Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/VGcYLxVQhLT11onhSGZNgDwN5rk.roa
File: VGcYLxVQhLT11onhSGZNgDwN5rk.roa (raw, json)
Hash identifier: qkaA9bEYviQsKvK1Glq+9pz1R8C5j5aNQK4r6vgM0YU=
Subject key identifier: 54:67:18:2F:15:50:84:B4:F5:D6:89:E1:48:66:4D:80:3C:0D:E6:B9
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 42B2AE7F
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/VGcYLxVQhLT11onhSGZNgDwN5rk.roa
Signing time: Wed 27 Apr 2022 02:59:22 +0000
ROA not before: Wed 27 Apr 2022 02:59:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47388
IP address blocks: 188.215.93.0/24 maxlen: 24
94.176.42.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1119006335 (0x42b2ae7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Apr 27 02:59:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5467182f155084b4f5d689e148664d803c0de6b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e0:1e:7d:f0:4d:10:2c:b5:42:e6:10:57:3f:
46:2e:48:0b:69:57:75:3e:83:22:99:10:e6:12:d9:
8e:15:61:90:df:49:96:86:71:3c:b8:c1:01:b0:fe:
3e:79:ad:0a:31:b9:0b:df:5f:b2:9c:7d:a4:f0:98:
69:a7:45:e3:dd:e5:80:28:6a:62:63:07:d5:af:06:
10:63:5f:37:d4:b3:82:d7:f0:d1:34:23:d5:0e:fd:
9a:9f:58:be:32:4b:53:71:a3:fe:af:fd:42:fe:63:
d6:25:7a:eb:22:7a:8d:31:86:95:38:0b:8b:22:72:
25:7a:b7:2f:ba:87:48:46:e8:5c:56:7f:9b:9b:c3:
9a:3f:0f:00:cc:11:29:2d:be:1b:e2:cc:07:58:f8:
03:d4:a6:48:c1:fa:14:dd:68:90:f0:75:a6:fe:ac:
e4:9e:0c:c0:9b:0e:a9:b9:b2:ec:6d:02:fa:59:3a:
94:5d:fd:40:27:7f:c2:2e:8c:b8:48:93:d0:b0:8d:
7a:31:a9:18:66:55:7c:92:c2:e1:b6:d0:1f:d5:ab:
f7:f7:0d:8c:d0:9f:71:1f:09:64:e0:c7:b2:5b:b9:
86:df:cf:f6:5a:ba:a0:40:7a:84:bd:8f:ea:aa:0a:
87:7e:51:31:c3:c7:90:d3:fc:6d:ba:90:c2:b0:6f:
cd:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:67:18:2F:15:50:84:B4:F5:D6:89:E1:48:66:4D:80:3C:0D:E6:B9
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/VGcYLxVQhLT11onhSGZNgDwN5rk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.176.42.0/23
188.215.93.0/24
Signature Algorithm: sha256WithRSAEncryption
71:74:50:0b:b3:69:d7:67:ba:0a:48:cb:de:a0:27:10:76:20:
ca:6f:31:41:f1:b8:57:b0:49:8d:64:4a:81:56:fa:72:8e:b5:
8b:89:b7:5d:ea:7f:52:9a:ce:00:87:64:05:a7:ea:4b:b9:ca:
89:bd:64:42:bb:f0:7a:87:15:2f:b5:6a:36:1d:0f:9e:fb:08:
a9:0c:2e:8d:1c:af:f2:ce:d3:1e:8c:b4:ba:37:4f:8b:6f:3a:
9b:0a:af:04:6a:57:86:6e:fe:74:29:3d:58:06:0b:e7:db:01:
07:23:10:1c:6a:19:59:7c:1f:a7:c6:4b:7a:a0:90:fb:f7:28:
e2:34:ae:f1:33:a6:1e:9b:9c:7d:e6:a9:6b:0b:c7:d8:40:5d:
68:52:4a:75:20:28:d0:ed:10:80:d0:3d:ad:bd:6b:53:e6:9b:
c0:f1:bc:61:9d:69:08:41:c4:74:d5:fa:82:6f:bd:f0:df:22:
9c:37:55:27:56:65:34:14:10:de:c0:44:e9:4b:18:a2:49:a0:
39:79:e2:e8:6b:55:99:56:16:93:40:ef:39:3e:d7:32:1f:7d:
81:b3:12:3b:b2:92:cd:7c:db:09:f2:a6:29:ea:eb:bc:17:38:
b8:53:2b:62:7c:fa:2c:aa:df:20:d7:a5:a0:31:90:39:81:da:
63:14:b7:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:49 2023 by rpki-client on console-ams.rpki-client.org