Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/059d1a-ef94-4729-bf6d-42ae75b7957d/1/VZ0ea_N3hAz-aUG1lWqce1RVbQg.roa
File: VZ0ea_N3hAz-aUG1lWqce1RVbQg.roa (raw, json)
Hash identifier: iuEPuJ6BuDRgOF92zhcnmWksrCpcXrYw4qzG9eCM4JE=
Subject key identifier: 55:9D:1E:6B:F3:77:84:0C:FE:69:41:B5:95:6A:9C:7B:54:55:6D:08
Certificate issuer: /CN=0d7a912569b787d92e5355fffaed581fe50a29c0
Certificate serial: 01833C1FBBDF6467A69A0990576014C2702B
Authority key identifier: 0D:7A:91:25:69:B7:87:D9:2E:53:55:FF:FA:ED:58:1F:E5:0A:29:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXqRJWm3h9kuU1X_-u1YH-UKKcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/059d1a-ef94-4729-bf6d-42ae75b7957d/1/VZ0ea_N3hAz-aUG1lWqce1RVbQg.roa
Signing time: Wed 14 Sep 2022 13:10:56 +0000
ROA not before: Wed 14 Sep 2022 13:10:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51580
IP address blocks: 185.208.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:3c:1f:bb:df:64:67:a6:9a:09:90:57:60:14:c2:70:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d7a912569b787d92e5355fffaed581fe50a29c0
Validity
Not Before: Sep 14 13:10:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=559d1e6bf377840cfe6941b5956a9c7b54556d08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:76:2f:45:73:31:d2:15:13:4d:82:9e:37:2f:
e4:b6:c4:b8:37:30:2b:3b:5b:8e:79:db:ba:a2:65:
35:28:16:08:f6:e9:07:3d:91:c3:8e:16:d1:ef:e0:
91:81:2d:ef:be:2a:f0:1b:b1:32:94:c5:40:ee:11:
cf:35:cf:42:dc:93:e7:6d:f3:e5:4c:57:d3:7b:65:
cf:1a:4f:87:dc:23:d0:84:d1:47:c5:86:a9:39:00:
80:80:dd:e4:37:d2:e2:d0:1d:05:ac:8f:88:37:8d:
0c:e0:99:e3:e4:0c:20:ca:a4:da:8e:0f:81:12:a3:
e9:72:ab:bb:a3:31:35:96:c9:5f:61:27:70:dd:71:
27:c8:20:18:8c:1f:ba:7b:b5:24:96:dc:b9:d2:f7:
da:4e:44:85:db:ae:42:c5:6e:0f:aa:bc:df:ac:be:
40:34:3d:60:eb:3a:46:4a:29:e1:8d:94:a0:69:f1:
11:4a:de:a9:47:04:34:f6:01:a8:ec:3b:9d:be:e0:
09:f5:7d:3e:1f:34:b9:f5:85:c2:07:90:e7:9b:a9:
45:d2:2a:e5:79:48:38:8b:87:19:d4:ea:a3:44:ea:
ed:e0:62:79:24:60:9d:8a:5f:4f:86:ef:dd:72:37:
5f:5e:cd:4c:7f:b5:30:11:71:95:e4:dd:7d:12:60:
89:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:9D:1E:6B:F3:77:84:0C:FE:69:41:B5:95:6A:9C:7B:54:55:6D:08
X509v3 Authority Key Identifier:
keyid:0D:7A:91:25:69:B7:87:D9:2E:53:55:FF:FA:ED:58:1F:E5:0A:29:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXqRJWm3h9kuU1X_-u1YH-UKKcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/059d1a-ef94-4729-bf6d-42ae75b7957d/1/VZ0ea_N3hAz-aUG1lWqce1RVbQg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/059d1a-ef94-4729-bf6d-42ae75b7957d/1/DXqRJWm3h9kuU1X_-u1YH-UKKcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.208.19.0/24
Signature Algorithm: sha256WithRSAEncryption
30:f5:62:37:e3:01:c2:45:25:80:5c:6b:77:20:d8:cf:71:a6:
51:ae:81:7e:49:5b:89:dc:0e:c7:e2:7b:5f:cd:a8:61:ec:b9:
15:87:27:26:d0:27:99:70:de:b9:33:1b:3c:dd:db:6d:ad:01:
2f:c9:39:f4:ab:95:d5:bb:8f:fe:aa:32:89:b0:dc:d8:a3:bf:
ea:91:e0:39:7f:a5:06:92:78:0a:53:3c:cf:1b:14:ca:30:e4:
ea:af:f8:93:81:b0:a5:e2:a5:91:ca:db:99:82:10:cd:76:d5:
18:7e:d6:c8:37:e6:81:68:8e:a1:a2:51:58:22:d0:b3:54:f5:
bc:03:d9:11:4d:f6:b7:d8:b9:8c:dd:b8:11:cb:85:d8:a5:24:
f0:6d:78:a6:cd:e2:b2:d6:c9:d7:eb:10:9a:02:c5:5c:1f:6c:
e6:91:a6:93:e9:f7:2d:c0:53:87:69:63:e2:e4:19:28:60:e2:
ef:12:31:ec:73:5d:bd:e3:5b:6b:1a:27:c4:8d:b6:db:dd:48:
5f:20:6b:14:ae:ff:97:18:7b:cb:86:8b:7d:5a:a1:e4:02:a1:
02:32:d0:d9:88:7f:6a:b2:6b:5e:3b:63:6f:76:4d:d5:79:84:
df:14:66:41:47:dd:94:1c:21:27:65:c3:dd:91:7a:69:b3:6e:
7e:f1:68:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:42 2023 by rpki-client on console-ams.rpki-client.org