Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/EVThXa0wdwqGovNZ6I8ft-3p08U.roa
File: EVThXa0wdwqGovNZ6I8ft-3p08U.roa (raw, json)
Hash identifier: k4meCIp7HdoGwgPA5QMhTKiYt6g2z2Ml5B2xEt8fKOY=
Subject key identifier: 11:54:E1:5D:AD:30:77:0A:86:A2:F3:59:E8:8F:1F:B7:ED:E9:D3:C5
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 0565640E
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/EVThXa0wdwqGovNZ6I8ft-3p08U.roa
Signing time: Sat 01 Jan 2022 15:07:18 +0000
ROA not before: Sat 01 Jan 2022 15:07:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 2a03:60c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90530830 (0x565640e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Jan 1 15:07:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1154e15dad30770a86a2f359e88f1fb7ede9d3c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:84:f4:b3:cd:9b:5c:55:1f:12:16:80:99:fa:
1d:c7:d2:89:68:3c:db:37:47:de:2b:fb:1b:f3:52:
dd:91:fc:c7:7b:35:2f:97:33:5f:50:5d:9c:3b:63:
d3:3f:54:2b:f8:1b:61:f7:1e:7e:8f:ac:ec:b4:77:
65:c8:a8:2a:ff:bc:9c:e3:26:e3:2a:e3:58:90:70:
92:48:41:5e:91:fa:71:df:af:a8:90:14:0f:f1:f8:
83:8f:6f:63:06:c4:36:62:18:20:22:7b:85:34:fe:
82:7e:5e:35:db:ce:b6:8b:c7:fb:41:ad:1d:bf:49:
4f:1f:c4:43:31:dc:c0:18:78:1b:46:70:78:59:f3:
81:65:44:76:ff:36:ba:a8:09:9c:1d:7f:cb:b2:58:
ea:a5:1f:ae:aa:1f:d3:4e:55:49:11:b5:b1:65:b1:
32:51:a7:80:2b:37:fd:90:16:68:2e:6d:24:ce:76:
b2:7b:35:51:ca:4f:f6:22:45:dd:da:21:5b:b4:9b:
48:c8:63:26:4c:25:15:65:51:97:67:11:14:70:13:
fd:f4:7b:c8:7d:3b:da:80:da:84:09:9b:d8:81:8f:
0b:47:89:98:8b:9d:1d:da:9d:6e:f9:ab:33:87:72:
c6:d4:9e:c6:24:10:81:df:03:e5:8d:eb:84:10:08:
a2:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:54:E1:5D:AD:30:77:0A:86:A2:F3:59:E8:8F:1F:B7:ED:E9:D3:C5
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/EVThXa0wdwqGovNZ6I8ft-3p08U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:60c0::/32
Signature Algorithm: sha256WithRSAEncryption
13:11:0c:36:06:01:20:0f:64:16:81:72:b9:0e:33:74:db:32:
97:e1:f9:87:e2:be:3e:ca:ad:59:02:af:f8:a2:40:ad:e4:48:
f0:81:21:e3:c8:89:08:72:16:fc:ea:5e:83:a5:a0:1b:b8:b2:
23:79:6a:03:6d:17:67:f7:12:e9:b2:d7:6b:e5:e5:b7:e7:34:
98:f0:e0:ab:26:3e:5a:ee:40:2a:09:fc:a8:43:db:21:3b:84:
84:f1:65:d5:c0:55:74:74:c6:e2:e8:6f:81:ce:cf:9d:dc:03:
32:79:bb:84:9d:76:32:61:50:30:a9:46:93:7d:0e:42:01:c3:
e0:87:97:fe:e0:b9:5f:66:2a:11:98:4b:6e:18:20:a3:e0:ee:
f1:a0:ee:52:e1:18:e2:d6:06:58:3e:6d:1d:60:b7:da:e3:4a:
d0:4c:01:1e:59:b3:93:56:4d:1f:69:f5:18:67:2c:eb:78:28:
fa:f2:0c:6f:01:ff:3e:99:84:d4:46:cb:53:83:18:89:7e:ac:
99:8b:62:81:fb:89:5d:c2:e4:71:67:1f:a9:e8:6d:18:09:91:
b1:ef:60:74:fe:d3:70:22:cd:09:19:21:c7:f8:3d:4e:74:49:
a2:9c:01:2f:26:2b:00:f6:99:73:55:9f:c2:ce:d9:22:61:31:
23:48:83:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:50 2023 by rpki-client on console-ams.rpki-client.org