Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/VCMhKWbklNGRzPXlogiU20beCMM.roa
File: VCMhKWbklNGRzPXlogiU20beCMM.roa (raw, json)
Hash identifier: /2m4GpoLhH9ImVCEOlzXrXxQpGSWdAkEkzZ+t6VyZ4E=
Subject key identifier: 54:23:21:29:66:E4:94:D1:91:CC:F5:E5:A2:08:94:DB:46:DE:08:C3
Certificate issuer: /CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Certificate serial: 3941497B
Authority key identifier: 5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/VCMhKWbklNGRzPXlogiU20beCMM.roa
Signing time: Sat 01 Jan 2022 03:53:01 +0000
ROA not before: Sat 01 Jan 2022 03:53:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12364
IP address blocks: 195.251.208.0/20 maxlen: 20
83.212.88.0/22 maxlen: 22
2001:648:2810::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 960579963 (0x3941497b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Validity
Not Before: Jan 1 03:53:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5423212966e494d191ccf5e5a20894db46de08c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9e:f0:24:f9:cc:c8:07:5f:44:1a:a4:99:92:
83:a3:fd:80:9f:f7:64:bb:0c:88:df:f4:f0:a7:b3:
57:5d:37:e4:12:14:09:4a:5f:d4:77:77:f4:5a:bd:
6e:51:91:0d:2a:68:8c:a2:2a:e6:18:cb:98:c4:48:
e0:f8:ba:30:0f:e9:af:c4:53:05:5a:71:c3:a0:80:
64:02:9a:bd:b2:eb:be:78:93:fc:45:b3:7c:2c:ba:
4f:fb:4b:d5:c0:59:0b:17:c5:27:e8:8f:3b:03:3b:
a0:6a:1f:94:9d:20:0b:f2:d3:12:f3:c3:c7:41:25:
80:ab:77:fe:32:e5:62:6b:68:ac:c1:1c:6b:94:a6:
ad:ad:58:76:87:97:3f:c0:de:6c:a9:68:8e:ef:ef:
1f:1a:88:9e:73:89:73:72:ae:b1:46:19:31:e7:46:
55:b6:20:7d:68:16:d0:7c:81:3a:8d:73:db:c5:9e:
e5:56:66:a2:2a:6e:ea:39:29:d8:1b:94:bd:7c:76:
8c:14:55:16:7f:83:a6:57:9a:97:b9:c0:00:cf:f5:
66:dc:5e:70:75:98:20:b2:32:61:cf:7c:e8:33:98:
dd:e4:08:7c:03:b7:2b:8a:0b:97:d2:ed:4f:52:0f:
02:da:45:ba:75:13:96:d9:47:7b:13:27:17:b9:83:
e5:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:23:21:29:66:E4:94:D1:91:CC:F5:E5:A2:08:94:DB:46:DE:08:C3
X509v3 Authority Key Identifier:
keyid:5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/VCMhKWbklNGRzPXlogiU20beCMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Wm-SlVId8woVj1Brp8uHOrlSncM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.212.88.0/22
195.251.208.0/20
IPv6:
2001:648:2810::/48
Signature Algorithm: sha256WithRSAEncryption
31:8b:87:65:3b:a7:00:29:6d:14:c9:c1:ee:cb:43:6a:14:78:
c5:e4:9a:e1:10:59:67:97:b2:9e:53:21:ab:ff:58:fb:ee:bc:
27:da:34:b0:80:8b:40:08:bf:0c:6d:f8:ee:30:ca:6a:37:8d:
e1:7e:bb:32:0b:61:09:7d:67:91:f5:2c:6e:b4:78:1e:5e:c0:
a9:e2:f7:b1:b0:fb:ce:c3:2f:a7:1b:fc:ce:f8:2c:4b:71:6a:
8c:a9:21:e3:af:e2:44:a7:f5:29:f1:84:1a:a9:d2:04:e4:a9:
3b:9e:96:01:49:a4:be:e7:c5:dd:53:65:c0:88:77:b0:48:35:
4a:ba:17:bf:4f:55:94:84:57:2b:d3:96:a8:89:fc:c1:03:3a:
3d:51:8e:1f:fd:f6:92:b9:05:b2:56:58:7e:da:7d:93:91:c3:
f5:65:37:a3:4d:c9:5b:f6:c6:3b:b0:33:03:6e:a7:e0:0f:ad:
41:79:9f:14:f0:72:de:2b:c7:40:b4:ee:3b:76:c0:5b:46:92:
5b:15:eb:9b:e9:5b:b3:3e:19:2e:4d:ae:bc:44:e1:54:a6:c1:
e4:62:26:da:6f:e4:cb:a0:ca:dc:fc:7e:1e:dd:70:9c:16:f0:
84:a2:bb:71:45:9e:4e:aa:25:62:cd:c7:1e:90:8f:36:37:ea:
94:d1:1e:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:49 2024 by rpki-client on console-ams.rpki-client.org