Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/VJhGYc5DzXICayhyxzkgyC2ZfiQ.roa
File: VJhGYc5DzXICayhyxzkgyC2ZfiQ.roa (raw, json)
Hash identifier: UpD3gQd8XPi/deMKjAmgup8lm5NuIw4ZgxyI24iEOtQ=
Subject key identifier: 54:98:46:61:CE:43:CD:72:02:6B:28:72:C7:39:20:C8:2D:99:7E:24
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 428C709F
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/VJhGYc5DzXICayhyxzkgyC2ZfiQ.roa
Signing time: Sat 01 Jan 2022 14:03:28 +0000
ROA not before: Sat 01 Jan 2022 14:03:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206774
IP address blocks: 192.36.155.0/24 maxlen: 24
194.103.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1116500127 (0x428c709f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:03:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=54984661ce43cd72026b2872c73920c82d997e24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:39:7e:da:3c:01:12:4f:52:ba:76:ed:a7:8e:
12:bb:a5:f1:e6:2e:3b:bb:e5:1e:3a:c1:c3:8d:fd:
59:cd:43:84:be:ea:70:ed:78:c1:83:98:eb:9d:7a:
a3:38:f4:44:14:c1:2e:d5:79:d2:85:35:42:7f:e5:
61:90:95:c4:0d:fb:3a:dd:01:89:0b:ab:a7:4b:21:
67:ab:eb:27:0c:90:68:2e:67:18:bb:d8:b6:de:38:
05:ab:fe:ab:8e:34:ed:91:6c:88:5a:eb:ed:a9:c9:
0b:aa:97:af:eb:84:e2:d4:2c:7a:16:f3:c4:8b:98:
d5:69:01:b2:7d:1d:73:67:1b:b5:9b:8c:43:0f:67:
be:ce:5b:94:81:45:92:9c:f4:f8:85:b3:66:4a:ad:
1b:93:78:ca:08:c2:21:57:15:74:71:bb:77:78:88:
f1:1d:ff:1e:d8:4c:d1:54:a4:0a:ac:0f:81:d6:5d:
84:51:c0:7e:3e:ee:70:ed:eb:b1:2f:0c:66:d3:e3:
7f:f3:7d:05:25:ea:f8:2d:7f:e9:bd:6e:ce:80:81:
20:06:5e:4c:11:f7:58:d6:2c:80:fc:64:32:37:1b:
48:ba:ba:f3:b1:1d:24:93:22:93:99:45:4c:ed:55:
99:1f:65:0f:c7:4e:4d:e6:6f:57:86:cb:66:5b:8e:
a2:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:98:46:61:CE:43:CD:72:02:6B:28:72:C7:39:20:C8:2D:99:7E:24
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/VJhGYc5DzXICayhyxzkgyC2ZfiQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.36.155.0/24
194.103.157.0/24
Signature Algorithm: sha256WithRSAEncryption
79:ca:d2:68:50:29:55:71:55:7e:e6:b2:c0:7c:ce:83:4f:4c:
08:16:ad:5d:a3:0f:cf:f0:a5:b0:49:91:b7:f2:55:c4:37:ea:
09:fa:53:a2:3a:b2:18:d1:b7:5c:f7:f9:66:e8:0f:0e:6b:71:
ef:20:ac:5c:c6:c0:16:31:92:63:d7:74:68:84:d1:a1:88:9f:
02:3d:f5:e1:5d:50:2e:fb:35:dc:b1:eb:fa:2e:ff:63:36:07:
ed:93:7d:94:0e:6d:0d:5c:46:c0:9b:d7:5e:2f:7c:51:94:83:
32:3d:aa:bc:71:a9:e7:0e:bf:b4:f3:bd:5e:cd:db:a8:f0:65:
c7:53:a6:64:2a:dc:76:f9:23:14:67:fc:24:10:f7:11:d9:59:
82:cf:bd:4a:b4:34:dd:4d:ba:5e:53:ae:38:e7:00:07:80:94:
eb:53:28:60:59:77:41:4f:23:a9:9f:1e:af:c3:f6:66:78:09:
a5:4d:41:ca:3a:b7:d3:ab:5c:b2:3b:b8:d4:e8:55:de:93:6a:
bf:b5:aa:e3:09:55:c7:2e:b7:46:4b:10:5e:a8:88:70:05:3c:
28:5b:73:e1:3f:5f:98:07:d3:59:e9:0d:1b:38:f3:d2:8c:0b:
14:74:7b:5f:38:a1:14:15:6b:f2:cb:fa:b5:c1:7d:a1:1d:49:
02:71:41:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:47 2023 by rpki-client on console-fra.rpki-client.org