Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/VLS4-yfSwtdp3-T4MsQy1wrW26o.roa
File: VLS4-yfSwtdp3-T4MsQy1wrW26o.roa (raw, json)
Hash identifier: 9PnyT+p66b9amUfgRVMBm9q7QyzPDqiOVlPYypX+34I=
Subject key identifier: 54:B4:B8:FB:27:D2:C2:D7:69:DF:E4:F8:32:C4:32:D7:0A:D6:DB:AA
Certificate issuer: /CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Certificate serial: 018423C088687D928B8EDF79B452467C9215
Authority key identifier: C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/VLS4-yfSwtdp3-T4MsQy1wrW26o.roa
Signing time: Sat 29 Oct 2022 12:38:51 +0000
ROA not before: Sat 29 Oct 2022 12:38:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62257
IP address blocks: 194.36.175.0/24 maxlen: 24
194.180.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:23:c0:88:68:7d:92:8b:8e:df:79:b4:52:46:7c:92:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Validity
Not Before: Oct 29 12:38:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=54b4b8fb27d2c2d769dfe4f832c432d70ad6dbaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ae:10:14:05:5e:92:c1:b6:a2:6e:bb:41:9f:
51:fe:9b:6f:8c:45:6b:de:72:80:f1:ac:1f:35:59:
00:05:03:53:72:38:d1:b9:41:1d:46:57:b1:37:cd:
88:e3:cd:94:7e:d5:e9:c1:38:24:07:63:54:94:8b:
81:be:73:87:fe:b1:1b:00:8f:0c:8d:ec:55:86:76:
4b:b3:9c:b1:d5:0a:36:e8:97:79:e0:0c:53:1d:61:
d2:a9:f9:a8:f0:9b:ca:97:53:dc:14:35:21:2e:86:
0f:3d:cc:22:03:b3:4f:77:19:80:56:0b:2b:a3:97:
fc:24:8e:15:67:29:93:cf:7a:be:08:dc:7e:7d:93:
e7:28:d5:15:ac:89:a9:40:28:67:4b:f0:df:a2:20:
45:d1:19:6f:f7:45:99:e4:24:75:c5:c7:b0:47:b9:
7a:f5:8a:0d:cc:6d:5b:f2:19:5a:b1:6b:5b:e8:ef:
2b:60:03:0e:c6:66:c1:70:38:0b:49:8e:1e:7b:30:
05:6a:a9:29:66:fa:43:91:d4:ef:ce:bf:e2:01:eb:
0f:4e:80:d2:e1:64:3d:82:4e:af:41:25:f5:e0:09:
73:1e:7a:74:3f:f9:66:3c:93:36:dc:eb:36:21:1e:
52:0a:c3:3b:6e:f1:f3:b1:c2:e7:18:25:fb:f3:20:
ae:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:B4:B8:FB:27:D2:C2:D7:69:DF:E4:F8:32:C4:32:D7:0A:D6:DB:AA
X509v3 Authority Key Identifier:
keyid:C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/VLS4-yfSwtdp3-T4MsQy1wrW26o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/yHtZTl5nE6W4ClSBpc5x5lLYRXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.36.175.0/24
194.180.208.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:8e:0e:37:f4:84:16:58:10:1a:76:97:d2:41:ee:f9:d2:7c:
2d:35:fd:8b:3e:63:ee:38:2a:6d:1b:2f:f2:7c:de:91:e3:db:
d4:a3:69:19:d1:52:d0:80:b7:c0:15:10:5d:c4:1a:f7:35:af:
5f:80:f2:d4:55:a3:46:bc:c3:99:93:f4:9e:27:f0:5f:5a:7e:
0c:51:95:ab:2b:83:98:15:d5:e2:1c:84:52:f0:83:80:76:d0:
f7:2e:ba:82:e6:32:f7:8e:2a:2e:7e:39:f8:0d:aa:cd:a4:55:
1f:cb:00:c0:4b:87:78:6c:fb:04:73:1b:ce:94:0f:5a:a3:ac:
ac:37:f7:7e:61:5f:2f:2c:cc:d4:05:9e:74:d4:9d:41:33:81:
9e:cd:6c:d3:f3:b3:18:45:a7:ac:6d:8e:b4:80:37:93:e1:87:
b3:fb:eb:a0:34:c2:dc:20:b7:83:a4:41:27:72:05:77:d0:c9:
a9:ad:b4:ae:5f:3c:32:86:1c:ed:a7:19:2e:40:5b:4b:97:f9:
14:b0:64:d4:54:fa:46:d1:82:0d:d3:50:a5:93:1f:5e:27:e7:
c2:6c:2b:12:74:df:fb:f9:81:5a:cf:e3:35:96:63:eb:e7:b4:
61:61:c1:28:b3:ac:b6:8f:42:69:39:98:19:8d:c2:50:0b:c7:
f4:55:d8:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:20 2023 by rpki-client on console-fra.rpki-client.org