Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/VtYVrUgxB8lWSQzcrNCa1MrMyqI.roa
File: VtYVrUgxB8lWSQzcrNCa1MrMyqI.roa (raw, json)
Hash identifier: op3kTYqtVm9NpI1oM1Cu640Cm/X8Phc6VTAne+7E1kk=
Subject key identifier: 56:D6:15:AD:48:31:07:C9:56:49:0C:DC:AC:D0:9A:D4:CA:CC:CA:A2
Certificate issuer: /CN=27a7d1f0d73fe481c2188d28def0e858e715697e
Certificate serial: 04C7ED65
Authority key identifier: 27:A7:D1:F0:D7:3F:E4:81:C2:18:8D:28:DE:F0:E8:58:E7:15:69:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/VtYVrUgxB8lWSQzcrNCa1MrMyqI.roa
Signing time: Wed 18 May 2022 18:32:16 +0000
ROA not before: Wed 18 May 2022 18:32:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12679
IP address blocks: 195.34.94.0/23 maxlen: 23
91.204.76.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80211301 (0x4c7ed65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a7d1f0d73fe481c2188d28def0e858e715697e
Validity
Not Before: May 18 18:32:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56d615ad483107c956490cdcacd09ad4cacccaa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:05:11:dd:93:d0:e8:d7:52:e2:97:73:bd:42:
a2:47:29:d5:c4:a7:dc:77:4d:cc:b0:1a:43:86:77:
b7:45:82:87:6d:ae:04:bd:55:d6:13:fa:b7:60:23:
d6:48:c0:e3:3d:2b:e4:dc:1a:52:7a:b6:c7:00:c8:
2b:d4:23:fd:d6:bb:9e:a3:8e:7c:bd:90:1f:4c:01:
ce:48:f7:21:4e:10:ec:1e:1f:0b:77:84:aa:ec:f8:
4b:d3:6c:8d:15:bd:3e:61:51:9f:fe:62:ad:a3:e8:
d5:15:5e:8c:dc:da:1a:5e:e5:f1:38:8f:c0:cd:90:
7a:37:90:42:3a:1a:10:24:c8:97:45:95:26:2e:1a:
ef:b2:42:44:1b:00:82:a7:0e:32:fa:36:6f:9c:94:
bf:96:23:32:ab:23:73:0d:3d:ff:eb:7e:ad:30:6f:
cb:d4:3c:92:f5:a3:78:d0:7e:88:ce:34:8d:12:91:
5e:48:b1:aa:b9:4d:3e:6f:7e:4a:af:bc:36:df:f8:
54:ad:cf:5d:4a:78:ad:4c:f8:90:2c:ff:10:bd:b9:
5b:0e:28:73:a5:16:6b:22:a8:fd:5f:47:72:93:65:
dd:7b:fe:ce:3f:a7:21:75:80:0e:f0:bf:83:31:a2:
7e:d0:f4:a4:84:b9:40:dd:03:0a:92:14:d1:61:83:
b0:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:D6:15:AD:48:31:07:C9:56:49:0C:DC:AC:D0:9A:D4:CA:CC:CA:A2
X509v3 Authority Key Identifier:
keyid:27:A7:D1:F0:D7:3F:E4:81:C2:18:8D:28:DE:F0:E8:58:E7:15:69:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/VtYVrUgxB8lWSQzcrNCa1MrMyqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.204.76.0/22
195.34.94.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:66:a5:b4:c9:3a:3e:d8:a4:57:f5:47:bb:71:79:6e:7a:16:
39:4a:7f:13:c3:99:cc:cd:21:95:8b:1c:d8:3a:4d:e9:24:a5:
22:79:de:43:ef:37:9f:49:69:0f:24:e1:0b:23:d3:2a:80:e9:
0a:9b:c4:f1:d8:a9:6e:0b:e1:74:f4:31:fc:59:7b:e2:6a:0d:
ee:b2:6d:e0:4c:79:1f:bf:98:b0:7a:1a:7a:c8:dd:bc:de:ee:
14:64:50:cb:f0:8a:80:46:da:13:d1:a0:54:ad:2c:95:a6:1a:
16:ef:a9:64:53:a5:6b:9c:0c:33:e5:b9:36:88:ec:3a:98:f2:
4f:d2:e7:1f:f4:68:2a:55:96:50:f5:da:ee:c0:8f:fd:a3:f9:
e8:df:61:8b:d1:3c:62:cd:fe:bf:db:04:76:16:9e:4d:71:51:
08:11:a1:ea:bf:de:62:10:9d:fd:dd:34:d5:7c:68:7e:9e:ae:
c4:e1:28:85:de:9f:d3:71:74:c9:52:09:df:90:e1:bf:24:ff:
d4:90:91:2e:c6:d0:a2:f0:22:02:ac:01:0d:6a:78:eb:8c:61:
23:7f:c1:94:5b:64:8e:d3:57:7c:f9:bf:fa:af:df:0d:03:4b:
6a:dc:b3:cd:a6:d5:2e:89:2b:cc:41:bd:7f:1c:df:80:1f:63:
5d:fe:e3:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:38 2024 by rpki-client on console-ams.rpki-client.org