Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/29c524-c98e-4320-8274-521171b7d268/1/vgHBQB8Gn_HgA7H7Tify1X90ms8.roa
File: vgHBQB8Gn_HgA7H7Tify1X90ms8.roa (raw, json)
Hash identifier: Iknucq6GxUpv23sY5bjfy7Hs6wzYFCdyouRy0v4liNs=
Subject key identifier: BE:01:C1:40:1F:06:9F:F1:E0:03:B1:FB:4E:27:F2:D5:7F:74:9A:CF
Certificate issuer: /CN=0c985eb8d94b9fa11422d782f314ff6e2ded07ad
Certificate serial: E9E629
Authority key identifier: 0C:98:5E:B8:D9:4B:9F:A1:14:22:D7:82:F3:14:FF:6E:2D:ED:07:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DJheuNlLn6EUIteC8xT_bi3tB60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/29c524-c98e-4320-8274-521171b7d268/1/vgHBQB8Gn_HgA7H7Tify1X90ms8.roa
Signing time: Sat 01 Jan 2022 04:55:05 +0000
ROA not before: Sat 01 Jan 2022 04:55:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 213.232.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15328809 (0xe9e629)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c985eb8d94b9fa11422d782f314ff6e2ded07ad
Validity
Not Before: Jan 1 04:55:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be01c1401f069ff1e003b1fb4e27f2d57f749acf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:47:77:34:19:24:e7:e9:e1:81:51:e0:e5:ae:
31:35:4e:73:3a:f6:44:7e:2a:17:f2:ce:2e:ab:65:
e7:84:04:ab:9b:09:15:94:f8:70:df:f1:dd:a9:87:
a4:3b:4b:54:72:48:f8:ae:6d:31:3c:b6:dd:c4:e8:
d6:18:ce:4e:c8:47:83:3e:27:f7:b3:f4:36:b1:a8:
a6:0b:05:7e:4a:af:86:4a:e9:f3:bd:b6:15:b1:2e:
73:11:a5:7b:43:eb:d3:f0:2e:3f:13:98:16:bd:58:
d6:e2:d6:bb:a4:b0:ba:61:93:d9:42:9e:d2:f1:71:
63:0a:79:0e:b8:51:d3:2c:b9:b5:d6:88:fc:64:9c:
b6:bf:9e:64:7d:31:ce:28:48:58:b9:89:a0:c9:70:
06:e5:f8:23:94:b9:9e:11:cb:91:da:15:c0:83:aa:
c8:74:a5:3e:22:71:93:be:f0:dc:5c:58:25:8c:0c:
2b:fc:0b:88:e7:15:37:8d:66:02:53:ff:9a:16:1c:
cc:95:dd:fa:84:cb:14:ef:98:45:3f:6d:03:d9:c5:
5e:15:c8:0e:80:80:f3:85:bc:ee:29:64:21:04:db:
b1:d2:a0:95:1c:73:08:99:8e:83:50:96:b7:be:41:
85:03:80:62:00:7b:5b:0b:48:37:9c:a9:a3:f5:2b:
b9:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:01:C1:40:1F:06:9F:F1:E0:03:B1:FB:4E:27:F2:D5:7F:74:9A:CF
X509v3 Authority Key Identifier:
keyid:0C:98:5E:B8:D9:4B:9F:A1:14:22:D7:82:F3:14:FF:6E:2D:ED:07:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DJheuNlLn6EUIteC8xT_bi3tB60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/29c524-c98e-4320-8274-521171b7d268/1/vgHBQB8Gn_HgA7H7Tify1X90ms8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/29c524-c98e-4320-8274-521171b7d268/1/DJheuNlLn6EUIteC8xT_bi3tB60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.232.239.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:3a:f2:8e:0c:58:72:ba:60:73:e1:e4:46:e2:99:3f:1c:d1:
67:63:df:96:8b:e1:f0:64:16:50:1c:cd:14:3e:35:e9:86:b5:
44:35:f8:07:cb:0f:f5:ed:2b:be:ff:61:e9:9d:17:56:b3:71:
ca:37:6b:4b:9b:ee:98:30:25:c6:e8:0a:f5:e2:8d:d3:f1:66:
cb:cd:6a:de:d6:da:0c:25:ab:50:5d:db:c5:6b:02:3d:07:d9:
a8:8e:5c:fa:5d:b4:d0:5e:04:52:b9:a5:85:f4:36:1f:33:9f:
a1:e6:70:d7:bd:3b:6d:e3:5f:8b:16:59:d1:b0:1d:38:22:68:
72:a4:96:9f:01:1b:05:8d:5b:b2:1d:bb:aa:b4:68:56:6e:e2:
a4:bc:ed:3b:36:0c:4d:9c:db:f8:80:35:05:28:76:62:00:de:
96:02:33:5a:ba:87:51:95:fb:38:3b:a5:ff:13:bd:3b:06:5a:
3f:0a:a1:70:96:2c:39:00:4a:a7:7b:40:02:5c:bd:b3:b1:f3:
1a:ae:c7:d3:86:1e:87:ae:af:78:dd:37:f4:f9:a2:17:fb:7d:
00:47:e4:6b:35:b3:c0:f4:aa:c7:c3:15:78:74:f0:12:dc:05:
e0:bd:94:36:80:ce:f9:15:d7:9d:6c:20:04:84:16:13:bf:04:
47:22:bb:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:31 2023 by rpki-client on console-fra.rpki-client.org