Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/c38797-d7fa-4a57-9f83-a16a34c46f30/1/VhE1TRPP9lRMryZ5Xqolwvy6YLY.roa
File: VhE1TRPP9lRMryZ5Xqolwvy6YLY.roa (raw, json)
Hash identifier: 9gHE1ukUCOQKvgXKikh0fHeiEPQEiHGBeyfyjGewAV0=
Subject key identifier: 56:11:35:4D:13:CF:F6:54:4C:AF:26:79:5E:AA:25:C2:FC:BA:60:B6
Certificate issuer: /CN=38879a78a58a485ccd8970f0432db8f3d771725b
Certificate serial: 09690CB4
Authority key identifier: 38:87:9A:78:A5:8A:48:5C:CD:89:70:F0:43:2D:B8:F3:D7:71:72:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OIeaeKWKSFzNiXDwQy2489dxcls.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/c38797-d7fa-4a57-9f83-a16a34c46f30/1/VhE1TRPP9lRMryZ5Xqolwvy6YLY.roa
Signing time: Sat 01 Jan 2022 10:54:58 +0000
ROA not before: Sat 01 Jan 2022 10:54:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29422
IP address blocks: 185.196.232.0/22 maxlen: 22
2a0a:73c0::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157879476 (0x9690cb4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38879a78a58a485ccd8970f0432db8f3d771725b
Validity
Not Before: Jan 1 10:54:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5611354d13cff6544caf26795eaa25c2fcba60b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e6:1a:d6:00:f4:74:f6:ce:8a:cd:73:1b:55:
14:e7:b2:d8:d8:19:46:f9:01:b6:7c:43:2a:d3:a1:
35:55:9e:f4:3a:e0:16:ca:24:31:e0:ba:b2:02:fb:
2e:a8:02:7e:18:1b:08:ce:4a:fe:aa:11:c0:8e:e9:
81:0e:e6:93:43:da:3a:b9:2a:38:2c:f9:f4:28:12:
ea:10:3b:eb:ea:2a:fa:af:9f:e1:8e:af:79:87:43:
02:db:08:69:c6:ee:9c:a4:48:04:95:21:3a:80:49:
ad:21:c8:be:3c:49:55:2f:e1:0d:fb:25:e6:66:83:
5a:4f:ea:f2:78:8c:37:10:61:cf:ba:4b:fd:ff:c4:
1c:66:4c:e4:15:72:09:8a:16:89:6f:b1:56:dc:c9:
9a:75:53:b1:4c:0b:77:9c:c7:67:a2:16:bb:2e:6f:
82:03:41:06:18:b5:6a:3f:c7:7a:0d:53:03:18:0b:
82:07:e9:02:b5:f2:57:2c:41:03:7c:85:92:79:da:
ab:dd:b6:3e:b2:6a:3c:d6:88:93:14:5a:2e:f1:c4:
bb:1d:9e:90:31:53:d1:11:1a:09:3b:9e:af:c1:6a:
b6:2a:e0:c9:e8:3b:01:5b:10:e3:31:b9:1a:27:46:
93:4c:03:4e:ea:dd:ac:1a:71:1a:55:f3:e8:d2:76:
ab:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:11:35:4D:13:CF:F6:54:4C:AF:26:79:5E:AA:25:C2:FC:BA:60:B6
X509v3 Authority Key Identifier:
keyid:38:87:9A:78:A5:8A:48:5C:CD:89:70:F0:43:2D:B8:F3:D7:71:72:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OIeaeKWKSFzNiXDwQy2489dxcls.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/c38797-d7fa-4a57-9f83-a16a34c46f30/1/VhE1TRPP9lRMryZ5Xqolwvy6YLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/c38797-d7fa-4a57-9f83-a16a34c46f30/1/OIeaeKWKSFzNiXDwQy2489dxcls.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.232.0/22
IPv6:
2a0a:73c0::/29
Signature Algorithm: sha256WithRSAEncryption
67:a0:fe:f3:81:f5:19:ef:9c:67:82:5f:cf:74:80:37:19:61:
2c:cc:bd:19:ff:b2:95:63:c0:cd:62:2d:85:b1:37:2d:3d:90:
da:05:ab:05:d9:64:b6:a0:09:22:42:95:d1:af:3d:a4:10:42:
3e:81:ed:a9:7a:67:27:c5:e1:30:94:b7:9f:f1:d6:ae:93:4f:
b3:26:d5:b2:96:6f:3b:42:32:79:22:5a:22:37:1c:9d:19:69:
01:d6:b7:fa:53:3c:66:3f:8a:5b:00:e0:c5:3e:ae:0f:41:db:
e8:53:c6:3d:42:53:46:91:7d:0f:58:95:3a:ac:dc:c9:a4:90:
86:df:92:83:49:f3:86:33:dd:1f:7a:32:ae:d1:e1:21:04:2f:
36:c3:3d:39:ae:d8:a3:ca:62:67:1e:e4:36:3d:7c:bc:9f:e2:
b4:5d:3b:32:52:ae:e3:79:5c:a1:e3:a4:61:34:ce:4c:5b:89:
fc:6c:b2:f6:92:dd:31:28:51:ba:03:82:4f:36:77:ad:e9:c9:
3a:cc:cd:0b:4f:f7:6d:ca:10:ac:f8:56:ec:4c:64:31:b5:b1:
20:72:91:34:98:2a:d9:30:9b:96:c5:28:bb:30:21:69:3c:9f:
a0:d6:43:b2:18:35:5c:0a:59:7b:3d:72:a0:2b:d8:19:8d:6e:
af:dd:88:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:14 2024 by rpki-client on console-ams.rpki-client.org