Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/vaZrVxxzMd3p_7Po8HpoYm3ERV0.roa
File: vaZrVxxzMd3p_7Po8HpoYm3ERV0.roa (raw, json)
Hash identifier: z4SG63njlQOeLFRqhnvupJosRyI22T1PuHMjER1bDH8=
Subject key identifier: BD:A6:6B:57:1C:73:31:DD:E9:FF:B3:E8:F0:7A:68:62:6D:C4:45:5D
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 1791E82C
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/vaZrVxxzMd3p_7Po8HpoYm3ERV0.roa
Signing time: Sat 01 Jan 2022 04:53:52 +0000
ROA not before: Sat 01 Jan 2022 04:53:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 185.182.50.0/24 maxlen: 24
185.119.253.0/24 maxlen: 24
185.177.81.0/24 maxlen: 24
185.236.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 395438124 (0x1791e82c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:53:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bda66b571c7331dde9ffb3e8f07a68626dc4455d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a6:c1:ac:b4:03:07:6e:b8:38:b4:3b:65:84:
71:75:17:ba:d4:10:e4:fb:a3:eb:dc:97:82:2a:4c:
27:9b:77:a8:e6:cb:2d:33:dc:e0:2f:fe:24:c5:45:
b3:2f:dd:d3:62:13:4e:cd:8d:77:e9:30:cf:0a:08:
74:83:c4:4c:a6:ee:1e:1b:e3:5c:ee:25:6c:ee:fd:
9f:72:43:5c:34:cd:09:89:b5:a6:c2:12:a3:c0:fb:
cc:27:1a:06:a6:ba:60:29:25:e7:4d:01:70:de:dc:
65:d8:d4:39:34:01:e0:65:74:04:1e:41:83:95:57:
6c:cf:da:f6:d0:b5:d3:4c:ea:92:bc:bc:55:f6:5e:
0f:88:ec:0c:67:f7:4a:dd:76:39:ae:c1:f2:b8:83:
41:9c:4a:b6:fa:c5:ad:bd:7f:1e:65:c1:82:51:cd:
63:07:68:d4:3b:8d:93:84:0d:0e:63:b8:f4:ee:51:
f0:68:55:f7:32:a5:e3:7b:93:46:88:78:3e:4d:5b:
3a:e4:e9:21:a3:f8:c1:eb:97:8d:c7:fa:23:7c:ee:
e5:74:89:80:29:b0:c6:fe:5e:fb:5f:55:be:7d:c3:
6d:2b:0e:59:b0:db:03:96:cd:9c:57:dd:50:ee:fd:
30:56:2e:95:d6:c7:dd:e9:83:73:9f:88:1c:b2:dc:
d1:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:A6:6B:57:1C:73:31:DD:E9:FF:B3:E8:F0:7A:68:62:6D:C4:45:5D
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/vaZrVxxzMd3p_7Po8HpoYm3ERV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.253.0/24
185.177.81.0/24
185.182.50.0/24
185.236.82.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:4b:47:05:4d:d0:42:5e:f7:be:01:6c:02:37:8e:33:23:ad:
a5:ee:ff:53:d7:08:0e:99:18:81:b1:57:f2:78:58:dc:57:f2:
78:1b:80:9d:30:de:76:20:19:74:92:20:6a:f3:3c:79:e3:74:
4e:b7:56:c5:c8:03:11:fd:10:ef:d3:b6:39:78:03:8e:59:3b:
3b:80:78:54:c1:9b:52:f9:a6:95:32:ac:82:42:ac:e4:02:dd:
89:91:05:64:43:eb:7a:0c:1a:54:b8:9c:07:b6:9e:e0:b0:e9:
6b:40:2e:37:3b:54:88:86:a7:98:45:36:d1:d6:18:b6:06:56:
ff:58:84:20:25:d8:57:f1:f9:8b:84:3f:5c:28:e8:1e:f1:4d:
0d:d5:18:7d:72:01:0c:92:83:93:f6:d9:a8:b0:0a:bd:45:18:
75:6b:83:9b:45:f4:57:11:7c:52:8e:1d:84:38:38:28:7b:41:
31:37:44:2c:67:d7:7f:c5:fc:35:1b:a0:83:10:5a:37:72:55:
1e:45:13:0f:ce:2c:88:ef:40:51:3a:55:ec:a3:69:05:d2:a7:
0e:57:1f:53:4e:aa:70:60:f2:0e:cf:4b:6d:b5:d0:6b:a1:50:
1b:02:c1:d5:3a:ee:2d:14:8c:2f:6b:3a:8b:bd:ed:49:16:1d:
df:44:e2:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org