVsQOhiQnD3dQVP0cBjlkSt+f4M+9nQ=
Subject key identifier: BD:64:7D:2F:E5:25:37:C0:9C:97:82:89:92:D5:34:02:FB:CF:3C:7C
Certificate issuer: /CN=bf107e07952c069358cd3f82aaeceb4c69483ca9
Certificate serial: 027FF96B
Authority key identifier: BF:10:7E:07:95:2C:06:93:58:CD:3F:82:AA:EC:EB:4C:69:48:3C:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vxB-B5UsBpNYzT-CquzrTGlIPKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/vWR9L-UlN8Ccl4KJktU0AvvPPHw.roa
Signing time: Sat 01 Jan 2022 15:55:21 +0000
ROA not before: Sat 01 Jan 2022 15:55:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208257
IP address blocks: 185.251.70.0/24 maxlen: 24
2a0f:f200::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41941355 (0x27ff96b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf107e07952c069358cd3f82aaeceb4c69483ca9
Validity
Not Before: Jan 1 15:55:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd647d2fe52537c09c97828992d53402fbcf3c7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:1d:62:e7:9d:eb:f4:19:d8:5f:d1:0e:a8:ee:
2b:e2:34:18:b0:e9:e7:46:d9:6f:4e:1c:97:f8:61:
e7:7f:ee:4e:e7:b3:62:61:c9:b5:8c:5a:80:fc:50:
ac:29:63:fb:d9:15:27:31:b6:74:da:fe:64:b7:e7:
61:29:87:c6:32:99:ec:37:93:fb:08:1f:a7:91:37:
7c:d2:fb:8a:2d:69:b7:34:86:bc:3f:56:8a:d8:fe:
4b:21:a5:1f:8b:38:08:2b:36:5c:f1:6e:ef:8c:3a:
9a:06:6c:d7:1d:ed:c3:95:cc:8f:12:22:e6:05:16:
dd:8c:b5:fb:7f:71:d0:d1:0c:b5:ac:1e:a4:75:09:
88:65:45:c3:78:f0:5a:fd:51:49:0e:51:a4:63:77:
25:3b:c8:15:e2:41:e8:7f:d6:25:98:49:13:34:b8:
38:56:41:6b:6e:ea:72:c4:8c:99:c2:34:19:d1:95:
8d:07:d2:35:f2:f5:2c:84:f7:e1:38:a5:f2:f2:fd:
2e:39:67:72:28:8d:15:0e:2d:6c:2f:8a:0e:e1:17:
12:fa:60:f1:e4:6a:b0:29:48:13:90:93:3e:ea:7f:
67:ac:5d:9f:a4:a1:b4:70:d6:08:03:7d:45:a9:2a:
c4:16:bb:1a:35:ba:42:ab:2a:a6:ad:c9:78:cf:2e:
29:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:64:7D:2F:E5:25:37:C0:9C:97:82:89:92:D5:34:02:FB:CF:3C:7C
X509v3 Authority Key Identifier:
keyid:BF:10:7E:07:95:2C:06:93:58:CD:3F:82:AA:EC:EB:4C:69:48:3C:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vxB-B5UsBpNYzT-CquzrTGlIPKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/vWR9L-UlN8Ccl4KJktU0AvvPPHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/vxB-B5UsBpNYzT-CquzrTGlIPKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.70.0/24
IPv6:
2a0f:f200::/29
Signature Algorithm: sha256WithRSAEncryption
85:97:c6:9c:93:fa:f5:85:7b:02:6b:08:5a:e2:30:a3:ac:2d:
ac:75:5b:b6:d8:ee:36:36:24:f6:9a:27:c1:ee:1e:5b:58:ae:
26:7b:69:28:e5:fd:34:9d:30:f6:07:38:25:3e:ec:c8:22:8a:
39:d1:a7:45:4b:f9:16:d9:b5:69:bf:3f:f2:06:51:ea:2f:1e:
87:92:c3:65:c4:ed:ed:fa:aa:0d:ed:bf:39:1b:b4:42:3d:28:
1f:cc:0b:3e:89:8a:20:50:e3:b4:85:21:48:c7:2d:51:cf:df:
23:cf:5d:6e:34:d3:5a:54:18:69:e6:dc:ef:31:22:80:cf:1e:
1e:3d:26:ac:f2:8d:ec:47:24:9a:a9:59:f7:95:2f:9b:a6:40:
bc:16:ee:36:dd:b1:c7:fa:39:20:1a:9b:05:d8:ab:28:8f:37:
23:3d:a7:cb:35:f1:24:6a:a7:9f:af:71:74:32:ad:ee:f8:7e:
e3:a5:a6:c8:b4:eb:c7:ee:04:49:3b:e5:05:fd:8f:0c:cf:5d:
9b:d9:73:3a:21:cc:88:3d:4b:d3:53:84:12:91:24:a1:90:d1:
66:57:80:da:11:d2:6f:7a:dd:17:4e:37:b5:5f:2e:4b:20:38:
cd:ff:93:f2:65:33:8a:9e:da:8b:4c:54:7c:c6:00:16:4f:c2:
5b:bd:ca:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:03 2024 by rpki-client on console-fra.rpki-client.org