Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/25daa4-f7fa-40fa-9250-996326ca7dd6/1/VTegu2o9OUY_JJUnCSp0yOVz2vc.roa
File: VTegu2o9OUY_JJUnCSp0yOVz2vc.roa (raw, json)
Hash identifier: Vn9eczjq3zX4VQ9J+I6+uzSgCFTa9MK38kdAcC5ZKA4=
Subject key identifier: 55:37:A0:BB:6A:3D:39:46:3F:24:95:27:09:2A:74:C8:E5:73:DA:F7
Certificate issuer: /CN=46f3f9b41f45a0f97b2a6a811ca67a0402a0477f
Certificate serial: 01553B40
Authority key identifier: 46:F3:F9:B4:1F:45:A0:F9:7B:2A:6A:81:1C:A6:7A:04:02:A0:47:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RvP5tB9FoPl7KmqBHKZ6BAKgR38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/25daa4-f7fa-40fa-9250-996326ca7dd6/1/VTegu2o9OUY_JJUnCSp0yOVz2vc.roa
Signing time: Sat 01 Jan 2022 12:05:36 +0000
ROA not before: Sat 01 Jan 2022 12:05:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43663
IP address blocks: 91.198.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22362944 (0x1553b40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46f3f9b41f45a0f97b2a6a811ca67a0402a0477f
Validity
Not Before: Jan 1 12:05:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5537a0bb6a3d39463f249527092a74c8e573daf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:63:cf:88:4a:3a:6c:62:80:ed:66:0c:58:bc:
a7:f4:36:a6:ad:73:85:2c:76:e3:e3:f3:13:4f:6c:
ec:ad:44:41:d3:0f:07:8f:29:fd:47:1d:34:32:b8:
b8:f3:3b:cf:53:c4:3c:92:a5:3a:67:0d:8c:ae:74:
ef:58:63:73:ec:7a:a1:ad:42:bc:9d:a5:6e:f5:6e:
7c:a9:a3:12:37:da:07:5c:b8:aa:31:4f:cf:4d:75:
da:a5:17:96:51:6b:74:cf:a0:20:9b:49:92:c0:b1:
a1:2b:cb:5d:e0:ca:6a:24:55:76:d9:4c:ff:f5:f8:
ae:3f:e0:f9:69:f7:c4:36:33:ff:71:58:7d:74:dd:
ed:6d:1a:58:8b:b7:73:41:28:36:59:ba:6f:ef:50:
9b:4d:2f:a7:cd:a9:81:01:6f:6b:95:22:b3:1a:50:
a5:50:cb:a6:a3:5b:56:6e:85:9e:d9:ab:0d:4a:04:
95:81:84:58:17:43:47:6d:6e:40:23:4b:56:10:6e:
0d:29:2c:05:7b:0f:18:14:1b:28:e1:21:2e:b2:27:
e0:01:96:f9:3a:da:13:45:f1:8c:86:91:c9:d4:25:
2f:16:32:cf:f8:05:8d:79:c8:74:a0:57:ec:31:87:
48:b8:c6:92:37:54:a4:34:b9:5a:0d:bd:4a:c3:87:
df:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:37:A0:BB:6A:3D:39:46:3F:24:95:27:09:2A:74:C8:E5:73:DA:F7
X509v3 Authority Key Identifier:
keyid:46:F3:F9:B4:1F:45:A0:F9:7B:2A:6A:81:1C:A6:7A:04:02:A0:47:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RvP5tB9FoPl7KmqBHKZ6BAKgR38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/25daa4-f7fa-40fa-9250-996326ca7dd6/1/VTegu2o9OUY_JJUnCSp0yOVz2vc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/25daa4-f7fa-40fa-9250-996326ca7dd6/1/RvP5tB9FoPl7KmqBHKZ6BAKgR38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.96.0/24
Signature Algorithm: sha256WithRSAEncryption
94:f2:50:1b:f5:20:e7:f0:c7:e6:7e:60:4e:8d:dc:c1:36:a3:
fa:75:75:39:43:ac:2b:22:5f:8c:7e:b5:99:81:f4:7f:42:94:
ad:db:1d:3c:48:a0:85:50:5f:80:ad:c5:ff:07:3c:e7:9d:75:
fa:41:78:50:13:7b:00:6b:cf:10:97:42:36:14:9e:e1:4e:b2:
c6:b5:bb:7a:41:5b:27:49:33:04:87:4e:8c:25:87:45:fa:16:
59:a1:6a:63:00:b8:c4:35:35:84:97:87:aa:18:85:06:24:92:
ee:40:02:e5:e5:69:0f:d2:e2:53:c6:24:8c:ca:c7:20:cf:5f:
eb:fd:83:67:38:74:c2:c4:d5:f1:ec:87:3f:9a:54:3b:04:12:
13:2c:bf:be:1e:84:cf:1e:73:61:a5:45:99:7d:e7:3a:c8:a4:
8d:46:eb:f1:60:56:2b:55:6c:64:1a:f6:81:98:49:0c:76:d0:
aa:96:b7:ed:e8:7a:16:e6:d8:85:08:b4:6f:39:75:7a:51:0a:
a5:e8:c3:63:72:8f:53:6c:4e:c7:10:56:db:f2:ba:6f:ed:73:
10:a7:55:1d:55:ce:33:1a:0b:63:c4:ee:a0:50:ac:2e:99:dd:
07:17:47:d1:88:2d:ed:92:d0:67:e3:d8:4e:f4:5f:f3:74:97:
d3:98:1f:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:40 2024 by rpki-client on console-fra.rpki-client.org