Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/VHVElO76QIr-hhBqKZhVEE_WNhg.roa
File: VHVElO76QIr-hhBqKZhVEE_WNhg.roa (raw, json)
Hash identifier: Hqu7D8MbRt8f5n1LEyevy7EzdxAsfCBPSebigXXYLUI=
Subject key identifier: 54:75:44:94:EE:FA:40:8A:FE:86:10:6A:29:98:55:10:4F:D6:36:18
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 133AB2C1
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/VHVElO76QIr-hhBqKZhVEE_WNhg.roa
Signing time: Sat 01 Jan 2022 04:03:06 +0000
ROA not before: Sat 01 Jan 2022 04:03:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201702
IP address blocks: 185.36.192.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 322613953 (0x133ab2c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jan 1 04:03:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=54754494eefa408afe86106a299855104fd63618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:af:c1:26:31:6d:4a:10:a3:39:82:a0:3c:fe:
4c:f2:8c:cb:a0:8c:79:a7:fa:47:ee:a7:8f:18:4b:
51:27:fe:28:c2:dc:33:69:4c:23:c2:20:1e:cd:34:
fc:83:12:03:f5:04:0b:32:47:73:d2:53:fc:a5:8e:
a2:f2:a0:38:5f:8e:2b:3c:e4:f5:19:70:dd:9f:b4:
f6:45:d4:f6:a2:b0:63:86:ff:f6:80:47:a7:00:07:
77:79:2b:96:00:35:95:4f:fc:b4:92:48:3b:50:5d:
0b:92:9e:f6:1b:8e:9a:1c:11:57:03:17:f5:c5:f7:
9f:9e:d6:27:58:88:64:78:d8:79:97:b6:b5:0a:88:
57:6c:39:f0:4a:7b:85:86:a2:8a:90:59:e7:48:f3:
a5:e4:8e:36:51:ed:f8:fa:9d:ad:35:7e:f0:7a:3d:
d1:9f:0d:c8:e3:e2:73:98:3c:fd:da:8b:ae:47:8e:
02:b1:fc:09:fd:9b:8e:79:13:b5:6c:fd:91:9e:12:
de:b7:b3:b1:c5:79:00:ad:50:3c:2e:cf:49:2a:f5:
c9:1a:ab:d5:d9:e0:4e:9e:de:5c:6a:07:21:27:6a:
31:5d:5b:42:1f:28:49:53:45:67:83:d1:ee:0d:55:
0d:16:37:7f:a8:0f:4a:f0:fd:f2:34:52:65:30:1c:
25:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:75:44:94:EE:FA:40:8A:FE:86:10:6A:29:98:55:10:4F:D6:36:18
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/VHVElO76QIr-hhBqKZhVEE_WNhg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.192.0/22
Signature Algorithm: sha256WithRSAEncryption
c6:84:90:d4:a5:bd:62:51:95:35:ec:01:8a:39:33:05:21:95:
28:cb:47:87:36:05:a0:50:64:88:cd:98:ab:3b:43:7f:31:64:
ee:da:c4:26:42:9b:7e:a3:8f:bf:95:90:09:36:36:68:b4:fa:
e5:07:d5:ed:84:5d:f7:f2:d9:cc:66:f5:84:5e:2d:80:86:fc:
b0:be:38:f6:81:c8:1a:05:c0:c0:90:ae:84:ee:cd:fa:59:a3:
cd:38:35:38:aa:d5:a8:e1:79:8e:50:5d:4d:45:df:c6:f4:07:
73:f5:74:be:76:25:b6:b3:98:83:6e:ab:a7:9b:bb:bb:dd:27:
ea:5d:a8:27:66:7b:e0:f0:41:53:32:39:d6:88:d3:4b:69:c8:
4b:96:60:d9:98:be:79:97:d5:83:07:d7:3e:11:a8:08:d1:28:
0e:02:ea:e9:a7:01:bb:72:37:0f:7f:69:1c:c5:f2:09:fe:69:
8e:7e:f1:51:7f:18:52:20:15:b8:d9:9b:bc:47:92:89:6a:1b:
d9:33:d5:57:1b:fa:58:5c:7d:03:74:f2:49:ac:0a:56:08:12:
00:8a:d8:9b:1c:db:a9:dd:72:3d:34:1c:3f:88:ce:ff:9a:49:
a9:d3:2f:1a:e4:a9:3d:28:55:a0:d7:bf:2b:e6:43:fb:45:73:
18:62:b5:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:45 2023 by rpki-client on console-fra.rpki-client.org