Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/611a40-b444-490c-9dee-27d608d20873/1/Vz_vATXHd0yUxHSzW5cyBZOd9Y0.roa
File: Vz_vATXHd0yUxHSzW5cyBZOd9Y0.roa (raw, json)
Hash identifier: u1hVWPcfsFWef6OfsNOvAcF1QddcMmmtgkNCIhdKlMI=
Subject key identifier: 57:3F:EF:01:35:C7:77:4C:94:C4:74:B3:5B:97:32:05:93:9D:F5:8D
Certificate issuer: /CN=6044f6ea79e4e2a3e02a8b38ed0cd3a4059138ac
Certificate serial: 11D268F1
Authority key identifier: 60:44:F6:EA:79:E4:E2:A3:E0:2A:8B:38:ED:0C:D3:A4:05:91:38:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YET26nnk4qPgKos47QzTpAWROKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/611a40-b444-490c-9dee-27d608d20873/1/Vz_vATXHd0yUxHSzW5cyBZOd9Y0.roa
Signing time: Sat 01 Jan 2022 09:58:03 +0000
ROA not before: Sat 01 Jan 2022 09:58:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39534
IP address blocks: 194.50.38.0/24 maxlen: 24
185.151.68.0/24 maxlen: 24
185.151.70.0/24 maxlen: 24
185.151.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 299002097 (0x11d268f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6044f6ea79e4e2a3e02a8b38ed0cd3a4059138ac
Validity
Not Before: Jan 1 09:58:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=573fef0135c7774c94c474b35b973205939df58d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:bb:c4:95:a8:19:8d:1e:13:28:ae:20:16:c8:
76:00:27:a9:e0:5b:25:a6:70:9a:39:52:33:4e:8c:
02:ed:0c:c0:3a:5d:9d:ac:c3:74:78:fc:35:5c:fa:
db:73:0e:02:03:9c:50:e7:d2:dd:0f:a6:56:6f:a4:
df:c0:f9:10:ea:57:80:72:0e:e2:b9:0e:2b:18:d4:
f9:79:5f:b3:e1:ee:de:a6:ee:44:1d:4e:7d:f2:8e:
83:5a:16:b1:d5:3d:6d:15:83:ea:98:7f:b3:f6:1e:
2f:da:5e:3c:11:75:42:e5:5c:c0:7b:18:9e:b5:61:
9c:05:9c:2e:76:61:71:f7:e6:31:85:18:6b:6a:16:
55:0f:e7:b7:bf:d2:3d:99:28:81:80:e0:a2:63:e1:
46:9e:42:c0:58:fc:60:5d:06:61:2e:71:be:46:04:
ab:2a:8c:10:ac:1d:57:4f:94:84:b1:9b:67:b3:43:
28:70:1b:a0:44:3e:b2:43:b5:ca:b6:a8:ac:42:39:
e9:ac:7d:7c:86:cd:e3:94:cb:e8:1e:a1:46:39:ea:
c1:02:5c:a7:a4:50:69:27:71:e0:20:6a:e3:55:20:
9c:81:35:17:96:f2:b8:72:26:f6:32:0d:df:d1:d4:
f0:4f:03:8b:45:35:c4:25:32:d2:f3:83:90:4f:4f:
8f:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:3F:EF:01:35:C7:77:4C:94:C4:74:B3:5B:97:32:05:93:9D:F5:8D
X509v3 Authority Key Identifier:
keyid:60:44:F6:EA:79:E4:E2:A3:E0:2A:8B:38:ED:0C:D3:A4:05:91:38:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YET26nnk4qPgKos47QzTpAWROKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/611a40-b444-490c-9dee-27d608d20873/1/Vz_vATXHd0yUxHSzW5cyBZOd9Y0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/611a40-b444-490c-9dee-27d608d20873/1/YET26nnk4qPgKos47QzTpAWROKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.151.68.0-185.151.70.255
194.50.38.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:c2:1d:73:06:39:a6:60:26:be:8f:19:30:63:04:30:8b:fc:
de:9e:51:65:0d:e7:df:7a:26:5a:51:25:b1:d1:5f:c4:6d:ef:
b6:ca:da:7d:45:33:5a:16:ef:55:57:f4:85:ff:3e:44:52:37:
09:d1:c0:1b:b7:69:15:46:61:c8:be:4f:a5:15:25:b8:36:0f:
1d:2a:95:98:05:19:35:93:36:53:8a:51:d9:7f:cc:0c:a3:f6:
17:9d:5a:fe:b6:f0:f8:b9:43:1a:9e:64:8d:27:b0:f9:81:52:
2a:d5:06:82:e7:8f:9d:3a:63:be:19:fb:83:64:3f:4a:3a:af:
8d:9a:75:eb:b8:fd:d8:46:50:52:2d:66:c7:a7:c3:72:68:27:
99:81:fd:9a:d9:c5:f7:ba:1d:1e:27:d7:e3:9d:f1:23:21:4b:
5f:5b:b2:f7:94:7e:2e:f7:e1:48:a5:4f:fd:d0:d6:aa:90:6a:
31:3f:a6:f7:6b:a0:6e:1e:ac:74:97:4d:9b:f6:0f:c1:a9:6f:
c4:b8:b5:a7:35:94:e3:76:fb:06:4e:a8:e3:84:d4:92:d1:a0:
98:7f:96:4a:8e:ec:44:2f:16:be:1f:12:bc:6d:8b:81:0e:af:
ba:e0:98:aa:8b:ac:8d:99:d1:98:3d:b8:25:18:5b:13:de:78:
da:65:6f:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:44 2024 by rpki-client on console-ams.rpki-client.org