Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/9166b8-5e54-458d-9b32-557a7d11e2ae/1/VFSGg8jgJwfi2Nn8855Y7V-o-SI.roa
File: VFSGg8jgJwfi2Nn8855Y7V-o-SI.roa (raw, json)
Hash identifier: ZA50ktwCO3z7Z6JcbTNeUHbAswpE49m8GaPaZgbWnpo=
Subject key identifier: 54:54:86:83:C8:E0:27:07:E2:D8:D9:FC:F3:9E:58:ED:5F:A8:F9:22
Certificate issuer: /CN=338d42fbb3f43f56ddb8782e65490a23d85b72e1
Certificate serial: 0184A6A9CBE324F05420D7ED729BC99143A6
Authority key identifier: 33:8D:42:FB:B3:F4:3F:56:DD:B8:78:2E:65:49:0A:23:D8:5B:72:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M41C-7P0P1bduHguZUkKI9hbcuE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/9166b8-5e54-458d-9b32-557a7d11e2ae/1/VFSGg8jgJwfi2Nn8855Y7V-o-SI.roa
Signing time: Wed 23 Nov 2022 22:44:16 +0000
ROA not before: Wed 23 Nov 2022 22:44:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12884
IP address blocks: 45.95.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a6:a9:cb:e3:24:f0:54:20:d7:ed:72:9b:c9:91:43:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=338d42fbb3f43f56ddb8782e65490a23d85b72e1
Validity
Not Before: Nov 23 22:44:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=54548683c8e02707e2d8d9fcf39e58ed5fa8f922
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:df:ce:09:13:99:76:dd:8d:b0:f9:ce:bd:2e:
9d:f5:84:a9:36:cb:98:6e:16:8a:3b:de:2b:84:59:
97:58:4f:85:d0:11:e3:90:af:08:c9:de:2f:15:5d:
3f:69:68:a1:18:da:b6:c9:20:4a:74:f4:e2:ef:8c:
dc:a5:1b:0d:ba:68:c0:fd:52:f9:fb:ee:8a:90:3e:
73:e0:b8:8d:62:2a:7f:29:84:6e:fa:5e:64:22:e5:
a0:8b:63:71:4a:1d:ed:24:cd:a9:bb:58:92:7a:b7:
7d:14:2a:85:fb:06:7f:07:37:5e:f2:e6:74:a0:ba:
c7:80:5c:08:a7:c2:63:19:dd:01:3b:96:06:22:03:
2b:b9:2e:af:52:25:46:7a:00:a1:23:01:b8:44:26:
f1:2e:b7:47:3c:d8:ce:a2:98:a9:e6:2c:51:53:38:
05:73:55:b5:e3:8a:70:c6:96:05:8a:35:ac:da:22:
3b:03:9d:1c:bf:75:76:de:c6:89:df:55:5a:ea:8f:
ac:a2:0d:16:88:6c:a6:9f:ae:bf:53:52:d2:ef:a4:
61:f8:f8:a6:43:fa:29:da:b8:f7:ab:fc:8d:50:15:
dd:c1:3f:5d:f0:b9:7a:ad:73:b2:42:63:bc:c0:e7:
7f:7d:dd:e2:57:09:59:40:69:bc:1c:bb:12:8f:d6:
70:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:54:86:83:C8:E0:27:07:E2:D8:D9:FC:F3:9E:58:ED:5F:A8:F9:22
X509v3 Authority Key Identifier:
keyid:33:8D:42:FB:B3:F4:3F:56:DD:B8:78:2E:65:49:0A:23:D8:5B:72:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M41C-7P0P1bduHguZUkKI9hbcuE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/9166b8-5e54-458d-9b32-557a7d11e2ae/1/VFSGg8jgJwfi2Nn8855Y7V-o-SI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/9166b8-5e54-458d-9b32-557a7d11e2ae/1/M41C-7P0P1bduHguZUkKI9hbcuE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.94.0/24
Signature Algorithm: sha256WithRSAEncryption
87:d0:b2:f9:9b:2f:7b:32:af:56:cd:68:fb:27:62:65:b3:7e:
45:9c:d6:24:86:ef:29:1d:fa:eb:ae:02:d0:67:93:3c:58:82:
b5:ff:d6:b8:03:ce:07:64:f2:9a:33:68:8d:fb:a1:00:08:d8:
1a:e7:16:97:39:b5:60:bb:34:76:e9:c5:c9:bf:f6:c1:73:48:
71:27:74:65:82:69:d3:83:88:8b:5e:b7:40:07:db:df:b9:1e:
5f:62:37:b0:3e:98:5d:40:bf:84:3c:4b:c9:9a:71:cc:0e:2f:
d3:aa:da:41:0e:47:8c:c0:c8:2b:87:d9:d9:28:58:3f:c8:4e:
1a:4f:b8:6a:9e:bc:77:a7:4d:9b:60:03:4e:e2:a1:10:d2:f0:
da:95:e9:0d:8a:55:cc:f1:59:41:5f:97:b7:b2:2b:42:29:41:
d8:d9:18:f3:9a:db:0d:d8:a1:92:cb:3f:b0:d1:58:97:49:55:
70:50:1d:05:75:46:c5:92:16:2a:7b:78:e1:63:2e:92:bf:3c:
21:0c:e4:1b:0e:f1:e8:74:95:b3:4f:1f:c3:84:83:50:5b:70:
ea:fe:98:4f:4d:d4:8b:5c:90:8d:4f:56:a8:be:04:8a:e6:16:
6a:5c:04:70:a6:d6:e2:f4:e5:9a:b7:df:15:2f:49:98:95:1d:
ba:4f:92:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:04 2024 by rpki-client on console-fra.rpki-client.org