Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/VqPPxugWiGBmidn2RM6bJ7JkGbE.roa
File: VqPPxugWiGBmidn2RM6bJ7JkGbE.roa (raw, json)
Hash identifier: y/MiXItggCCzWZz5bt/3knEW01iZI4/YqcHvT/iYQkY=
Subject key identifier: 56:A3:CF:C6:E8:16:88:60:66:89:D9:F6:44:CE:9B:27:B2:64:19:B1
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 179DF7F7
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/VqPPxugWiGBmidn2RM6bJ7JkGbE.roa
Signing time: Sat 01 Jan 2022 04:53:59 +0000
ROA not before: Sat 01 Jan 2022 04:53:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31762
IP address blocks: 185.249.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 396228599 (0x179df7f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:53:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56a3cfc6e81688606689d9f644ce9b27b26419b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:73:61:5e:b7:89:41:11:aa:ef:a8:5d:1e:76:
a5:52:0d:82:9a:b5:5b:14:a4:70:97:af:e7:40:54:
98:14:67:a8:63:62:32:a8:36:43:ef:48:2a:83:65:
09:63:02:95:fd:46:be:03:44:d5:da:ce:c7:8f:f0:
f9:28:5a:2a:bd:46:96:71:df:f9:22:de:ba:dc:47:
81:7f:d5:dd:eb:31:7f:2c:23:63:11:3f:0c:10:0c:
c2:a6:68:3d:e6:1f:a0:2b:12:cc:ec:79:09:8c:21:
f4:05:ef:64:89:f4:ca:c5:76:0c:49:25:2b:9d:bc:
52:94:68:1e:ec:e6:a1:f4:a9:f1:73:71:b2:c4:67:
67:b6:4c:62:42:38:03:5b:1e:ba:46:c6:9a:71:d7:
de:1c:2e:45:e0:03:fa:c3:f4:37:2a:7d:1b:de:27:
ec:50:aa:16:bd:55:0d:51:a5:a5:e5:ba:a5:4c:2d:
73:1e:5c:f0:bd:32:7d:f1:4c:43:b8:ed:b8:32:dc:
1a:c5:1e:d3:ae:e0:53:91:69:a2:74:fe:36:d2:f6:
49:d3:8b:5f:c9:b5:6a:c0:e7:dd:95:d6:71:bf:6c:
15:65:38:6b:3c:b7:c6:a9:67:d4:61:91:a7:31:08:
d9:29:9b:44:14:7b:45:55:01:c6:87:14:e4:3d:08:
40:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:A3:CF:C6:E8:16:88:60:66:89:D9:F6:44:CE:9B:27:B2:64:19:B1
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/VqPPxugWiGBmidn2RM6bJ7JkGbE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.219.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:bc:62:96:62:1c:f6:9d:59:64:c9:5d:a6:9f:09:02:73:47:
15:60:95:da:51:fa:bc:cd:d4:ee:a5:7b:61:69:6a:03:02:3a:
d7:a5:23:ab:82:b4:46:48:c6:cc:75:5d:73:43:3c:b3:e5:66:
36:e6:b2:59:08:03:ae:c4:1c:52:48:a0:b0:51:24:1b:71:d5:
af:8c:dd:fd:0b:1e:9d:a4:d4:bc:13:89:07:31:c0:d6:c1:6e:
1e:24:de:1e:ed:f8:18:e3:db:c8:58:57:30:cc:d5:2c:b2:26:
8b:7b:2c:59:bd:bb:57:dd:ff:5e:cd:49:4d:5c:4f:34:37:42:
85:2f:2f:a3:8b:0a:72:2c:08:bc:70:1b:42:19:76:3b:26:d4:
dc:3f:40:76:5c:a1:75:fa:da:4f:ac:e1:7e:a8:97:63:33:53:
3a:21:f8:a9:d0:7b:27:86:00:dc:be:7c:eb:22:0e:a0:29:11:
8f:a4:a3:18:a2:00:11:ac:ce:c8:ea:ac:53:9d:46:59:61:bb:
56:3c:23:97:7c:cf:22:e7:aa:b6:16:ca:2e:02:4b:6c:eb:0e:
60:23:40:8f:af:ca:c3:f4:77:8a:df:63:cd:cd:8d:4e:74:42:
f5:33:4b:1e:83:14:88:69:7f:18:08:36:ff:bd:ec:6a:32:74:
b2:fc:5a:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org