Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/VGIvNe8x4yAetspr1WplUt6pdyU.roa
File: VGIvNe8x4yAetspr1WplUt6pdyU.roa (raw, json)
Hash identifier: cADR7fyIkiBKhPj5tiKYlhIyH1pov60P/wPToIL4Q/o=
Subject key identifier: 54:62:2F:35:EF:31:E3:20:1E:B6:CA:6B:D5:6A:65:52:DE:A9:77:25
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 01825D6A98CA169F138A9A2509B053059911
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/VGIvNe8x4yAetspr1WplUt6pdyU.roa
Signing time: Tue 02 Aug 2022 07:17:23 +0000
ROA not before: Tue 02 Aug 2022 07:17:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35758
IP address blocks: 176.57.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:5d:6a:98:ca:16:9f:13:8a:9a:25:09:b0:53:05:99:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Aug 2 07:17:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=54622f35ef31e3201eb6ca6bd56a6552dea97725
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:b9:a2:91:61:13:6b:91:8d:c7:a6:62:c5:af:
d2:77:53:ce:02:40:97:d5:0f:97:5c:e5:22:d0:91:
6d:49:e2:96:fc:ee:0e:ec:7c:9a:e8:59:30:81:b8:
d6:3f:35:16:c7:d8:4f:d7:13:74:b4:d3:85:78:cf:
80:d6:c2:6c:44:22:be:b3:3b:fc:79:54:82:1f:77:
66:64:94:4b:1f:1c:07:d6:c2:4c:3e:18:70:0f:cd:
40:e8:c6:b4:88:ed:12:11:ab:dd:6e:65:f9:ff:d2:
1c:ec:31:65:08:21:48:42:3d:66:53:b6:3c:ba:07:
44:e2:27:9b:06:bf:b4:da:80:29:8a:13:22:10:64:
a1:21:76:cf:b1:7f:83:c0:df:16:ee:27:60:6c:76:
03:4e:63:00:f2:49:36:1c:c3:d1:c2:47:e7:03:be:
17:b8:bb:4e:ca:c7:6b:77:f3:6c:83:71:7a:89:ca:
41:45:71:68:c1:09:95:9e:ef:48:c3:e4:6f:da:62:
93:1f:18:29:ff:8a:1e:03:bf:db:ad:cd:4f:69:3d:
f5:ed:24:f2:07:f5:8f:3d:8a:42:91:27:94:24:2f:
33:0e:a3:a6:dc:1f:94:f1:ec:79:93:1f:4a:77:2d:
6a:c8:bb:a8:29:da:e3:ca:8f:03:4f:f0:35:40:75:
56:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:62:2F:35:EF:31:E3:20:1E:B6:CA:6B:D5:6A:65:52:DE:A9:77:25
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/VGIvNe8x4yAetspr1WplUt6pdyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.57.49.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:46:0f:37:0a:fc:95:60:77:35:80:0b:e4:44:01:4f:4d:86:
d3:3a:81:d0:30:29:39:fe:78:2e:c6:af:d1:68:93:72:3f:e1:
b1:a5:17:ad:ff:ea:fb:1d:89:a7:48:d4:1c:9a:08:f2:e1:f9:
c0:38:55:02:07:d0:9a:74:e1:68:0a:cf:c9:4a:6f:51:fe:75:
b4:4c:14:dd:f2:d2:9c:c4:7c:7a:37:05:c6:f5:b9:3d:e2:87:
7b:32:ac:17:a2:0b:79:dd:33:1c:98:a4:34:c5:2f:4e:e2:07:
fc:5b:8c:61:36:7f:1b:df:05:ee:6d:66:ef:2d:7a:47:87:38:
7b:c4:64:44:35:df:94:6f:90:6c:fb:66:d2:66:08:ac:a0:c7:
9f:66:99:04:8b:a9:a8:cc:10:81:b1:e7:80:33:f7:b7:e7:59:
c2:f0:b0:89:a5:ea:2a:2f:81:a4:ab:bf:4e:8c:62:8c:83:45:
35:ae:6f:6f:38:d7:07:ac:1a:3c:09:d7:81:67:82:80:5a:60:
f8:cc:3d:38:0c:52:34:3d:1c:73:90:76:f2:69:3c:1a:c7:f9:
ea:9e:12:2c:28:9c:13:29:23:df:fc:dc:3d:f7:77:89:33:8d:
7e:a9:13:d9:fa:ca:80:6a:bc:3f:3f:d6:9a:7b:e4:6c:8f:76:
6c:46:91:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:55 2024 by rpki-client on console-ams.rpki-client.org