Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/a5fcf5-7863-43c1-a1c1-194cc9902abf/1/VCqTdO0hdvPUidwK49T2QOoS0mM.roa
File: VCqTdO0hdvPUidwK49T2QOoS0mM.roa (raw, json)
Hash identifier: PUavNhTPuWe0ofQwhFVGt7HpmMBELIK+B10y130QPWQ=
Subject key identifier: 54:2A:93:74:ED:21:76:F3:D4:89:DC:0A:E3:D4:F6:40:EA:12:D2:63
Certificate issuer: /CN=5c3a1d973f9b3391e8adacaa664d1b23d778f008
Certificate serial: 0C12C592
Authority key identifier: 5C:3A:1D:97:3F:9B:33:91:E8:AD:AC:AA:66:4D:1B:23:D7:78:F0:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XDodlz-bM5HorayqZk0bI9d48Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/a5fcf5-7863-43c1-a1c1-194cc9902abf/1/VCqTdO0hdvPUidwK49T2QOoS0mM.roa
Signing time: Sat 01 Jan 2022 10:53:40 +0000
ROA not before: Sat 01 Jan 2022 10:53:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13004
IP address blocks: 193.105.163.0/24 maxlen: 24
91.245.214.0/24 maxlen: 24
2001:7f8:1e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 202556818 (0xc12c592)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c3a1d973f9b3391e8adacaa664d1b23d778f008
Validity
Not Before: Jan 1 10:53:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=542a9374ed2176f3d489dc0ae3d4f640ea12d263
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7c:bf:5e:2b:aa:42:24:fe:ef:b5:63:b9:9a:
bf:0b:38:ec:5b:8b:b9:cf:58:92:92:77:51:32:e2:
68:fb:cb:22:ed:a5:43:d3:b3:af:9d:f8:47:70:ff:
88:79:fd:9c:70:70:c8:d9:3f:40:ac:ae:46:ca:67:
3f:dd:4d:2b:11:9e:15:96:3f:e6:04:2c:53:9b:66:
0b:d3:1e:3f:44:32:71:1b:a1:a1:f8:1c:e8:a5:c4:
68:df:2f:bf:fa:f9:bd:bb:02:1a:42:23:04:59:e6:
c1:43:3b:8f:21:e9:6b:ce:0c:ed:e9:2f:44:d1:d8:
e0:0d:a1:88:2b:6a:48:9b:b6:80:e7:2e:4d:24:1b:
42:b8:73:a3:21:a4:c5:b8:ec:d5:ee:7f:75:e4:db:
9f:9c:7f:12:49:36:ba:d4:d4:82:34:bb:95:4b:13:
21:b1:30:87:c0:c6:c7:41:3d:6c:19:c3:e2:be:c5:
24:78:1b:e4:91:1e:59:21:11:b5:5a:30:60:d8:ca:
7f:9e:13:36:c4:67:f5:28:3d:07:19:5d:1c:2a:4a:
a6:b9:ca:f9:03:df:ac:dc:d7:c1:22:58:11:92:e7:
79:b5:40:85:19:02:20:f8:d7:86:f6:93:71:dc:f8:
44:af:27:31:d9:61:84:0c:b2:3c:72:9e:8d:68:e5:
59:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:2A:93:74:ED:21:76:F3:D4:89:DC:0A:E3:D4:F6:40:EA:12:D2:63
X509v3 Authority Key Identifier:
keyid:5C:3A:1D:97:3F:9B:33:91:E8:AD:AC:AA:66:4D:1B:23:D7:78:F0:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XDodlz-bM5HorayqZk0bI9d48Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/a5fcf5-7863-43c1-a1c1-194cc9902abf/1/VCqTdO0hdvPUidwK49T2QOoS0mM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/a5fcf5-7863-43c1-a1c1-194cc9902abf/1/XDodlz-bM5HorayqZk0bI9d48Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.245.214.0/24
193.105.163.0/24
IPv6:
2001:7f8:1e::/48
Signature Algorithm: sha256WithRSAEncryption
72:49:9c:0f:53:d4:fa:5c:1b:94:2d:c9:9a:e9:59:76:44:e3:
7d:39:19:4d:f3:ae:59:4b:b2:97:06:72:53:08:8c:39:1a:e1:
30:7d:53:4a:ef:26:9f:8c:22:8d:f0:23:40:a1:25:eb:e3:79:
1e:ea:3b:84:c9:8f:67:c7:6f:0e:98:1a:73:37:dd:80:87:dc:
32:b2:ba:98:a1:d1:89:31:0a:91:9f:94:d8:00:67:2f:6c:c8:
36:57:90:a2:b5:e3:9f:49:4d:66:4b:43:17:08:ab:87:7f:99:
a0:13:5f:35:d2:27:48:38:4b:72:d1:ca:41:d3:b7:3c:dc:2d:
a5:45:37:d3:56:c2:83:54:be:8a:25:90:97:e9:28:18:18:a2:
ed:8d:67:73:67:e3:a9:69:2f:3a:30:cc:48:21:b0:5f:70:5e:
72:39:f7:9b:39:b8:97:e6:43:cf:25:5c:6e:82:81:0a:77:dc:
71:44:a4:4d:3a:46:c9:dd:f2:4f:36:2b:95:63:6e:40:bc:88:
3b:8a:d8:82:07:ac:c0:ff:33:34:95:1d:72:35:c0:91:01:b7:
13:6a:c7:70:5d:9b:dd:02:9b:1f:4b:66:57:f8:c5:79:74:5a:
4a:3f:fc:b7:3d:1d:4e:ac:dd:37:21:c6:9c:e3:87:5c:f9:5a:
f3:88:67:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:10 2023 by rpki-client on console-ams.rpki-client.org