Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/45ac0f-383a-4eb4-b188-996189f9ce14/1/VympDhBO8yq50ax4zPVDbTYtTRs.roa
File: VympDhBO8yq50ax4zPVDbTYtTRs.roa (raw, json)
Hash identifier: JLvp2PKhyeyfTNBSs9+0KVeVqRcuBNB05ApOmnLuBLk=
Subject key identifier: 57:29:A9:0E:10:4E:F3:2A:B9:D1:AC:78:CC:F5:43:6D:36:2D:4D:1B
Certificate issuer: /CN=09f0dcceb74f1185acd97aeeaac25dda5e9b0936
Certificate serial: 018529BEEA9843958ED23E0CB7A778C0EDF5
Authority key identifier: 09:F0:DC:CE:B7:4F:11:85:AC:D9:7A:EE:AA:C2:5D:DA:5E:9B:09:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CfDczrdPEYWs2XruqsJd2l6bCTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/45ac0f-383a-4eb4-b188-996189f9ce14/1/VympDhBO8yq50ax4zPVDbTYtTRs.roa
Signing time: Mon 19 Dec 2022 09:37:35 +0000
ROA not before: Mon 19 Dec 2022 09:37:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136714
IP address blocks: 178.248.112.0/22 maxlen: 24
178.248.118.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:29:be:ea:98:43:95:8e:d2:3e:0c:b7:a7:78:c0:ed:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09f0dcceb74f1185acd97aeeaac25dda5e9b0936
Validity
Not Before: Dec 19 09:37:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5729a90e104ef32ab9d1ac78ccf5436d362d4d1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:7c:eb:50:84:47:23:7e:11:3f:61:70:c4:04:
07:ac:0c:83:4d:43:0b:12:19:f6:b7:82:bc:7b:8c:
8b:ed:56:ad:16:e7:58:12:e7:a2:a7:5e:f7:ba:73:
c2:39:f7:a4:09:5f:67:8e:63:a8:4c:89:e1:5a:2f:
43:f0:8f:8f:96:12:f2:52:bc:78:87:3f:2a:e6:f4:
2c:69:a4:68:d5:61:ae:7e:0b:76:09:06:9f:4a:64:
55:e9:16:4a:a8:b3:93:92:be:32:3d:f3:e8:ab:51:
5c:15:0f:60:85:4a:bc:f6:ca:8b:9e:de:db:b7:1c:
28:fe:75:8b:42:35:05:96:ff:fd:92:50:5d:91:18:
48:92:26:09:47:55:45:da:e1:cb:9a:74:b0:41:08:
1d:78:98:d4:a3:02:32:dc:ce:32:7d:40:62:c3:ad:
3e:bf:b2:f7:09:40:2a:ca:27:77:56:49:d0:23:3d:
45:8a:c1:3b:a0:1f:75:0a:d6:59:10:f8:38:43:46:
c2:66:30:3f:2f:b1:2d:c8:40:91:20:33:3a:0c:62:
b7:aa:be:cf:37:ee:8e:40:9b:3b:70:f3:df:98:2a:
63:f2:b6:58:d8:0f:55:0c:b3:cb:62:4b:c4:2a:93:
dd:e4:ad:2b:8c:41:cc:29:09:b3:ab:f4:2e:29:92:
47:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:29:A9:0E:10:4E:F3:2A:B9:D1:AC:78:CC:F5:43:6D:36:2D:4D:1B
X509v3 Authority Key Identifier:
keyid:09:F0:DC:CE:B7:4F:11:85:AC:D9:7A:EE:AA:C2:5D:DA:5E:9B:09:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CfDczrdPEYWs2XruqsJd2l6bCTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/45ac0f-383a-4eb4-b188-996189f9ce14/1/VympDhBO8yq50ax4zPVDbTYtTRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/45ac0f-383a-4eb4-b188-996189f9ce14/1/CfDczrdPEYWs2XruqsJd2l6bCTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.248.112.0/22
178.248.118.0/23
Signature Algorithm: sha256WithRSAEncryption
24:60:fc:b5:11:8c:1d:54:5d:2d:12:3a:94:fb:e7:1d:a3:b1:
5d:a7:4f:93:ff:bc:89:96:58:dd:ea:fa:5c:96:f3:29:c6:f7:
27:e4:47:6e:a8:a5:0c:34:65:3d:49:0b:f1:ca:6b:fe:d1:b2:
c1:5d:9d:bf:d0:45:ee:2d:e1:95:64:74:0c:26:d7:38:c7:d6:
5e:10:7c:b9:36:5d:74:58:f1:68:c9:61:d3:2b:1b:35:5f:97:
08:d3:c2:9f:74:49:aa:29:a3:58:9e:2c:04:00:03:ad:f9:46:
60:0d:66:db:18:2f:13:4b:40:f8:c9:ee:56:a3:0d:c3:b3:90:
9c:23:fc:f0:b0:c3:62:c7:1d:b1:7a:1b:96:dd:e9:16:52:5a:
12:dc:82:f1:41:34:49:45:67:8d:87:4d:0f:7f:00:d6:f4:ea:
a9:69:f5:5d:3e:3e:f0:f4:92:e2:66:97:9a:bd:46:b1:de:d9:
ce:2f:c9:3e:5d:41:64:03:b7:d8:90:3e:6c:5f:85:ab:eb:b3:
4f:d2:a1:6f:b4:e2:f7:bd:5b:15:70:0e:ed:2d:86:5e:70:65:
15:bf:2f:f0:7b:69:9e:2f:d7:9f:ed:c3:c2:18:a3:6a:19:9e:
dc:d7:ae:53:31:49:c4:f2:71:96:0f:5e:46:52:26:c6:fb:a0:
a7:36:66:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:17 2023 by rpki-client on console-fra.rpki-client.org