Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/VEqjIFxOS6mPT09uKZPjZS80W5I.roa
File: VEqjIFxOS6mPT09uKZPjZS80W5I.roa (raw, json)
Hash identifier: LWP812K58AW0YcLZGy1eWQFWwN4W2ZBlfhen9gJVq7U=
Subject key identifier: 54:4A:A3:20:5C:4E:4B:A9:8F:4F:4F:6E:29:93:E3:65:2F:34:5B:92
Certificate issuer: /CN=81fa48f40bc84540c46bd23be9b90897aa184f4d
Certificate serial: 052C0BB6
Authority key identifier: 81:FA:48:F4:0B:C8:45:40:C4:6B:D2:3B:E9:B9:08:97:AA:18:4F:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gfpI9AvIRUDEa9I76bkIl6oYT00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/VEqjIFxOS6mPT09uKZPjZS80W5I.roa
Signing time: Sat 01 Jan 2022 12:57:12 +0000
ROA not before: Sat 01 Jan 2022 12:57:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50115
IP address blocks: 195.64.232.0/22 maxlen: 22
195.64.240.0/22 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86772662 (0x52c0bb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81fa48f40bc84540c46bd23be9b90897aa184f4d
Validity
Not Before: Jan 1 12:57:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=544aa3205c4e4ba98f4f4f6e2993e3652f345b92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d9:ab:be:10:da:15:14:81:09:8a:46:cb:1f:
6a:45:42:f5:51:5c:c6:92:59:56:91:1b:57:4a:fa:
5b:51:44:19:eb:1c:df:8e:f3:29:28:9c:ea:13:50:
2d:45:9f:9f:7e:84:f3:9e:3f:45:12:eb:d8:fd:c8:
b8:10:42:46:6e:d5:a7:9d:d2:5f:23:10:78:c6:d2:
b2:be:2a:cc:b8:b3:fd:c0:13:ef:a3:ba:84:f2:90:
7c:d1:41:76:89:ef:e4:9d:7a:e2:1a:c2:7f:5b:1f:
22:c5:31:03:1c:5f:e4:39:e6:bb:09:45:58:cc:21:
6a:90:0d:71:60:ac:98:88:8f:83:42:b4:64:87:7e:
1a:3c:cb:f2:8e:1c:89:0c:0b:1b:c5:52:50:a8:eb:
4f:0e:ea:97:65:aa:b6:5b:28:cb:af:df:f5:e7:a4:
a1:0c:c5:7f:4f:2c:2a:23:c5:95:d5:d9:18:7e:6c:
66:bc:55:e2:f9:01:36:e9:68:08:71:01:05:5d:6b:
77:76:f0:0d:18:39:76:24:0d:4d:54:25:47:46:43:
bb:63:1c:ef:c4:15:7b:d5:05:4a:67:c6:cd:d4:33:
28:54:32:df:49:db:e3:76:7c:0c:10:f0:13:e4:db:
00:17:9d:4e:26:b6:9b:4d:f9:a8:13:26:c3:49:ea:
8e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:4A:A3:20:5C:4E:4B:A9:8F:4F:4F:6E:29:93:E3:65:2F:34:5B:92
X509v3 Authority Key Identifier:
keyid:81:FA:48:F4:0B:C8:45:40:C4:6B:D2:3B:E9:B9:08:97:AA:18:4F:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gfpI9AvIRUDEa9I76bkIl6oYT00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/VEqjIFxOS6mPT09uKZPjZS80W5I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/gfpI9AvIRUDEa9I76bkIl6oYT00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.232.0/22
195.64.240.0/22
Signature Algorithm: sha256WithRSAEncryption
94:13:ed:5c:c6:a7:7b:8a:6a:32:2a:f2:f1:ea:68:89:3a:b1:
69:1c:77:8c:a6:38:28:60:09:c6:a8:43:6a:6b:79:07:b3:ce:
e8:22:18:65:09:fd:a3:19:18:1d:62:84:22:ca:24:38:1f:49:
91:6b:d3:13:13:25:82:06:23:c3:13:62:db:4c:94:c3:a6:d4:
3e:73:e4:e6:96:dc:74:33:c5:c6:ce:3f:11:27:e2:b0:95:e2:
5d:de:b8:d3:cc:d4:7a:61:6a:87:f3:77:6f:8a:f9:cc:09:4b:
e8:0a:7e:3d:94:f7:42:12:82:37:b8:90:b3:b2:37:eb:46:b8:
bb:af:12:16:a6:25:8c:c0:9b:9f:6b:cb:38:e5:c6:3e:8e:a4:
8e:f5:75:cd:5e:a7:c4:a6:1b:ae:75:b3:3c:a4:0b:1a:9c:44:
14:4f:23:9d:05:8d:7b:32:6c:29:14:ab:8c:54:3d:06:51:71:
0c:8c:4a:58:dc:b7:11:40:c4:f5:c5:d2:2e:d6:c2:24:21:41:
c9:19:ce:76:af:28:e2:5d:46:58:11:23:05:53:1b:df:f9:d8:
3a:aa:7d:27:8d:90:1f:31:98:40:f6:c6:5b:03:45:2e:ef:a7:
4b:8e:f9:c3:ea:59:b1:40:a9:47:f4:f1:c6:fa:9d:20:cd:79:
54:a9:5d:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:33 2023 by rpki-client on console-ams.rpki-client.org