Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/45cc9f-6432-41c7-b62d-10e40c586498/1/VLaNVeXm5vS4yZ1wf5Nq_ATZj-4.roa
File: VLaNVeXm5vS4yZ1wf5Nq_ATZj-4.roa (raw, json)
Hash identifier: ijArVOMgeRJheiXoyL46ukng34Mo3XTjBS+2VHAQCK4=
Subject key identifier: 54:B6:8D:55:E5:E6:E6:F4:B8:C9:9D:70:7F:93:6A:FC:04:D9:8F:EE
Certificate issuer: /CN=bb79847a3fe8e5c78844027ccaf0bd6e9da4624a
Certificate serial: EBFA
Authority key identifier: BB:79:84:7A:3F:E8:E5:C7:88:44:02:7C:CA:F0:BD:6E:9D:A4:62:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u3mEej_o5ceIRAJ8yvC9bp2kYko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/45cc9f-6432-41c7-b62d-10e40c586498/1/VLaNVeXm5vS4yZ1wf5Nq_ATZj-4.roa
Signing time: Mon 04 Jul 2022 16:17:25 +0000
ROA not before: Mon 04 Jul 2022 16:17:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56648
IP address blocks: 2a13:2900::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60410 (0xebfa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb79847a3fe8e5c78844027ccaf0bd6e9da4624a
Validity
Not Before: Jul 4 16:17:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=54b68d55e5e6e6f4b8c99d707f936afc04d98fee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:19:ba:24:a4:05:3d:d3:f0:08:07:57:b9:f7:
81:30:48:08:e7:2b:95:4d:8d:6e:f0:e4:a4:31:88:
88:dc:13:b9:9f:7b:71:1d:ce:a9:97:3c:8b:a6:b2:
04:b8:88:bf:f3:b5:65:c0:e3:2f:59:43:d8:83:1b:
bc:f1:0d:b1:ac:a6:35:78:6c:9b:31:66:00:51:7f:
65:07:28:78:49:14:98:9f:b4:b2:fd:9a:ec:1b:fd:
cb:5f:02:7e:b8:a0:1a:69:2b:6e:d1:04:c5:b3:76:
f8:e9:5f:7b:8f:a2:7a:f9:33:5e:19:27:2f:6c:4b:
75:b5:89:1c:1a:54:80:e5:75:95:1d:f9:64:e1:af:
43:fb:18:93:b4:05:a9:50:1a:23:59:cc:47:18:85:
0d:78:14:9a:0c:70:ba:17:9e:2b:dd:75:a0:6f:3d:
34:81:33:fb:5f:af:50:d7:3a:cf:91:a2:d7:e8:02:
c8:50:55:35:a1:5a:0a:0d:8c:9c:39:b3:7f:11:52:
60:77:3e:42:78:73:16:21:e1:86:a6:3d:2c:3e:e9:
0c:85:d5:25:11:0a:fd:02:c7:e5:3f:c8:92:ac:a8:
4d:48:70:f4:d9:3f:fb:d7:f9:33:5c:22:ff:65:a8:
6d:bd:b4:da:1a:6d:d0:a4:7b:5b:dd:c3:af:98:4e:
9f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:B6:8D:55:E5:E6:E6:F4:B8:C9:9D:70:7F:93:6A:FC:04:D9:8F:EE
X509v3 Authority Key Identifier:
keyid:BB:79:84:7A:3F:E8:E5:C7:88:44:02:7C:CA:F0:BD:6E:9D:A4:62:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u3mEej_o5ceIRAJ8yvC9bp2kYko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/45cc9f-6432-41c7-b62d-10e40c586498/1/VLaNVeXm5vS4yZ1wf5Nq_ATZj-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/45cc9f-6432-41c7-b62d-10e40c586498/1/u3mEej_o5ceIRAJ8yvC9bp2kYko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:2900::/29
Signature Algorithm: sha256WithRSAEncryption
6f:29:14:8b:e1:8d:7f:d3:69:5e:47:d8:5d:48:b2:9c:91:90:
18:bd:4c:9d:0b:ab:94:e4:67:d3:3a:cb:78:7e:0e:e2:1a:85:
df:f3:77:61:54:8e:c0:e5:d8:86:2f:69:f3:a4:0c:81:30:40:
cd:c9:a9:7d:01:3d:77:d5:42:a3:7b:7d:03:8e:af:ae:be:e3:
9a:20:b1:b6:3b:02:14:bf:de:b2:9f:2b:84:11:63:fe:2a:50:
20:f0:99:8b:fc:f2:0f:f1:8b:fe:ba:26:82:43:3a:1c:32:9d:
72:8b:d5:0b:39:21:84:b6:80:41:4c:6e:89:0c:03:f8:df:80:
94:d0:65:f0:67:4a:fd:8f:6d:68:c9:7b:f2:c8:e2:fe:3d:b4:
2a:5e:af:f0:8b:fd:cf:b5:42:14:d5:41:96:4c:bc:f4:8b:ea:
45:62:d3:77:1f:c7:33:0b:71:a0:02:21:1d:99:83:5e:b1:72:
4a:d4:8e:b8:ec:60:70:a4:4e:27:6f:32:25:97:23:06:cc:a6:
bb:a5:e1:01:fc:58:37:b1:3e:95:09:f1:f4:de:61:c4:48:ae:
35:d4:0c:2c:3f:61:6f:70:d2:3f:93:5d:a0:6c:33:c7:c2:a0:
ea:b6:d9:88:1f:91:f9:17:a3:20:13:85:d2:9d:e5:4c:d2:97:
ed:09:f0:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:39 2024 by rpki-client on console-fra.rpki-client.org