Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/VSA-Ytd3k-1I-s3MHNJcuNGw0A0.roa
File: VSA-Ytd3k-1I-s3MHNJcuNGw0A0.roa (raw, json)
Hash identifier: lj/LuYEqI6YeFOti4zjAPX6gX4028OR9s9diB9CnVEI=
Subject key identifier: 55:20:3E:62:D7:77:93:ED:48:FA:CD:CC:1C:D2:5C:B8:D1:B0:D0:0D
Certificate issuer: /CN=f4b9ea4d9d83a728dd41029e86af8a130d389ed4
Certificate serial: 0E606FE9
Authority key identifier: F4:B9:EA:4D:9D:83:A7:28:DD:41:02:9E:86:AF:8A:13:0D:38:9E:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LnqTZ2DpyjdQQKehq-KEw04ntQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/VSA-Ytd3k-1I-s3MHNJcuNGw0A0.roa
Signing time: Mon 02 May 2022 11:11:22 +0000
ROA not before: Mon 02 May 2022 11:11:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57844
IP address blocks: 31.133.80.0/22 maxlen: 22
31.133.88.0/22 maxlen: 22
176.103.224.0/22 maxlen: 22
176.103.232.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 241201129 (0xe606fe9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4b9ea4d9d83a728dd41029e86af8a130d389ed4
Validity
Not Before: May 2 11:11:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55203e62d77793ed48facdcc1cd25cb8d1b0d00d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:39:8d:4b:3f:1a:2f:e0:27:82:02:c6:73:24:
f1:2a:e7:90:6a:06:98:53:b4:e8:07:36:67:2c:02:
a8:40:ab:75:09:02:2f:ba:39:a1:34:e6:ec:0f:5d:
4c:af:43:5f:7b:b5:fb:cc:bf:60:d5:42:a2:6c:bf:
95:76:16:76:57:bc:b2:59:2e:6e:ee:fe:12:19:8d:
70:06:5a:8d:01:3e:94:5d:de:03:0c:19:5c:c3:b2:
33:7a:a8:36:d2:cc:b3:72:07:0d:db:ff:11:7e:ac:
f3:e3:b9:88:57:bb:1f:9d:0e:00:76:a6:3e:92:f7:
14:39:89:fb:89:67:a7:c1:9b:66:93:bd:04:9c:1b:
7e:af:e2:8e:c9:fa:98:45:65:57:82:7f:c0:0a:7a:
73:45:e8:ea:c8:9e:0a:0d:ce:2e:8e:21:3a:c5:1a:
9a:b0:1b:b5:0f:b0:6b:45:82:82:a5:68:6b:f1:27:
97:64:ce:fe:cb:77:94:62:f1:cf:6f:70:87:57:ab:
e3:06:6f:13:30:46:64:34:03:c7:b0:fd:10:79:39:
c4:2d:80:b1:2d:d0:1d:f2:bb:cc:40:dd:f2:b2:aa:
8b:16:74:ed:30:cb:b2:98:9b:f3:7b:74:13:4b:d7:
99:de:49:4b:38:8f:e5:23:ad:e0:d8:51:d0:e5:c4:
50:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:20:3E:62:D7:77:93:ED:48:FA:CD:CC:1C:D2:5C:B8:D1:B0:D0:0D
X509v3 Authority Key Identifier:
keyid:F4:B9:EA:4D:9D:83:A7:28:DD:41:02:9E:86:AF:8A:13:0D:38:9E:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LnqTZ2DpyjdQQKehq-KEw04ntQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/VSA-Ytd3k-1I-s3MHNJcuNGw0A0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/9LnqTZ2DpyjdQQKehq-KEw04ntQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.133.80.0/22
31.133.88.0/22
176.103.224.0/22
176.103.232.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:32:61:93:51:35:41:af:1c:73:d7:b5:1d:16:45:c5:3d:7a:
3c:8f:6d:62:ef:33:57:6c:eb:ab:12:13:f2:dd:58:41:08:6f:
6b:4b:db:21:d4:e9:19:77:78:71:43:74:2f:d0:80:36:7d:a8:
5f:0b:3e:99:c1:bf:3c:8b:29:2a:45:63:39:db:07:b3:de:a6:
ba:8e:c6:00:42:c6:9d:1d:42:20:2a:27:da:d5:d0:af:6a:c3:
97:af:8a:2f:c8:e4:df:e1:4b:6c:5b:9b:6d:b6:21:22:07:19:
e0:b4:85:08:0b:ee:4d:73:6f:22:a0:29:1b:1e:8e:af:9f:02:
59:05:f1:56:a6:1c:c4:cb:b8:7c:3e:9b:3c:5d:92:0c:cb:1f:
76:66:ce:66:9f:af:92:ef:86:80:93:5d:7c:23:66:f2:6b:ab:
79:b3:5f:1a:ea:d6:8d:75:99:09:f5:6a:94:d4:c3:5e:e3:80:
bd:9d:4f:9c:ed:52:11:08:60:0a:df:1d:fa:68:b6:38:4e:8f:
8b:42:c5:24:ac:63:c8:2d:fb:23:aa:7a:51:1e:cd:8e:d8:bd:
c2:e6:ac:a2:47:91:c1:bb:97:f2:7c:c2:31:53:66:b7:64:90:
2b:91:62:60:2d:45:57:0d:ec:c7:52:c0:e0:31:87:15:32:db:
82:18:91:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:45 2023 by rpki-client on console-ams.rpki-client.org