Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/VcxVKblV_lZVaQmiALQ7xOf5-PA.roa
File: VcxVKblV_lZVaQmiALQ7xOf5-PA.roa (raw, json)
Hash identifier: 7t/pMU4XS7X86O/FRVGhhH/hjcfM2ze2JbUGmevXG9E=
Subject key identifier: 55:CC:55:29:B9:55:FE:56:55:69:09:A2:00:B4:3B:C4:E7:F9:F8:F0
Certificate issuer: /CN=7a91b34153da0d5d121cff43259fcd9e3dbfc7d4
Certificate serial: 034CF699
Authority key identifier: 7A:91:B3:41:53:DA:0D:5D:12:1C:FF:43:25:9F:CD:9E:3D:BF:C7:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/epGzQVPaDV0SHP9DJZ_Nnj2_x9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/VcxVKblV_lZVaQmiALQ7xOf5-PA.roa
Signing time: Tue 18 Jan 2022 22:11:38 +0000
ROA not before: Tue 18 Jan 2022 22:11:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 185.154.150.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55375513 (0x34cf699)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a91b34153da0d5d121cff43259fcd9e3dbfc7d4
Validity
Not Before: Jan 18 22:11:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55cc5529b955fe56556909a200b43bc4e7f9f8f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:2e:b3:08:57:ab:75:b6:fe:3c:ac:18:63:3b:
67:41:29:83:34:65:94:44:12:84:07:df:a8:5f:31:
2f:f6:22:3e:22:e7:93:ff:4e:0a:67:5a:6b:8d:1e:
8a:2a:06:22:19:70:ef:e5:4a:fe:fd:c7:1b:d6:af:
dc:ee:74:d0:5a:43:4c:c4:0c:57:8e:d4:38:b8:f7:
5e:f9:04:a9:e3:31:b0:8f:60:1f:84:09:4f:94:b0:
fa:e6:e3:3c:13:d5:d5:1e:32:08:6f:cd:26:c9:cc:
16:c1:22:f0:68:fd:dc:f1:8b:a3:55:00:35:c6:a4:
32:2e:aa:5c:6a:c0:a2:1d:b8:26:4a:6c:28:c5:23:
26:41:9c:2f:bc:7f:14:9c:71:a3:5d:34:78:a8:44:
a0:41:99:cc:c2:af:d3:ca:fd:60:1a:3a:a8:f6:ea:
49:c1:1c:5f:52:9a:7e:7e:8c:d0:cd:0f:14:0c:03:
0a:ff:5a:d2:12:56:61:3d:3f:5e:98:38:2b:53:10:
04:9f:d7:b8:90:31:6d:b7:d1:71:ce:d0:08:29:3e:
55:6d:ee:3f:d1:aa:58:51:f5:8f:5a:3b:0a:99:94:
68:f2:99:fb:5b:a3:e8:ef:0d:2e:c5:58:03:7d:fa:
52:df:91:45:02:12:4a:76:5b:4a:da:78:d6:52:d5:
2a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:CC:55:29:B9:55:FE:56:55:69:09:A2:00:B4:3B:C4:E7:F9:F8:F0
X509v3 Authority Key Identifier:
keyid:7A:91:B3:41:53:DA:0D:5D:12:1C:FF:43:25:9F:CD:9E:3D:BF:C7:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/epGzQVPaDV0SHP9DJZ_Nnj2_x9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/VcxVKblV_lZVaQmiALQ7xOf5-PA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/epGzQVPaDV0SHP9DJZ_Nnj2_x9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.154.150.0/23
Signature Algorithm: sha256WithRSAEncryption
63:80:e1:6e:2d:3f:fc:98:4e:db:7e:da:eb:69:ff:28:90:fc:
1d:6b:93:6e:4f:b0:37:2f:1e:31:45:3a:31:73:a4:a6:3a:01:
b3:e6:68:e5:eb:9b:2f:76:c7:61:c2:c3:c9:b6:a7:f3:82:3b:
09:00:99:4e:1e:d3:5e:03:cb:99:be:a9:24:f2:8b:e2:b5:70:
a4:ac:ab:23:69:8c:4e:dd:71:83:c9:d9:47:c1:e7:89:fa:20:
ab:0a:0e:c6:a8:bc:03:94:d5:00:c4:dd:38:f5:bd:0a:79:eb:
14:af:f9:e4:b5:f5:d8:3b:15:06:4e:1b:98:57:40:20:8e:b6:
e5:c3:bd:fc:ee:c3:84:53:9e:b7:fb:de:0e:fb:3a:8b:54:1c:
ac:d9:01:30:9a:13:99:f2:b2:58:f4:3f:c4:14:c8:07:c3:fc:
37:a4:10:25:c3:bf:cd:91:85:d6:b7:41:97:e2:46:d4:ce:cc:
b1:4a:7c:70:91:ea:03:99:f6:c3:23:dc:80:3b:56:50:6a:54:
d4:1c:35:cb:e3:ac:46:f2:ec:97:b2:7f:52:72:4e:45:a2:84:
43:36:1f:56:91:d7:55:ca:6d:56:d5:79:69:bd:bd:98:6f:46:
ef:b3:19:42:11:ae:f8:5b:66:ad:28:49:c5:cf:ba:f2:f6:8a:
8b:15:fc:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org