Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/vK2fW5j_bseCIFHYrWC9OdqT0Nw.roa
File: vK2fW5j_bseCIFHYrWC9OdqT0Nw.roa (raw, json)
Hash identifier: DAAZomUf0Je5sPAKjyIt/x8R4W92lhnxKSyWCVZecko=
Subject key identifier: BC:AD:9F:5B:98:FF:6E:C7:82:20:51:D8:AD:60:BD:39:DA:93:D0:DC
Certificate issuer: /CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Certificate serial: 01852AC0582F4C83B7830A85ADFBCD652048
Authority key identifier: FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/vK2fW5j_bseCIFHYrWC9OdqT0Nw.roa
Signing time: Mon 19 Dec 2022 14:18:46 +0000
ROA not before: Mon 19 Dec 2022 14:18:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2914
IP address blocks: 92.53.180.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2a:c0:58:2f:4c:83:b7:83:0a:85:ad:fb:cd:65:20:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Validity
Not Before: Dec 19 14:18:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bcad9f5b98ff6ec7822051d8ad60bd39da93d0dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f2:09:04:37:f4:cb:86:98:f2:74:be:9d:19:
bd:1c:d4:c5:51:b3:ce:a0:1b:8f:ec:a0:63:d2:f6:
2a:08:31:14:a1:4d:7d:c5:53:f4:e4:16:21:b7:99:
ed:34:9d:a4:0a:c4:3d:b7:20:70:58:a4:f8:ce:a8:
9c:28:0f:75:b1:b4:fd:4b:28:c8:aa:f5:36:d5:0a:
38:dd:24:f1:1d:89:40:43:f1:ad:79:d2:3d:18:9c:
86:14:27:32:5c:c5:ae:48:6e:04:9e:97:4e:6e:6b:
6d:06:fc:01:12:e1:40:ed:30:cb:0c:87:ba:07:60:
a4:52:ab:62:d5:db:84:ad:43:20:b2:a8:e3:9e:ea:
77:cb:f6:b8:21:19:9b:c0:af:3d:ea:1e:e6:dd:34:
a9:09:95:5a:dc:39:0f:60:c7:72:6a:77:f8:58:da:
e5:65:e8:70:aa:65:9f:c2:39:be:34:05:7b:8f:69:
ce:8f:de:05:5b:47:c4:7a:c8:56:a9:cb:bc:61:77:
00:bb:32:e7:5f:05:0f:96:96:4c:43:ec:79:2a:40:
e5:ad:59:c6:a2:cd:61:7d:51:ba:e2:c0:8c:7b:48:
df:d6:9c:f2:d1:55:4e:be:c1:a5:d5:fc:f6:c4:74:
48:67:42:15:e1:6d:c5:aa:58:cc:98:d0:f9:0e:03:
1e:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:AD:9F:5B:98:FF:6E:C7:82:20:51:D8:AD:60:BD:39:DA:93:D0:DC
X509v3 Authority Key Identifier:
keyid:FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/vK2fW5j_bseCIFHYrWC9OdqT0Nw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/_neeViOLby6gaO3k4grvAMkEEys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.53.180.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:62:59:d4:c3:49:9e:ae:d1:10:e3:18:76:9e:78:cc:f6:d9:
ce:e1:e3:a8:ff:20:f6:ce:88:9c:65:23:87:fa:76:a3:ba:77:
86:66:b3:c1:6e:39:1b:de:73:00:ac:c9:6f:02:23:ba:a3:43:
29:06:cf:4d:e4:ee:06:e5:8c:c7:18:06:73:7a:cd:86:e1:52:
08:cd:be:36:7f:7d:5b:2e:66:c1:e5:ce:76:e8:a8:54:d0:7e:
8c:29:d9:89:df:86:e3:60:e2:09:d0:16:56:b8:44:d9:74:fc:
08:d0:42:c3:4a:bc:27:91:ff:58:8f:b7:33:2e:55:eb:af:75:
3c:a5:0f:7a:63:89:1c:90:13:e1:e7:86:d8:ed:62:0a:5b:07:
ef:0d:c7:7d:b2:1a:01:01:c3:1e:1b:21:a4:b9:b2:15:39:0b:
7e:a7:1f:3b:c5:33:e4:d8:3c:74:f2:44:78:ac:a0:f7:85:7d:
79:ec:b4:e8:0a:41:9c:c3:37:83:84:b0:0e:3c:e4:e6:cc:a1:
e3:df:57:f3:7a:cc:75:94:a7:53:40:e5:34:57:f3:ec:5a:f9:
1c:64:c7:c8:6e:5d:fa:13:dd:48:bd:8f:c4:17:7e:ff:df:b4:
e8:e6:b1:20:0b:eb:5c:34:d8:bb:47:e5:c0:5e:d5:98:70:5a:
ed:10:29:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:13 2024 by rpki-client on console-fra.rpki-client.org