Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/1caa79-b8c4-4d08-9bbe-386c1f8b0640/1/Vjafj0weM-aVL02t9J7ZlXE4OqY.roa
File: Vjafj0weM-aVL02t9J7ZlXE4OqY.roa (raw, json)
Hash identifier: zr9EgsI7OEijQF2oPQNXdr8uc1lGLyaxq7CnrWL1xJs=
Subject key identifier: 56:36:9F:8F:4C:1E:33:E6:95:2F:4D:AD:F4:9E:D9:95:71:38:3A:A6
Certificate issuer: /CN=8da824bc631ccee1ae99d7103afd2dc74f1e29c4
Certificate serial: 0183EF14A7840EDF640867F02D86B62D947A
Authority key identifier: 8D:A8:24:BC:63:1C:CE:E1:AE:99:D7:10:3A:FD:2D:C7:4F:1E:29:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jagkvGMczuGumdcQOv0tx08eKcQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/1caa79-b8c4-4d08-9bbe-386c1f8b0640/1/Vjafj0weM-aVL02t9J7ZlXE4OqY.roa
Signing time: Wed 19 Oct 2022 07:10:51 +0000
ROA not before: Wed 19 Oct 2022 07:10:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 192.33.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ef:14:a7:84:0e:df:64:08:67:f0:2d:86:b6:2d:94:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8da824bc631ccee1ae99d7103afd2dc74f1e29c4
Validity
Not Before: Oct 19 07:10:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56369f8f4c1e33e6952f4dadf49ed99571383aa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:80:01:f7:2b:f2:e1:70:dd:8e:45:a7:9d:c0:
6f:e4:34:00:52:fc:62:36:67:1d:38:f2:98:de:96:
bb:25:b3:50:70:74:b2:66:69:57:d6:ec:32:8f:bd:
bb:bf:69:04:37:c2:fd:b6:1b:6d:7f:26:27:4a:f8:
42:8f:7c:2c:c2:56:0c:e9:5e:cc:2d:0c:4a:56:d8:
b8:d3:5f:18:87:0c:e2:eb:c3:bc:db:7a:db:94:ba:
7f:f7:dc:0e:01:87:e6:3f:39:4b:de:5c:f9:0b:cb:
98:33:66:f6:1c:d3:a1:6e:dc:ed:93:68:78:cd:c1:
7e:d3:66:2c:30:78:b1:0a:bb:ae:78:fe:32:70:88:
09:51:f4:89:47:bb:9b:4c:f8:52:d1:1a:1f:89:fa:
03:04:2e:d5:7b:1f:7b:d4:fc:1b:3e:89:67:bf:7a:
fa:eb:b1:d3:71:3a:68:2d:9a:42:77:bd:85:dc:10:
f6:32:b6:c3:be:04:1a:f8:4f:fb:2a:ae:94:f3:8e:
20:40:e5:75:86:86:ec:5c:5b:2b:8f:84:22:ad:9b:
36:34:7c:fa:79:ba:ed:7d:4b:e9:e5:09:30:12:a8:
00:c3:0e:23:19:5f:9b:91:28:a1:49:f6:b9:29:20:
21:ab:29:5e:1e:80:5d:af:60:d9:f4:75:79:90:e2:
7b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:36:9F:8F:4C:1E:33:E6:95:2F:4D:AD:F4:9E:D9:95:71:38:3A:A6
X509v3 Authority Key Identifier:
keyid:8D:A8:24:BC:63:1C:CE:E1:AE:99:D7:10:3A:FD:2D:C7:4F:1E:29:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jagkvGMczuGumdcQOv0tx08eKcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/1caa79-b8c4-4d08-9bbe-386c1f8b0640/1/Vjafj0weM-aVL02t9J7ZlXE4OqY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/1caa79-b8c4-4d08-9bbe-386c1f8b0640/1/jagkvGMczuGumdcQOv0tx08eKcQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.33.88.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:0d:6f:98:72:4a:6d:16:f1:90:a7:d1:5f:3c:c3:12:d1:7c:
b1:cc:d2:3b:45:08:dc:75:ba:00:fa:86:d6:8b:71:24:17:74:
bf:bb:18:5f:c4:3f:76:f6:24:d5:22:9f:a9:6f:b6:c6:30:f8:
43:c0:6b:74:0f:2b:ad:69:77:07:ee:a6:b0:40:04:94:f8:59:
98:82:39:02:ac:c8:5e:b2:99:93:51:e2:ca:42:82:d4:8b:28:
c7:cf:2e:2d:b7:e7:41:83:a6:21:27:45:f5:85:bd:37:e6:af:
cf:64:f3:fc:45:51:8f:ac:68:d9:d6:75:47:90:a4:ed:70:05:
8a:02:a6:59:98:88:64:4a:72:98:f7:f6:6e:24:42:26:d3:fb:
73:47:c3:47:83:fb:ad:dc:f3:74:2f:8a:f2:98:3c:68:55:24:
a8:89:ea:63:3c:cf:4f:b9:d3:b3:fe:c5:7f:52:62:2c:07:74:
70:8e:19:18:ec:0b:f8:11:5b:e5:95:4b:11:90:f8:29:22:82:
5e:02:e1:a8:12:58:c0:9e:2f:bc:a3:ff:c1:c2:2c:d6:75:e0:
9b:7f:6a:0e:4c:7c:27:84:53:7f:99:f1:77:8c:56:8a:37:53:
b3:aa:a0:58:d4:33:fd:f3:73:af:08:53:6f:6d:11:05:ae:b4:
87:ac:3a:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:25 2024 by rpki-client on console-fra.rpki-client.org