Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/5cfc47-2210-4739-a964-cef01362c4a8/1/VM13EgbcE5BeEmg0QBVmzqVGCmM.roa
File: VM13EgbcE5BeEmg0QBVmzqVGCmM.roa (raw, json)
Hash identifier: QCKA7NdHVWsVl+sSMlvuUMmu3mQWH0Hx76U+bp1T2WE=
Subject key identifier: 54:CD:77:12:06:DC:13:90:5E:12:68:34:40:15:66:CE:A5:46:0A:63
Certificate issuer: /CN=87ae0af282dd4e9bc1b82194aed3b19693d87298
Certificate serial: 0592BB01
Authority key identifier: 87:AE:0A:F2:82:DD:4E:9B:C1:B8:21:94:AE:D3:B1:96:93:D8:72:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h64K8oLdTpvBuCGUrtOxlpPYcpg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/5cfc47-2210-4739-a964-cef01362c4a8/1/VM13EgbcE5BeEmg0QBVmzqVGCmM.roa
Signing time: Sat 01 Jan 2022 11:55:18 +0000
ROA not before: Sat 01 Jan 2022 11:55:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43204
IP address blocks: 78.108.122.0/24 maxlen: 24
185.36.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93502209 (0x592bb01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87ae0af282dd4e9bc1b82194aed3b19693d87298
Validity
Not Before: Jan 1 11:55:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=54cd771206dc13905e126834401566cea5460a63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:54:84:ce:2a:6b:ce:b3:93:01:cf:ef:b1:1f:
69:bc:02:b6:c7:0f:90:27:8b:06:de:dd:a2:cd:31:
c8:5b:21:b1:90:47:eb:0e:5c:5d:73:1b:32:80:88:
df:71:dd:ec:df:21:1a:be:d3:ce:83:84:5e:45:1c:
8a:36:6a:65:83:13:e6:d7:69:56:1a:78:69:0a:d0:
d0:ff:e2:94:0e:c4:ec:8d:e4:49:02:1f:4c:2d:0c:
cd:68:b6:6f:a8:73:ef:2a:bb:8b:c5:06:d5:6e:58:
b4:bf:d1:cd:01:07:26:55:a2:9d:37:b8:dd:22:cd:
d6:b6:bc:7a:9f:88:ab:de:95:47:ab:fe:e5:5b:e4:
05:45:e5:0a:ed:34:a0:94:99:11:67:d9:8b:70:63:
99:c6:37:95:74:73:3c:5f:8f:a4:bc:74:0c:f9:3e:
49:32:8f:74:3b:4d:8c:74:70:cf:d6:95:b9:5b:58:
40:4c:06:ee:f9:52:e5:f2:2f:6e:39:ce:1d:e2:08:
6b:f6:2a:8c:e5:0d:f9:42:ae:c2:5a:14:20:1a:ce:
79:99:2e:9f:b9:57:d0:c0:53:92:a3:56:5f:cf:75:
3d:8a:3e:64:98:06:47:05:80:be:14:26:e7:76:5a:
61:5c:8a:4b:d2:f2:6c:1b:ba:60:4d:a3:9c:3c:5e:
30:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:CD:77:12:06:DC:13:90:5E:12:68:34:40:15:66:CE:A5:46:0A:63
X509v3 Authority Key Identifier:
keyid:87:AE:0A:F2:82:DD:4E:9B:C1:B8:21:94:AE:D3:B1:96:93:D8:72:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h64K8oLdTpvBuCGUrtOxlpPYcpg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/5cfc47-2210-4739-a964-cef01362c4a8/1/VM13EgbcE5BeEmg0QBVmzqVGCmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/5cfc47-2210-4739-a964-cef01362c4a8/1/h64K8oLdTpvBuCGUrtOxlpPYcpg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.108.122.0/24
185.36.21.0/24
Signature Algorithm: sha256WithRSAEncryption
55:fd:a2:d8:c5:e9:ae:83:0c:57:91:ed:27:ae:3e:a1:6d:48:
06:b7:9c:86:4a:18:3f:88:6e:f1:7d:0e:3d:8e:f4:03:72:af:
eb:35:05:a3:b5:67:ec:0f:0c:1a:30:45:56:0b:4d:02:5f:d9:
f9:e3:42:46:a6:25:57:10:43:91:f9:31:74:81:09:5b:6b:6d:
29:ad:df:8e:81:43:93:86:75:c5:74:83:ac:db:f8:be:6a:2c:
84:2e:3d:97:67:09:be:44:f5:57:9e:29:98:d8:9d:b5:fb:a6:
6c:f8:3b:59:c0:2d:f0:4f:6f:68:fb:4f:d6:11:13:9e:eb:a6:
7f:e9:88:90:c7:81:64:3e:ba:65:85:62:6e:b0:16:3d:1e:56:
9a:ac:34:d9:ce:81:60:1d:20:65:24:f0:3f:19:7f:97:8a:3f:
08:94:0b:ec:55:e9:5f:68:cf:0d:c1:59:ab:49:10:e8:6d:a7:
5e:b7:4e:5c:79:f2:37:81:48:20:66:9a:ae:5a:7a:3a:0e:7a:
2d:17:ba:b0:08:32:b3:8d:7f:17:5c:6b:e2:61:43:b4:bc:5d:
0d:1e:df:e7:b7:f4:67:f6:da:a8:cc:01:b4:f1:4e:5b:e7:b7:
4a:50:31:39:bc:63:af:1c:7d:d3:c4:29:35:93:8c:81:39:d4:
f1:7c:e9:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:51 2024 by rpki-client on console-fra.rpki-client.org