Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/VCR9v047GLTh5WUi31sK-yojWcE.roa
File: VCR9v047GLTh5WUi31sK-yojWcE.roa (raw, json)
Hash identifier: Iyu/b3PqssZIlCIQWinMzJnrE7sLsT898op6sK+ZfN4=
Subject key identifier: 54:24:7D:BF:4E:3B:18:B4:E1:E5:65:22:DF:5B:0A:FB:2A:23:59:C1
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 05F8B898
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/VCR9v047GLTh5WUi31sK-yojWcE.roa
Signing time: Sat 01 Jan 2022 16:01:15 +0000
ROA not before: Sat 01 Jan 2022 16:01:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 5.181.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100186264 (0x5f8b898)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jan 1 16:01:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=54247dbf4e3b18b4e1e56522df5b0afb2a2359c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:7f:f0:6e:56:f1:33:65:95:87:99:0c:01:5c:
7d:a6:ec:54:ac:0d:33:88:58:d7:3a:ec:26:8a:6e:
c4:03:e8:b3:29:f2:79:57:91:d0:da:51:ed:53:64:
af:aa:80:2a:f8:c2:d4:ab:57:fe:b9:c4:46:8a:2b:
1a:3a:19:4c:ff:5b:ef:d5:c5:f5:be:49:6a:a1:1a:
8b:c4:57:3a:7b:5c:48:1f:a6:29:ff:e3:15:35:72:
66:1e:89:c9:cd:7a:4c:95:29:f4:98:a8:d2:79:6f:
98:3d:9f:eb:39:b8:e2:99:af:ab:b6:c3:ec:42:55:
19:f0:40:7b:c8:d6:54:53:88:a5:2e:bd:c1:d2:7c:
b6:21:06:29:92:5d:28:5f:74:81:63:77:22:61:43:
ff:31:1a:03:8d:7c:74:77:08:6f:69:02:ac:9a:9a:
2d:3b:f5:f3:4b:99:f0:d6:0c:4d:88:34:32:96:ca:
64:83:68:2a:bc:5f:a9:21:7e:54:c1:4b:3b:e0:24:
e2:e0:b9:0f:80:16:78:a9:9d:7d:47:bf:1a:d3:37:
ec:07:9a:82:22:f2:21:b7:7e:68:0a:ea:0d:2d:6d:
d6:df:ae:03:db:ee:d6:1a:6b:86:3b:15:49:bd:22:
c2:8e:fe:d2:5b:41:dd:b8:34:b6:89:87:ad:e3:a8:
c2:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:24:7D:BF:4E:3B:18:B4:E1:E5:65:22:DF:5B:0A:FB:2A:23:59:C1
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/VCR9v047GLTh5WUi31sK-yojWcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.200.0/24
Signature Algorithm: sha256WithRSAEncryption
57:d9:81:02:2d:da:4e:3b:44:30:4f:b9:f7:e9:bb:c6:be:a6:
d9:25:ab:a0:60:39:c2:4c:06:62:fb:eb:74:41:22:7d:e0:f2:
30:00:a2:2d:25:01:0a:ab:4e:54:86:ed:20:45:56:2d:da:e2:
a4:81:15:60:01:4d:85:8a:52:3b:1f:b9:89:7f:4c:35:c3:0d:
a3:ff:27:36:89:fd:e9:06:41:05:d3:2d:a0:91:b8:1c:78:58:
8a:b0:9d:d5:10:c9:fb:55:84:27:a3:cd:82:3e:cd:41:3c:29:
57:44:3a:0c:c9:90:5d:27:3b:cd:ec:4d:d8:66:09:dd:ea:62:
2d:6f:1e:51:70:4f:63:f2:1d:e2:4c:ce:ea:5e:a0:af:a8:c8:
d1:f5:8c:45:79:d1:d1:70:2a:74:9e:2e:c9:f7:7f:e9:34:f0:
cd:1f:b0:4f:51:de:c0:08:dc:18:5e:a2:31:a0:32:30:df:f4:
cd:e7:bd:fd:91:8b:da:2f:ef:ad:4b:c5:58:79:3b:37:7c:31:
61:0d:a0:fb:9c:df:d1:27:1f:b2:38:c6:35:78:27:50:5e:7b:
99:1e:8c:c9:2f:c0:43:b7:93:1d:1a:a2:74:29:8e:0f:1f:d0:
fd:32:4a:1a:54:28:2c:9c:21:40:07:9a:93:f9:dd:43:eb:37:
9c:c5:43:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:25 2024 by rpki-client on console-fra.rpki-client.org