Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/5073f7-8d19-483b-af32-32361b3d782d/1/vRIMS1v0epnLU9D3SXpGZozCZNA.roa
File: vRIMS1v0epnLU9D3SXpGZozCZNA.roa (raw, json)
Hash identifier: AR6bKSSgC7y81winx2T3gQP7Abm6qLuEEg+Pz7WtHxs=
Subject key identifier: BD:12:0C:4B:5B:F4:7A:99:CB:53:D0:F7:49:7A:46:66:8C:C2:64:D0
Certificate issuer: /CN=bb7436808a737c5edc65256c74578be35ec41009
Certificate serial: 014B2E40
Authority key identifier: BB:74:36:80:8A:73:7C:5E:DC:65:25:6C:74:57:8B:E3:5E:C4:10:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u3Q2gIpzfF7cZSVsdFeL417EEAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/5073f7-8d19-483b-af32-32361b3d782d/1/vRIMS1v0epnLU9D3SXpGZozCZNA.roa
Signing time: Sat 01 Jan 2022 05:58:57 +0000
ROA not before: Sat 01 Jan 2022 05:58:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 194.62.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21704256 (0x14b2e40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb7436808a737c5edc65256c74578be35ec41009
Validity
Not Before: Jan 1 05:58:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd120c4b5bf47a99cb53d0f7497a46668cc264d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:70:fd:b0:2f:0c:79:78:90:2a:90:ad:62:44:
64:60:d9:7c:8f:37:f7:0f:b8:15:d6:a3:c3:f3:4b:
d2:67:3d:19:fb:35:41:2c:a5:7b:82:e2:3a:75:fa:
4f:e7:29:e3:91:f8:e9:a0:da:4c:d9:27:f6:74:5e:
66:91:88:5a:c4:d3:10:9e:01:96:71:66:6e:1b:fd:
dd:a6:d4:f4:a7:5f:42:77:6b:e3:75:24:8d:b9:b5:
74:05:89:9f:16:49:4d:85:6d:69:b7:fd:88:56:da:
a7:9f:e7:e0:29:a8:62:d9:e4:b6:68:77:54:97:57:
6a:78:e7:84:97:bf:2e:8d:ae:a7:96:f8:99:18:a0:
95:f9:97:9c:5e:f2:05:76:f0:3a:89:c2:96:a6:5c:
d9:07:f7:c3:0a:97:0b:e8:25:d9:9d:ac:51:77:13:
70:83:78:ff:b8:64:78:cb:bd:f7:66:ec:36:20:8a:
64:7f:64:f6:2e:1a:2f:75:d6:b1:98:12:56:e6:7c:
10:ad:e6:d8:77:76:d5:37:ca:99:82:38:a1:a2:a6:
cb:fe:d9:ea:3a:bd:a1:83:18:1f:e6:c8:aa:8a:f3:
98:d0:a8:2b:32:70:50:3c:27:9a:62:6a:d9:bb:84:
39:10:5d:2d:9c:18:7c:3f:13:df:87:2c:3a:32:a2:
76:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:12:0C:4B:5B:F4:7A:99:CB:53:D0:F7:49:7A:46:66:8C:C2:64:D0
X509v3 Authority Key Identifier:
keyid:BB:74:36:80:8A:73:7C:5E:DC:65:25:6C:74:57:8B:E3:5E:C4:10:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u3Q2gIpzfF7cZSVsdFeL417EEAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5073f7-8d19-483b-af32-32361b3d782d/1/vRIMS1v0epnLU9D3SXpGZozCZNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5073f7-8d19-483b-af32-32361b3d782d/1/u3Q2gIpzfF7cZSVsdFeL417EEAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.62.16.0/24
Signature Algorithm: sha256WithRSAEncryption
60:85:48:e4:47:37:c2:d0:16:57:87:d2:d2:64:33:b5:3e:c4:
6e:5a:07:04:f1:3d:39:01:b2:61:74:3f:52:0e:7b:41:31:aa:
c8:af:a7:2a:70:cc:8b:d9:cb:36:89:08:c3:4f:71:11:d5:14:
87:ef:72:3c:f8:b5:c0:f0:48:f8:f2:f6:89:b1:11:cc:99:0d:
ab:25:2f:cc:a3:ec:d1:f2:89:6c:37:96:65:0e:8d:ff:0e:ff:
40:71:a9:17:3e:c5:c9:2c:68:6a:2d:db:0e:02:13:c5:56:82:
1a:7b:39:d4:a4:78:35:b2:58:2c:1f:5d:c2:e9:34:30:8e:57:
ea:53:9c:cc:f3:eb:5d:82:f7:24:c1:3f:52:c0:82:70:38:97:
e3:4d:bd:cd:86:dc:73:8e:6c:15:fd:76:c4:71:c3:62:10:04:
a3:04:ac:eb:2b:0b:82:2f:c2:a3:ab:00:d7:1a:b7:f9:47:b7:
d7:31:ee:f6:65:26:2b:8c:57:ac:6c:7a:3f:03:60:36:b4:34:
19:1d:78:18:11:87:1b:5e:32:cd:d8:a4:27:bc:93:6e:3d:e7:
45:28:26:7b:32:59:3c:b8:b6:4a:79:06:96:d9:38:77:68:1d:
73:06:be:f4:b8:cf:7c:bc:16:39:c6:06:37:61:41:92:15:d3:
0c:34:6d:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:51 2023 by rpki-client on console-ams.rpki-client.org