Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/VtHUTJKaDhzYFoocCtd9K7myf1I.roa
File: VtHUTJKaDhzYFoocCtd9K7myf1I.roa (raw, json)
Hash identifier: yCdZsTMibDzRp6SdsoT7BOvKHvRgahAv5P3aTaftJRA=
Subject key identifier: 56:D1:D4:4C:92:9A:0E:1C:D8:16:8A:1C:0A:D7:7D:2B:B9:B2:7F:52
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 018316FCB513C4F0B8A4FFAAC610CBC299F9
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/VtHUTJKaDhzYFoocCtd9K7myf1I.roa
Signing time: Wed 07 Sep 2022 08:06:43 +0000
ROA not before: Wed 07 Sep 2022 08:06:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30836
IP address blocks: 195.56.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:16:fc:b5:13:c4:f0:b8:a4:ff:aa:c6:10:cb:c2:99:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Sep 7 08:06:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56d1d44c929a0e1cd8168a1c0ad77d2bb9b27f52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:60:3f:d6:c9:cd:23:3a:3e:57:dd:94:82:bc:
96:5e:af:f1:d9:71:14:59:e2:92:d0:4e:c4:9e:6a:
6f:c3:19:3b:73:c5:cf:f1:d1:aa:57:5a:e1:d1:a4:
d6:05:f2:58:2e:15:02:32:f6:63:0a:ae:89:2f:51:
91:bc:7e:a4:9a:9d:4f:0b:a9:c6:4d:27:5b:b1:ad:
c1:f6:19:ba:b8:ff:ca:ad:27:4d:a3:89:ec:8d:8e:
70:ee:0c:ee:c1:0a:91:d9:a2:9c:5f:17:35:39:47:
f7:51:e6:af:53:2b:b4:45:19:b9:34:c0:d5:9e:ff:
94:52:16:81:87:89:48:d1:81:27:3a:db:24:2f:f0:
74:82:a9:a1:66:dd:e0:81:c0:85:27:5b:79:94:37:
91:06:2d:f8:34:54:22:c2:ea:cc:e7:f8:a9:01:98:
54:95:c0:d0:de:0c:58:11:ee:9d:48:84:70:8d:94:
ea:86:b4:49:14:d4:4f:e7:9d:9d:9a:21:82:a5:d2:
99:d6:6b:d3:3f:8e:de:9f:d2:a8:d3:c4:cc:ae:9f:
3e:b6:2c:26:41:31:40:c5:89:09:2b:4a:da:61:8b:
bd:1e:12:7f:ec:48:17:9f:18:c1:b2:1a:7e:ee:5d:
9d:00:9b:ed:fa:0e:ab:66:d1:15:6f:6a:dd:6d:02:
8b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:D1:D4:4C:92:9A:0E:1C:D8:16:8A:1C:0A:D7:7D:2B:B9:B2:7F:52
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/VtHUTJKaDhzYFoocCtd9K7myf1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.56.101.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:ad:ef:b9:d4:f9:eb:a6:f4:61:19:33:3a:97:6d:47:62:8a:
0f:25:91:ef:03:41:cf:af:95:69:27:7e:b6:14:31:31:52:bf:
12:f1:fb:21:88:da:e3:fe:ce:49:3a:ce:ff:ff:b8:04:46:9c:
0d:9e:20:44:10:3c:0a:0a:b2:79:fb:e5:fa:0f:1c:d2:81:03:
1d:30:b0:fe:a6:52:cd:a0:e4:bc:c2:08:82:3b:f9:97:42:b3:
f3:1f:30:12:66:49:10:99:f5:79:dc:ed:52:a3:41:0f:26:0b:
79:33:03:ce:53:1b:0f:22:3b:93:49:fd:ff:65:6b:fb:67:ad:
af:e7:4f:eb:c3:a4:f2:5e:8f:fb:3d:2f:09:7c:31:24:56:98:
fc:59:de:15:a1:ba:b3:95:bd:eb:a6:73:ae:e4:a1:93:b4:f5:
15:95:7e:35:c6:d7:41:b4:af:7f:ec:8b:c6:56:15:c3:ff:68:
ac:e6:91:77:54:5e:50:f7:d1:ad:71:27:02:e1:01:1a:50:ac:
d5:51:cb:29:68:de:8a:0f:61:27:59:50:3b:14:cb:42:7e:e6:
68:1e:04:7a:5a:cb:cc:f4:7e:2a:81:c7:38:c6:04:0a:78:db:
1d:dc:c4:ce:f0:69:86:a8:f1:d9:c6:95:70:a3:d6:5c:bd:85:
29:be:ab:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:01 2023 by rpki-client on console-ams.rpki-client.org