Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/b5cf0b-ec31-4705-8f68-6f1fece87c89/1/vcGOB6f7g1wYD1qjWJXSABf_mt4.roa
File: vcGOB6f7g1wYD1qjWJXSABf_mt4.roa (raw, json)
Hash identifier: aRUWRpMjbfoV+EsIJQAa53hbVNKP0kdBEmT6rJ7a6us=
Subject key identifier: BD:C1:8E:07:A7:FB:83:5C:18:0F:5A:A3:58:95:D2:00:17:FF:9A:DE
Certificate issuer: /CN=22d54df89b8fd921dada3f0daa29efff5cce0a79
Certificate serial: 03D8B50A
Authority key identifier: 22:D5:4D:F8:9B:8F:D9:21:DA:DA:3F:0D:AA:29:EF:FF:5C:CE:0A:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ItVN-JuP2SHa2j8Nqinv_1zOCnk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/b5cf0b-ec31-4705-8f68-6f1fece87c89/1/vcGOB6f7g1wYD1qjWJXSABf_mt4.roa
Signing time: Tue 22 Feb 2022 13:37:39 +0000
ROA not before: Tue 22 Feb 2022 13:37:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51333
IP address blocks: 185.58.4.0/22 maxlen: 22
188.65.80.0/22 maxlen: 22
188.65.85.0/24 maxlen: 24
188.65.84.0/24 maxlen: 24
188.65.87.0/24 maxlen: 24
188.65.86.0/24 maxlen: 24
194.36.72.0/22 maxlen: 22
2a0c:bdc0::/29 maxlen: 29
2a02:6120::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64533770 (0x3d8b50a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22d54df89b8fd921dada3f0daa29efff5cce0a79
Validity
Not Before: Feb 22 13:37:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bdc18e07a7fb835c180f5aa35895d20017ff9ade
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:85:5c:30:c5:28:b8:d4:93:ef:34:0e:51:ac:
2e:9f:f5:8c:c7:f8:6a:05:fc:87:ad:03:6e:f3:0a:
37:eb:4f:17:b5:ac:66:58:18:e1:56:cc:d9:1a:3e:
95:e0:22:39:5f:ef:b7:16:8b:a2:25:c0:2f:a1:9e:
76:02:d4:47:cd:80:6e:a5:eb:3d:9b:c4:95:01:b9:
bd:d5:ca:3d:17:b2:74:d5:18:24:85:80:51:48:5d:
76:83:b3:cf:91:5e:bd:ef:de:38:e7:8f:8e:68:a4:
ca:06:53:81:f4:85:0f:03:ff:16:af:84:d6:e0:5e:
e7:97:a7:99:45:15:9e:f5:a0:72:d6:8a:2a:8d:41:
b7:a4:81:2e:c7:f6:e7:45:58:7e:ea:79:0a:9e:0c:
7b:2f:61:cf:23:1d:1a:c2:c9:63:76:18:df:dd:1f:
cb:9a:3d:1c:28:d3:33:f7:58:cc:1f:89:c6:5f:20:
ad:e6:d4:92:13:ae:38:b4:ae:22:e0:42:2b:bd:67:
d3:66:23:0c:b3:51:41:c2:93:7c:f3:b5:f4:b9:54:
78:76:27:16:be:ac:cf:64:71:00:d7:8c:74:0c:f1:
3f:59:2f:f8:28:e3:0b:a3:20:10:38:fb:05:2b:e0:
08:25:c0:0e:b0:72:8c:c4:9a:80:b7:fe:4a:78:d5:
13:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:C1:8E:07:A7:FB:83:5C:18:0F:5A:A3:58:95:D2:00:17:FF:9A:DE
X509v3 Authority Key Identifier:
keyid:22:D5:4D:F8:9B:8F:D9:21:DA:DA:3F:0D:AA:29:EF:FF:5C:CE:0A:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ItVN-JuP2SHa2j8Nqinv_1zOCnk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/b5cf0b-ec31-4705-8f68-6f1fece87c89/1/vcGOB6f7g1wYD1qjWJXSABf_mt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/b5cf0b-ec31-4705-8f68-6f1fece87c89/1/ItVN-JuP2SHa2j8Nqinv_1zOCnk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.58.4.0/22
188.65.80.0/21
194.36.72.0/22
IPv6:
2a02:6120::/32
2a0c:bdc0::/29
Signature Algorithm: sha256WithRSAEncryption
68:06:45:92:f9:ca:7f:1f:19:e7:c2:61:fc:5c:ec:a2:fc:30:
ad:4c:3b:f6:12:63:b8:1f:64:7c:91:f1:46:35:b4:38:f7:2f:
dc:94:d1:1f:48:1a:d7:2e:d5:6e:78:79:ce:e5:75:70:ec:2e:
75:8d:84:aa:3a:7c:3d:52:94:09:93:6f:65:1f:e3:50:52:04:
7d:2e:95:eb:95:22:07:32:3d:1c:c0:db:7a:34:d4:bc:bf:ee:
75:15:1c:3a:6b:2b:6d:9c:cc:31:55:2d:0b:27:bf:be:5e:2f:
b3:3b:de:7b:7f:0d:b8:8f:40:99:71:74:03:c9:da:b0:85:56:
05:82:6b:07:d5:cc:0c:fe:09:84:9e:82:6a:6f:f2:f2:ea:7b:
40:ab:3b:b8:17:2c:8b:56:a6:4b:3d:21:c1:ba:61:89:6b:0a:
a2:c2:08:6f:22:46:e8:9c:b1:d9:73:db:05:63:23:3d:b4:46:
09:11:d1:dc:72:0a:c1:17:e7:5a:f5:9f:23:a8:21:ab:ef:a4:
04:f8:3e:25:6b:3c:bd:c1:59:0b:a7:fc:66:00:13:30:13:f2:
7f:bd:e8:9f:bf:a0:e5:b4:91:4c:75:7d:87:bf:e4:22:0d:ec:
f4:30:56:6c:68:4b:35:6e:8c:58:70:a5:be:b6:34:82:bb:62:
e9:37:fd:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:50 2023 by rpki-client on console-fra.rpki-client.org