Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/Vjo4vQrZ68mBTlpEgP54lxyk8FU.roa
File: Vjo4vQrZ68mBTlpEgP54lxyk8FU.roa (raw, json)
Hash identifier: LDgdYvzZuWA8HZP1SaY69BcQpzT9fGX6qZGj/YnkhdY=
Subject key identifier: 56:3A:38:BD:0A:D9:EB:C9:81:4E:5A:44:80:FE:78:97:1C:A4:F0:55
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 01852A39C15749CEF1931BE6B7CD4C7B98FE
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/Vjo4vQrZ68mBTlpEgP54lxyk8FU.roa
Signing time: Mon 19 Dec 2022 11:51:46 +0000
ROA not before: Mon 19 Dec 2022 11:51:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199738
IP address blocks: 176.32.54.0/24 maxlen: 24
185.48.84.0/22 maxlen: 24
176.32.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2a:39:c1:57:49:ce:f1:93:1b:e6:b7:cd:4c:7b:98:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Dec 19 11:51:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=563a38bd0ad9ebc9814e5a4480fe78971ca4f055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:30:fe:86:57:a7:2b:63:3c:d7:45:97:b0:09:
f0:11:26:0a:3b:bf:36:8b:bf:2b:90:26:3c:e8:8d:
0a:22:a9:63:1e:01:ef:dc:f9:25:b6:45:df:c6:76:
2d:99:5f:03:af:62:54:cc:c3:ef:c3:06:0d:3d:40:
e9:ec:09:fa:1e:4d:51:a2:97:ec:d0:d8:86:f2:2d:
d9:c5:a5:c2:42:eb:e2:13:5b:dd:04:a9:1d:6d:38:
44:8f:40:85:01:0c:c7:9a:4b:b6:24:e8:0c:f5:41:
30:cf:ed:76:23:b7:4c:5d:cb:cd:9d:47:db:49:1f:
7f:3d:f5:a5:32:e2:b3:c3:b2:89:8b:e1:b5:92:b5:
15:e3:ed:83:59:00:b0:09:93:fe:15:c8:4d:cf:74:
89:43:58:f8:5e:5e:e1:7d:7d:d5:11:f3:85:b5:34:
5b:a2:e9:b3:3c:8a:9f:10:26:fd:2a:6f:d6:0c:7e:
82:63:fe:79:ce:23:cb:71:20:12:55:68:54:73:d2:
73:ee:90:25:b2:bd:04:0e:ca:aa:74:ed:e0:4e:fc:
3b:ae:f3:a1:a1:63:99:5b:27:72:a3:4e:23:86:a1:
e5:67:32:dc:b3:5c:c2:e4:3c:c9:0b:e6:a8:e5:2a:
79:b1:a1:97:b1:bf:a3:72:49:10:84:b1:f6:8f:ce:
40:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:3A:38:BD:0A:D9:EB:C9:81:4E:5A:44:80:FE:78:97:1C:A4:F0:55
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/Vjo4vQrZ68mBTlpEgP54lxyk8FU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.32.50.0/24
176.32.54.0/24
185.48.84.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:20:b2:d4:f6:97:ed:8f:10:aa:81:71:14:a4:01:95:af:9d:
29:bf:31:c5:ca:fe:51:62:0d:2b:8c:dd:35:f8:c6:2b:df:86:
85:b4:f7:02:87:70:17:d5:24:08:55:b3:e5:c2:53:20:5c:78:
aa:50:6e:18:82:01:44:82:7a:36:ac:f7:47:68:7c:c3:95:b5:
bd:d1:e4:35:27:fe:95:54:de:86:19:37:f3:98:16:18:1e:1b:
21:24:0d:97:c2:54:12:03:a8:b8:55:ef:58:e3:0f:ba:e7:99:
d6:aa:a8:7e:21:82:90:bb:49:b7:bb:98:41:0d:a1:74:8a:0c:
e5:9e:6c:f3:22:41:88:3b:1a:5d:c9:a9:44:79:14:8f:52:b4:
2d:7d:68:c6:6d:2f:af:d1:7a:66:65:cf:59:e8:4d:3a:5b:4a:
b4:08:f5:fe:44:94:a8:b1:3e:e1:42:49:09:1d:f8:fc:6f:61:
f6:32:b1:68:e9:c6:3b:e3:16:82:13:1a:b3:13:89:ef:88:13:
b8:79:1d:1d:e6:a5:6e:db:af:76:ec:34:c2:c8:48:db:a6:46:
05:ea:f6:08:47:af:1b:84:ce:93:53:4f:b4:80:3d:1f:5e:98:
8c:f9:d1:d4:f7:7a:f3:f0:b4:22:82:26:76:c6:a8:6a:7c:7f:
65:62:ca:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:50 2024 by rpki-client on console-ams.rpki-client.org