Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/c68d4d-8b64-4e75-9e54-57309df69642/1/VnXMMbn8E0XGtZu0NQjXGKBW63o.roa
File: VnXMMbn8E0XGtZu0NQjXGKBW63o.roa (raw, json)
Hash identifier: B15W1a+B9jqwAHT4quJYXLvBEnY5unKF06+iE2JW6ow=
Subject key identifier: 56:75:CC:31:B9:FC:13:45:C6:B5:9B:B4:35:08:D7:18:A0:56:EB:7A
Certificate issuer: /CN=8dc91c50bff9ca059e6e38b2e0c7eb852a630bba
Certificate serial: 0579108F
Authority key identifier: 8D:C9:1C:50:BF:F9:CA:05:9E:6E:38:B2:E0:C7:EB:85:2A:63:0B:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jckcUL_5ygWebjiy4MfrhSpjC7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/c68d4d-8b64-4e75-9e54-57309df69642/1/VnXMMbn8E0XGtZu0NQjXGKBW63o.roa
Signing time: Sat 01 Jan 2022 15:01:55 +0000
ROA not before: Sat 01 Jan 2022 15:01:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61134
IP address blocks: 194.169.126.0/24 maxlen: 24
195.20.212.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91820175 (0x579108f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8dc91c50bff9ca059e6e38b2e0c7eb852a630bba
Validity
Not Before: Jan 1 15:01:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5675cc31b9fc1345c6b59bb43508d718a056eb7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7d:31:a7:32:91:27:87:50:59:ee:d7:7b:1d:
7d:1e:a3:7f:2a:99:b1:46:91:f1:16:f1:df:eb:21:
48:df:72:7b:2e:5e:ec:50:b5:0b:65:33:d9:46:12:
2f:b2:f0:b2:91:b7:3e:6a:44:26:9e:9b:75:32:62:
da:44:ab:d1:9a:70:ac:65:60:b3:84:53:20:50:0b:
b1:56:fb:ee:8c:20:0f:70:c9:71:df:f5:31:34:bc:
b0:76:74:22:73:19:e4:e2:7e:b5:00:38:f7:30:f9:
29:67:3e:1d:e1:b7:70:6c:7f:82:a2:4e:b2:0b:83:
57:ce:b2:b3:de:f8:3a:80:1b:53:b9:ec:90:34:d6:
f5:4d:e0:a1:30:c3:48:e4:d7:bb:a7:29:73:98:19:
33:2a:bd:0a:79:c8:32:8d:1d:41:43:86:dd:16:98:
48:58:4b:31:ff:32:12:34:41:51:2f:bf:81:8b:0d:
9a:8f:2a:29:d1:da:bb:29:2f:ac:f5:1b:4d:e3:04:
c7:bf:9a:49:f0:f2:32:37:01:2b:7f:4c:4b:59:c6:
f1:31:22:e7:e5:e1:a0:d6:3b:79:cb:02:fc:92:02:
99:4b:75:e2:6c:a4:f0:33:83:31:92:c7:6e:7d:fb:
ae:d7:c0:29:4e:5b:39:6b:d3:8c:9d:ba:1d:1f:3c:
f0:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:75:CC:31:B9:FC:13:45:C6:B5:9B:B4:35:08:D7:18:A0:56:EB:7A
X509v3 Authority Key Identifier:
keyid:8D:C9:1C:50:BF:F9:CA:05:9E:6E:38:B2:E0:C7:EB:85:2A:63:0B:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jckcUL_5ygWebjiy4MfrhSpjC7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/c68d4d-8b64-4e75-9e54-57309df69642/1/VnXMMbn8E0XGtZu0NQjXGKBW63o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/c68d4d-8b64-4e75-9e54-57309df69642/1/jckcUL_5ygWebjiy4MfrhSpjC7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.169.126.0/24
195.20.212.0/23
Signature Algorithm: sha256WithRSAEncryption
54:fa:1a:39:57:e3:27:cf:fb:8f:9f:ec:ea:7b:06:58:02:5a:
d0:ac:72:d2:7b:40:cd:ac:9c:21:5c:48:c7:3b:a3:cb:39:82:
8c:12:10:12:6a:4a:0e:5e:ae:a1:83:81:c5:f1:9c:de:a9:97:
00:b8:07:62:1f:66:0e:6b:f8:8d:21:b6:aa:a2:c3:7a:05:54:
c9:7a:0b:69:65:bd:ee:b9:cf:b7:d8:90:eb:91:d9:1e:f6:ea:
b3:c5:b8:ed:99:2b:c6:62:ec:ca:93:cb:a1:b7:58:aa:c9:db:
8e:88:45:5b:ec:3d:ba:fb:b5:19:79:ef:ea:38:6e:10:a1:59:
96:4e:46:7d:3c:8c:42:ab:c6:30:1f:68:a1:5e:06:9f:bb:85:
2a:10:49:a9:1c:f8:aa:c4:50:ca:10:8b:cc:49:5f:3c:ee:16:
ec:b5:16:ec:2a:54:3c:59:3f:be:0e:4e:bc:93:65:a5:a5:2f:
1e:bc:46:d2:c2:94:eb:c5:08:e2:6a:5d:4a:5d:87:91:f8:ab:
c3:01:ba:01:79:7b:53:56:9f:2f:4a:0e:1b:d6:5c:4a:67:8b:
97:f3:aa:24:1e:9b:14:8c:ac:7f:39:16:f5:7f:6a:44:1b:c8:
20:b6:27:49:2a:e9:a6:a6:0c:93:d3:7b:8c:0b:72:71:1a:27:
62:3b:38:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:07 2024 by rpki-client on console-ams.rpki-client.org