Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/VCzukYSU-aGPupJnPAI4ezvw33o.roa
File: VCzukYSU-aGPupJnPAI4ezvw33o.roa (raw, json)
Hash identifier: +tgQWqAbL6QDfpks0ny2Qp8Fq6w2hnJ7SnmkCYsUJqA=
Subject key identifier: 54:2C:EE:91:84:94:F9:A1:8F:BA:92:67:3C:02:38:7B:3B:F0:DF:7A
Certificate issuer: /CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Certificate serial: 081EDEE5
Authority key identifier: 32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/VCzukYSU-aGPupJnPAI4ezvw33o.roa
Signing time: Mon 09 May 2022 10:00:18 +0000
ROA not before: Mon 09 May 2022 10:00:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 37.44.228.0/22 maxlen: 24
192.145.52.0/22 maxlen: 24
193.219.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136240869 (0x81edee5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Validity
Not Before: May 9 10:00:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=542cee918494f9a18fba92673c02387b3bf0df7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:3f:c4:26:63:ad:7d:95:b0:b0:ef:dc:20:4c:
8e:d7:35:5f:d0:c3:66:53:06:f8:69:c9:6d:44:af:
96:e0:95:1c:da:7d:97:16:b1:cf:75:3f:c2:97:52:
b6:b2:ee:94:6e:bd:1c:28:c4:df:6f:40:48:e5:91:
5e:cd:cf:04:45:d3:de:09:4b:04:36:fa:9f:11:d5:
a2:2f:d0:22:13:96:7b:6e:41:e9:c5:70:1e:0d:18:
8a:dc:df:df:0a:8c:37:b7:65:6f:85:df:6b:87:88:
5b:94:3e:54:5c:a0:c5:28:99:49:b7:05:6d:10:d8:
f7:34:31:a2:c9:fb:7f:ae:02:0b:69:54:52:fd:50:
90:23:74:4c:09:e2:71:0e:c2:b7:f8:f4:a2:ba:02:
c6:d7:39:3f:6d:7f:9e:06:1b:ae:9f:f6:4c:5d:9f:
1f:ea:65:63:f6:c2:f5:78:f8:0c:f6:8b:54:a3:d7:
6f:39:47:f9:0c:db:19:11:34:83:a0:e9:56:2c:e3:
cd:d4:e6:91:5a:f2:80:aa:c1:ef:22:70:25:d3:b8:
f0:89:45:bf:c2:22:3a:4a:66:de:ad:c9:df:e6:48:
0a:82:4d:81:ba:25:36:f5:0a:d5:dd:ad:df:f9:51:
9f:1f:87:8e:39:81:ad:9e:72:ab:73:e5:ae:b4:93:
17:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:2C:EE:91:84:94:F9:A1:8F:BA:92:67:3C:02:38:7B:3B:F0:DF:7A
X509v3 Authority Key Identifier:
keyid:32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/VCzukYSU-aGPupJnPAI4ezvw33o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.44.228.0/22
192.145.52.0/22
193.219.7.0/24
Signature Algorithm: sha256WithRSAEncryption
66:f1:81:89:11:d1:e4:6d:87:50:1f:32:2d:ee:33:c3:1e:31:
f1:c9:e4:df:d2:f1:15:aa:20:3c:3e:12:64:c5:8e:7f:2a:1e:
41:56:17:48:4e:7c:b4:64:35:7e:6a:ba:16:5d:25:ab:7c:60:
d1:c9:49:22:1c:e2:e1:cf:43:9d:c9:f7:5e:38:54:3f:09:fc:
21:64:66:c0:5b:01:3e:6c:ae:14:fc:a4:cd:0f:1c:9d:7b:29:
0b:97:6c:f4:d3:b3:84:5b:b0:f6:3b:ab:c1:08:5f:ae:e8:9a:
72:c4:db:ec:ef:c2:62:b9:a6:43:27:94:98:98:a8:96:22:8a:
f9:e9:3c:a7:59:cf:e6:fe:51:f3:80:be:52:07:a4:d2:55:ca:
cc:21:76:f1:79:4f:74:74:fc:b2:71:66:fe:58:12:80:43:80:
06:dd:65:28:ff:c5:6d:8a:a6:6c:2f:87:06:3c:7a:79:9a:b5:
6e:2c:d3:30:ac:00:ba:24:fa:29:72:6e:d9:33:fc:75:13:0c:
9e:e4:ef:75:63:95:7e:8d:6e:24:d2:f9:2e:b4:cd:3a:35:e8:
23:5d:a1:2a:24:ca:67:e6:54:01:16:b7:44:94:a5:70:83:96:
eb:27:48:47:a1:c6:a4:29:c5:f9:98:11:e1:ae:dc:3a:b5:2a:
c3:3b:8d:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:26 2023 by rpki-client on console-fra.rpki-client.org