Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/VUhfMoZY0yg6wW-HQMr_M7Z02G8.roa
File: VUhfMoZY0yg6wW-HQMr_M7Z02G8.roa (raw, json)
Hash identifier: aTGLQhTqK7WgI3epP7erwyEIr2eNNxMGJJ+qY1W47vs=
Subject key identifier: 55:48:5F:32:86:58:D3:28:3A:C1:6F:87:40:CA:FF:33:B6:74:D8:6F
Certificate issuer: /CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Certificate serial: 018476293B39A329E2BB215B1A8ABE9DC0DB
Authority key identifier: BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/VUhfMoZY0yg6wW-HQMr_M7Z02G8.roa
Signing time: Mon 14 Nov 2022 12:42:04 +0000
ROA not before: Mon 14 Nov 2022 12:42:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398103
IP address blocks: 2a01:488:bb11::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:76:29:3b:39:a3:29:e2:bb:21:5b:1a:8a:be:9d:c0:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Validity
Not Before: Nov 14 12:42:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55485f328658d3283ac16f8740caff33b674d86f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:8b:21:98:fb:49:eb:b4:e6:9e:c9:7f:01:da:
12:8e:97:3c:3f:ed:53:2e:f6:81:5c:66:e8:a8:14:
e4:5e:7d:c6:41:18:64:a2:a1:e1:fb:78:33:24:40:
b3:9f:0b:91:2a:8b:4a:70:11:28:e4:54:dc:4b:fd:
ed:ca:df:cd:97:98:7f:fe:60:20:e9:33:b7:24:64:
21:f7:c6:f3:33:e6:3e:2a:f9:4c:3a:d2:f4:ad:a5:
01:37:e8:f0:82:cf:5b:4f:7c:03:6d:a4:d9:5a:8d:
4d:4f:63:a9:b3:ed:5b:84:7f:0a:7c:e5:37:73:f2:
50:54:3f:fd:a0:de:30:67:e3:b6:cb:d8:aa:7d:29:
8b:f3:23:82:1a:1c:7e:18:de:5d:31:bf:27:87:60:
c2:f1:da:20:fe:87:b4:51:1d:9e:79:9d:bd:dd:cf:
6e:47:21:6e:55:56:b4:e4:58:64:34:be:bd:ee:b9:
22:84:6a:e2:a5:2e:74:ff:62:08:dc:74:62:ad:26:
fa:3f:b3:0d:05:5b:62:1b:1f:72:42:99:90:fe:b5:
e6:e4:f1:81:f6:80:06:4b:0f:8b:99:97:c8:17:a1:
ec:8e:67:6c:3f:a6:ad:88:f6:0b:0f:e6:a4:69:29:
4a:dd:58:ab:52:5d:16:3d:f7:35:c1:ca:b2:78:98:
fb:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:48:5F:32:86:58:D3:28:3A:C1:6F:87:40:CA:FF:33:B6:74:D8:6F
X509v3 Authority Key Identifier:
keyid:BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/VUhfMoZY0yg6wW-HQMr_M7Z02G8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:488:bb11::/48
Signature Algorithm: sha256WithRSAEncryption
6d:72:5d:20:33:03:b1:95:9e:ed:5d:89:13:8d:db:ff:e1:34:
9c:07:9a:f7:03:dd:be:23:92:26:f2:3d:00:1d:15:ea:4b:a5:
f3:a0:35:5d:2f:78:42:45:0d:98:5b:7c:b3:af:8a:6e:4f:b4:
b4:4f:7e:dd:8c:cc:be:5a:40:08:39:38:84:9a:94:05:80:87:
7d:8d:ff:c3:96:83:9d:27:f6:72:6b:55:35:c4:dc:b3:12:bd:
05:60:a7:30:16:7f:d9:76:1f:0a:f0:1d:ce:c7:ad:65:04:c1:
b1:70:a3:7c:c0:79:e7:53:7d:04:97:13:ce:0f:9c:d2:ee:43:
aa:c5:b6:ce:28:4d:59:51:a2:15:f4:ea:31:0c:5e:42:f9:4e:
44:f3:65:5c:7a:68:a7:88:0b:63:03:9e:28:7e:d4:25:02:c5:
2a:17:4a:29:80:79:e9:d0:aa:ec:be:4c:5c:c6:3c:74:64:cb:
c3:12:53:58:3d:11:e7:c6:ad:45:cb:f8:c1:53:3e:1b:9f:f4:
b2:19:83:ca:f7:57:47:53:53:8e:ca:99:9b:14:55:60:b0:06:
f7:cb:73:60:d1:36:7d:f0:84:c4:12:2c:90:26:95:a4:f2:42:
ed:a6:2d:ad:ee:cd:b0:1c:bb:56:e2:1c:4b:23:76:fd:56:1d:
4d:d1:c9:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:03 2024 by rpki-client on console-fra.rpki-client.org