Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/Vgw6_3Kv0anU9NZG21-tU7-7mcA.roa
File: Vgw6_3Kv0anU9NZG21-tU7-7mcA.roa (raw, json)
Hash identifier: 6PAJmWW8aOfLWYpW9LK50wl1wRb8UJtrvdMWx0Cn1us=
Subject key identifier: 56:0C:3A:FF:72:AF:D1:A9:D4:F4:D6:46:DB:5F:AD:53:BF:BB:99:C0
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 444174B5
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/Vgw6_3Kv0anU9NZG21-tU7-7mcA.roa
Signing time: Fri 17 Jun 2022 07:23:44 +0000
ROA not before: Fri 17 Jun 2022 07:23:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2836
IP address blocks: 192.121.86.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1145140405 (0x444174b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jun 17 07:23:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=560c3aff72afd1a9d4f4d646db5fad53bfbb99c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:9f:12:a2:3e:92:44:e5:1d:9f:c2:e4:ea:59:
b1:f8:bb:3a:9f:ab:b2:c0:a4:ba:54:52:01:72:44:
77:e7:37:a9:bb:a3:ff:7c:52:a2:d0:1f:ea:8c:f8:
e1:8b:16:78:38:30:08:2a:57:df:e3:4e:3c:86:b5:
87:15:ae:f8:cd:33:78:d0:a6:6d:82:6d:91:be:72:
78:0e:82:97:72:df:36:b6:ad:71:94:1d:13:7d:0b:
22:ca:28:f4:38:25:54:53:a2:97:e7:8b:c9:d2:01:
18:e6:8d:e2:e7:09:17:c8:6a:07:cb:35:0f:ea:4c:
95:62:43:36:63:9e:63:e0:d0:90:18:a6:6f:b6:72:
b6:0e:d8:9d:4f:15:2a:50:8d:d4:67:73:77:40:1e:
d1:63:26:4c:e8:e4:72:d9:d2:d4:fc:01:16:aa:85:
72:29:70:cf:65:58:0a:55:25:72:6a:8c:93:81:81:
0c:88:0b:51:27:31:5e:b9:d1:18:07:bf:6e:ea:33:
69:38:5d:a6:23:94:60:1e:1a:8d:c2:d0:96:57:c6:
49:9f:82:64:94:d4:58:f8:63:32:60:76:b8:cd:36:
0e:8e:a3:91:54:ad:89:d3:72:08:be:71:a4:f6:d7:
37:78:32:85:5b:94:b4:83:fa:ee:6e:d7:73:f3:5d:
a5:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:0C:3A:FF:72:AF:D1:A9:D4:F4:D6:46:DB:5F:AD:53:BF:BB:99:C0
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/Vgw6_3Kv0anU9NZG21-tU7-7mcA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.121.86.0/24
Signature Algorithm: sha256WithRSAEncryption
87:27:1c:70:4c:4e:5b:3c:48:f7:40:94:4b:62:d3:d9:79:ea:
08:ea:c8:04:55:d9:cb:3e:80:08:d3:f9:b1:84:49:b3:40:ff:
f7:46:3a:c5:f4:09:e1:e8:05:d9:b5:89:2e:b8:ba:8f:85:d5:
41:ce:dc:61:98:db:17:be:ec:78:12:10:d7:7f:f7:30:05:98:
2a:ab:1b:78:c0:5c:35:6e:90:f5:e8:64:9f:dc:98:23:73:66:
71:c4:ca:fb:12:2f:c2:e2:29:40:34:aa:5d:8b:bc:3f:ec:fc:
58:f5:5f:96:a0:41:52:be:e7:5a:32:b6:17:94:57:cd:a2:d9:
36:52:00:2f:9e:2b:87:6e:3f:8e:ce:65:a9:89:27:c9:6f:41:
6a:6c:05:09:c2:0d:b4:fa:fa:e9:6a:2f:45:9d:f1:8e:fa:ae:
53:c1:f9:32:0b:e3:15:98:68:28:40:3f:c7:20:74:cf:0f:a4:
78:c7:5f:5d:78:b1:4c:a1:3e:1a:04:81:94:b7:ac:30:a2:8c:
b3:98:7d:77:e1:c8:0f:31:e8:73:88:44:5b:e5:5c:55:2d:ea:
8a:8a:ed:32:c5:d2:87:51:a7:42:d8:35:e5:7e:73:99:40:01:
c4:34:b1:e1:a9:d0:f8:fc:56:f8:a5:70:5e:ba:e7:2f:a7:87:
ed:94:2b:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:38 2023 by rpki-client on console-ams.rpki-client.org