Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/vnkf9Teowqwz6nulr4ROc4so0m8.roa
File: vnkf9Teowqwz6nulr4ROc4so0m8.roa (raw, json)
Hash identifier: PUwGHoQVqclQSa/0kSfH7Ed5xXzGbtYGBp9Ngpyt/AQ=
Subject key identifier: BE:79:1F:F5:37:A8:C2:AC:33:EA:7B:A5:AF:84:4E:73:8B:28:D2:6F
Certificate issuer: /CN=c53e2aba0515ec90d10911060fcf29236d76dddf
Certificate serial: 03F11D
Authority key identifier: C5:3E:2A:BA:05:15:EC:90:D1:09:11:06:0F:CF:29:23:6D:76:DD:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xT4qugUV7JDRCREGD88pI2123d8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/vnkf9Teowqwz6nulr4ROc4so0m8.roa
Signing time: Tue 15 Feb 2022 14:14:46 +0000
ROA not before: Tue 15 Feb 2022 14:14:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205316
IP address blocks: 185.222.108.0/22 maxlen: 22
2a0c:2800::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 258333 (0x3f11d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c53e2aba0515ec90d10911060fcf29236d76dddf
Validity
Not Before: Feb 15 14:14:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be791ff537a8c2ac33ea7ba5af844e738b28d26f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:08:ac:67:e5:db:2e:66:b7:5c:e2:45:59:99:
31:e5:e6:e1:81:22:f8:8c:5c:1f:ec:48:52:ee:e8:
59:9f:ab:ed:77:84:62:0b:71:50:fb:22:b1:87:13:
27:2c:b8:24:f8:d9:ad:03:a1:01:59:37:09:01:72:
48:a3:c1:e0:45:c5:75:1a:ff:0f:de:a8:ca:04:c9:
4f:09:f2:a5:0e:52:36:fb:c7:96:c3:38:a1:dd:76:
a7:b0:27:e3:4b:1d:7e:f5:1d:7d:e0:24:47:5d:8e:
03:de:61:4b:5a:04:91:16:fc:cf:8f:fc:fe:0a:b4:
33:d2:5d:93:aa:08:46:68:6d:4b:11:7d:d7:78:70:
23:b0:e3:17:d0:8b:f6:3b:c2:8d:48:83:18:b8:f4:
8b:ff:e3:91:57:78:2b:d3:dc:d3:64:4f:09:53:3d:
ca:7a:44:19:8b:06:61:e3:a1:b5:8c:47:49:35:a8:
fa:a3:aa:be:83:e8:fa:61:c2:ab:89:e5:64:b8:d3:
d2:2c:7d:09:79:cb:bc:0b:d7:a5:98:f5:44:1f:4d:
52:82:21:e6:84:60:71:53:be:36:3a:b7:a6:77:f3:
50:c1:1a:af:40:17:8d:c0:48:f3:a8:f3:ea:39:94:
36:b8:4f:0e:82:be:9c:0a:fb:03:e5:75:fc:e3:90:
e1:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:79:1F:F5:37:A8:C2:AC:33:EA:7B:A5:AF:84:4E:73:8B:28:D2:6F
X509v3 Authority Key Identifier:
keyid:C5:3E:2A:BA:05:15:EC:90:D1:09:11:06:0F:CF:29:23:6D:76:DD:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xT4qugUV7JDRCREGD88pI2123d8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/vnkf9Teowqwz6nulr4ROc4so0m8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/xT4qugUV7JDRCREGD88pI2123d8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.108.0/22
IPv6:
2a0c:2800::/32
Signature Algorithm: sha256WithRSAEncryption
59:35:23:5b:3a:d7:98:a3:a5:b5:68:ac:12:49:51:31:57:71:
06:8e:f8:46:b4:9c:37:36:04:3f:d3:71:e3:aa:59:88:d3:7c:
96:59:d6:d3:7b:b4:51:df:f8:fe:14:05:7b:79:fe:7a:13:ac:
02:4e:4f:ca:05:5f:0b:5e:ae:e6:a8:23:a1:ba:6a:8b:a7:14:
ea:ab:68:42:83:d3:23:f0:ab:c2:91:f3:89:34:af:ea:32:e3:
79:44:a8:39:15:28:6c:a5:d0:32:78:79:76:88:20:9d:7a:4f:
fe:9f:3b:e1:44:16:02:f4:1d:df:9c:f4:cf:65:49:a9:d3:88:
65:d7:73:a4:2f:24:73:4b:6b:f7:3b:16:9b:b5:92:0e:00:bb:
54:a3:bb:cb:24:b8:b8:a0:bc:25:5b:3d:88:56:69:bb:95:e3:
15:64:14:05:0a:5b:44:b7:9a:de:4f:e8:f6:2e:da:23:77:dd:
90:34:55:2c:28:a1:48:9a:2e:8d:32:d3:ae:b4:80:7c:84:d3:
7f:40:3f:80:8b:c7:0c:86:35:dc:3a:d3:60:7c:1d:8e:bb:dd:
e1:9e:f5:96:60:b3:91:ba:e0:e3:b3:c2:8a:4e:5b:83:d3:39:
df:f9:e2:23:eb:a3:81:cf:f4:d7:c9:dc:9c:71:ed:d4:fb:9c:
70:3c:99:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:37 2024 by rpki-client on console-ams.rpki-client.org