Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/deaef1-6241-49ab-9825-8fc373757684/1/ViDceQfLDQLCcAxUrIauTewYogI.roa
File: ViDceQfLDQLCcAxUrIauTewYogI.roa (raw, json)
Hash identifier: J9RWtUYRFYmL1rxhH/eBZsH6wCr0BpeWgDUi4KDUWBc=
Subject key identifier: 56:20:DC:79:07:CB:0D:02:C2:70:0C:54:AC:86:AE:4D:EC:18:A2:02
Certificate issuer: /CN=1d65b7b7b898faaee70767d09715c436a83fcdc2
Certificate serial: 01839D584074AC60A2EFAEA04BA3680D2269
Authority key identifier: 1D:65:B7:B7:B8:98:FA:AE:E7:07:67:D0:97:15:C4:36:A8:3F:CD:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HWW3t7iY-q7nB2fQlxXENqg_zcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/deaef1-6241-49ab-9825-8fc373757684/1/ViDceQfLDQLCcAxUrIauTewYogI.roa
Signing time: Mon 03 Oct 2022 10:15:49 +0000
ROA not before: Mon 03 Oct 2022 10:15:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39356
IP address blocks: 164.215.106.0/24 maxlen: 24
164.215.109.0/24 maxlen: 24
164.215.110.0/24 maxlen: 24
164.215.108.0/24 maxlen: 24
185.68.232.0/24 maxlen: 24
185.68.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:9d:58:40:74:ac:60:a2:ef:ae:a0:4b:a3:68:0d:22:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d65b7b7b898faaee70767d09715c436a83fcdc2
Validity
Not Before: Oct 3 10:15:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5620dc7907cb0d02c2700c54ac86ae4dec18a202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:d8:19:dd:c5:dc:3c:a9:03:66:70:e1:1a:12:
a5:6e:9b:e2:0b:85:0a:b8:89:ce:7b:22:20:72:cb:
bb:46:26:58:1b:b7:ac:e2:51:e8:5e:b3:b4:a3:81:
80:ca:09:5e:19:ce:cc:1f:5b:2f:07:dc:fe:2b:17:
f7:b7:21:a1:a9:19:b0:b2:47:94:f8:48:45:60:8f:
5e:45:64:6e:ee:41:6a:9f:15:4a:b0:7b:b2:08:a4:
a5:81:e6:1e:cc:0f:e3:56:49:79:9b:32:0c:6a:95:
17:c6:da:fa:c6:f3:97:a2:a7:d5:01:d8:e4:65:5a:
30:c6:94:8d:9b:2d:39:bd:fa:3a:1e:f2:a3:e5:9b:
4d:65:bd:fa:73:ad:d7:4d:73:1e:4f:8f:87:f5:b3:
ac:81:26:5b:c9:79:8a:a2:d2:15:c3:10:8d:5f:f4:
16:3f:c2:c2:9e:09:e1:fd:3a:56:f9:d3:66:dc:dd:
32:7a:58:3c:a6:1b:85:1a:d1:a0:5d:44:64:47:95:
65:b0:f7:41:ce:3b:25:de:5e:db:8f:0a:c9:60:bf:
e8:7c:f4:02:37:c6:b8:78:67:a5:b6:7c:f6:d6:b3:
ac:e3:43:e9:67:3d:e2:aa:1f:03:49:95:a4:a9:71:
d8:00:e9:3a:69:13:1a:7b:70:31:34:10:63:34:dd:
56:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:20:DC:79:07:CB:0D:02:C2:70:0C:54:AC:86:AE:4D:EC:18:A2:02
X509v3 Authority Key Identifier:
keyid:1D:65:B7:B7:B8:98:FA:AE:E7:07:67:D0:97:15:C4:36:A8:3F:CD:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HWW3t7iY-q7nB2fQlxXENqg_zcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/deaef1-6241-49ab-9825-8fc373757684/1/ViDceQfLDQLCcAxUrIauTewYogI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/deaef1-6241-49ab-9825-8fc373757684/1/HWW3t7iY-q7nB2fQlxXENqg_zcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.215.106.0/24
164.215.108.0-164.215.110.255
185.68.232.0/24
185.68.235.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:1b:0e:68:27:7f:a6:b8:aa:54:74:67:eb:0c:85:db:1b:14:
c8:9f:ee:07:d1:f3:6b:40:64:42:a9:2f:aa:b8:a1:7e:8f:e1:
18:be:99:84:3f:ff:b7:f8:01:73:bb:9e:8d:0b:f7:e8:42:25:
5d:53:93:fa:0b:09:69:4d:ce:fd:e7:f0:f3:77:6b:ae:3f:de:
cd:53:7a:d2:35:74:2e:c1:47:75:bd:e5:93:fc:cc:31:36:24:
ad:8f:22:29:42:b2:85:a2:53:88:c3:68:e7:ab:92:ed:db:61:
91:7b:47:62:f8:a1:cd:50:31:f9:92:22:da:af:3f:eb:4c:9f:
25:01:6e:2b:f5:90:fd:b0:9d:2b:2f:d9:a0:18:f3:ca:01:f7:
ee:ec:5c:35:31:1f:3a:0c:49:68:c9:84:b0:c9:74:73:73:80:
85:9c:81:78:42:99:92:d9:68:a8:04:b2:d4:9e:76:94:13:b8:
2b:e2:c7:7e:6d:d8:16:55:02:38:14:d1:dc:e2:98:0e:40:a6:
ed:56:9b:29:17:4f:0f:36:62:b4:fe:ce:ef:c6:5c:f3:69:25:
9a:b7:c9:2d:1a:58:4d:82:46:83:16:a0:cf:77:3a:af:b0:fa:
3a:7f:bc:0c:66:a3:88:18:b6:b1:48:f7:22:61:2c:cc:ce:8b:
01:c6:eb:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:05 2023 by rpki-client on console-fra.rpki-client.org