Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/vGxSNibazbhFTd6w8rQ9VULpAPc.roa
File: vGxSNibazbhFTd6w8rQ9VULpAPc.roa (raw, json)
Hash identifier: HvR/xMiFrpu5e96V3+HUSHI3IepekGovwU8ulCjv60g=
Subject key identifier: BC:6C:52:36:26:DA:CD:B8:45:4D:DE:B0:F2:B4:3D:55:42:E9:00:F7
Certificate issuer: /CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Certificate serial: 01847A16
Authority key identifier: C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/vGxSNibazbhFTd6w8rQ9VULpAPc.roa
Signing time: Sat 01 Jan 2022 05:52:52 +0000
ROA not before: Sat 01 Jan 2022 05:52:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 10753
IP address blocks: 194.180.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25459222 (0x1847a16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Validity
Not Before: Jan 1 05:52:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc6c523626dacdb8454ddeb0f2b43d5542e900f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e0:ec:60:7b:5c:61:b6:1c:fe:60:ab:9e:6d:
63:9d:53:63:f7:20:45:de:9a:94:de:32:d6:14:59:
bf:41:ed:bd:72:2b:41:d8:78:0a:d9:a2:31:ab:cb:
84:0c:bd:80:9c:9b:df:bb:6a:97:1f:5d:3b:9a:2c:
d6:31:64:aa:d4:ad:f3:6c:c5:ef:36:83:41:61:9b:
f1:bb:55:55:4a:dc:65:34:c7:1f:9d:61:aa:6c:dd:
db:ab:98:01:b0:e0:66:80:a7:bb:c1:8e:77:fb:54:
0b:af:1a:75:51:76:fe:0f:f9:e7:53:5f:d9:e6:76:
f3:54:67:cb:fb:b5:34:b5:f4:5c:30:6b:46:a0:96:
1a:e2:d8:eb:69:c3:a8:52:34:73:ac:c1:ae:d1:7e:
bc:e7:ca:56:70:df:9b:4f:1e:7a:ef:cc:c2:2a:30:
78:7a:27:d4:19:40:72:f4:11:87:ef:47:dc:5f:9a:
e6:e3:f1:b2:6d:39:d2:66:78:03:82:d6:d8:7f:87:
60:ff:a5:43:53:43:7b:1d:55:12:5b:30:48:23:ed:
9c:c7:4f:e9:0a:de:a3:0a:69:a5:18:9a:6b:ce:61:
b4:f0:c4:03:af:be:53:18:b8:e1:d7:fe:d5:88:ae:
94:f4:ff:9b:9c:ae:aa:31:df:8a:86:ea:97:c1:29:
3c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:6C:52:36:26:DA:CD:B8:45:4D:DE:B0:F2:B4:3D:55:42:E9:00:F7
X509v3 Authority Key Identifier:
keyid:C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/vGxSNibazbhFTd6w8rQ9VULpAPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/yHtZTl5nE6W4ClSBpc5x5lLYRXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.180.225.0/24
Signature Algorithm: sha256WithRSAEncryption
92:dd:16:25:c3:d2:7a:a1:c2:85:9a:54:3e:73:7c:57:6c:57:
33:4f:67:0d:98:e6:0e:1b:bf:3d:6d:d8:1d:e3:ab:09:98:09:
bb:68:8e:69:fb:16:d2:9b:fa:4c:06:d3:40:e5:d8:39:9d:81:
e4:f6:8b:a6:e4:0f:e9:30:86:a5:be:5b:4e:93:69:dd:69:64:
8e:9a:5c:85:2d:14:df:44:c2:b8:e6:7f:3f:ab:df:7c:30:60:
65:9f:d8:04:d5:c8:bf:8a:9b:df:b1:10:04:4d:c9:cd:68:85:
fa:0c:6f:73:d8:09:c9:9c:45:05:18:3b:05:80:66:c1:6e:74:
da:19:ef:d5:27:8c:3f:c8:49:22:81:11:38:0d:5d:ae:72:13:
53:d1:c7:1c:3e:0c:b7:6c:39:af:7a:71:e1:66:d9:80:91:04:
26:29:b3:cb:d2:12:67:8e:36:f1:4f:5d:5d:4b:3c:8b:cf:7c:
3f:da:9f:3f:ef:f0:e7:92:a9:9c:1c:7f:c9:73:bb:86:b7:2c:
f6:f6:3f:39:8f:d2:36:71:b3:96:0e:3c:a3:3d:a4:6b:7b:0f:
2a:3f:2d:d0:5e:aa:2f:38:f2:91:eb:81:39:5b:b3:4f:57:a5:
7d:3c:30:f1:f9:a2:c4:7f:4f:6c:50:0e:25:5f:1a:31:89:3d:
71:f7:e2:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:14 2023 by rpki-client on console-ams.rpki-client.org