Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/46d891-249b-4a4c-a35d-7fe9ed7d647d/1/VJ_BijCQ5-y-Xsg7vASezDYaFeI.roa
File: VJ_BijCQ5-y-Xsg7vASezDYaFeI.roa (raw, json)
Hash identifier: w8rdiSI3zZGaptXmgnaZwEaA1i+pBmUpq0OIdeRzfT0=
Subject key identifier: 54:9F:C1:8A:30:90:E7:EC:BE:5E:C8:3B:BC:04:9E:CC:36:1A:15:E2
Certificate issuer: /CN=4050bca29c1813ae3b11f381f0442aa2a8a931bf
Certificate serial: 0184E8D1E3981B79FE0D5ECD672015590146
Authority key identifier: 40:50:BC:A2:9C:18:13:AE:3B:11:F3:81:F0:44:2A:A2:A8:A9:31:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QFC8opwYE647EfOB8EQqoqipMb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/46d891-249b-4a4c-a35d-7fe9ed7d647d/1/VJ_BijCQ5-y-Xsg7vASezDYaFeI.roa
Signing time: Tue 06 Dec 2022 19:03:00 +0000
ROA not before: Tue 06 Dec 2022 19:03:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61136
IP address blocks: 185.253.132.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e8:d1:e3:98:1b:79:fe:0d:5e:cd:67:20:15:59:01:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4050bca29c1813ae3b11f381f0442aa2a8a931bf
Validity
Not Before: Dec 6 19:03:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=549fc18a3090e7ecbe5ec83bbc049ecc361a15e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:26:8c:d9:07:e2:1b:d4:de:5e:ac:2c:a0:4d:
cc:0a:40:4e:d8:3e:29:dc:36:b3:5e:f7:e2:dc:8d:
35:96:9a:16:c2:70:14:3d:47:3b:34:61:50:90:42:
0d:7a:a0:da:1e:18:df:67:90:9d:79:18:ac:8d:54:
82:f0:36:22:e8:0f:86:40:3a:a5:8d:44:22:48:f0:
c4:98:13:0e:6a:63:9b:d9:4d:67:a9:d5:03:8a:d9:
dd:d5:fb:5c:94:85:d1:b2:24:d6:4c:4b:4f:29:e5:
f4:2d:30:2b:d2:70:e2:56:eb:67:39:4c:0c:e7:63:
c4:c5:7f:30:a2:98:45:0f:c9:35:a2:9a:f2:1b:82:
fd:a5:2a:bc:33:c4:be:f4:6f:70:62:a8:c2:8b:06:
dc:9f:f8:bd:a2:25:bb:48:db:74:36:ac:b5:e6:b7:
c6:d2:ae:16:e1:63:1e:18:14:ee:13:fd:2b:2e:f6:
32:ce:25:56:11:d1:b6:4c:90:58:33:1b:14:7c:75:
f6:08:1a:52:f4:ad:cf:de:7f:c8:8a:9f:17:e6:3e:
56:ed:d6:47:85:ca:b6:11:b2:a2:37:9a:cb:af:4d:
6f:1d:ec:1a:ab:5f:66:a1:44:2b:8b:c8:81:94:e7:
8a:b6:be:04:5f:6f:1f:e2:4d:3a:be:05:9e:49:7e:
d7:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:9F:C1:8A:30:90:E7:EC:BE:5E:C8:3B:BC:04:9E:CC:36:1A:15:E2
X509v3 Authority Key Identifier:
keyid:40:50:BC:A2:9C:18:13:AE:3B:11:F3:81:F0:44:2A:A2:A8:A9:31:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QFC8opwYE647EfOB8EQqoqipMb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/46d891-249b-4a4c-a35d-7fe9ed7d647d/1/VJ_BijCQ5-y-Xsg7vASezDYaFeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/46d891-249b-4a4c-a35d-7fe9ed7d647d/1/QFC8opwYE647EfOB8EQqoqipMb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.253.132.0/22
Signature Algorithm: sha256WithRSAEncryption
60:df:30:95:57:73:5a:af:d3:36:b5:15:25:8c:c1:97:ac:7f:
da:cf:18:95:aa:2b:2e:8d:74:24:58:98:b8:c1:a9:a6:ad:65:
d8:26:10:dd:51:d3:bf:28:f9:e3:5c:e7:11:51:2e:5f:2a:2a:
30:d5:ad:38:ef:aa:77:48:a8:cf:59:cd:8b:5a:20:9e:07:d8:
05:f8:77:d9:be:17:65:ce:29:f3:4e:ad:1c:09:db:23:52:d2:
61:ea:4d:69:87:13:6c:f7:35:24:c4:9b:91:e3:3b:f2:af:4b:
56:95:21:c4:1a:5c:60:68:e9:f6:c2:ea:c5:44:b3:35:5f:ab:
c2:3b:92:4e:cf:a9:61:f7:22:9d:9f:2e:a7:e4:cd:54:3e:70:
68:95:89:95:5a:f3:b2:3d:9a:f0:48:83:93:8a:ec:7e:10:ef:
8b:ed:3e:ce:8d:61:b7:53:f8:75:04:1d:56:5c:98:95:3d:bf:
e1:34:c9:12:ee:49:5b:de:40:09:e4:d8:3f:8f:5e:62:58:df:
04:53:d1:86:dd:94:2c:96:26:b1:de:ed:fb:1f:62:dc:2b:f5:
75:8e:46:ca:15:8e:6b:08:a7:c4:fc:b6:96:95:cc:c6:d7:c8:
22:f6:67:fc:ea:7e:9d:58:97:c4:68:f4:98:43:d3:a7:eb:0e:
7b:d1:ca:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:14 2024 by rpki-client on console-fra.rpki-client.org