Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/a76ac1-5f22-47d1-b8c1-c623ed8f2f28/1/vBSDEXDVtLShDxxFSl0jA-vu1Oo.roa
File: vBSDEXDVtLShDxxFSl0jA-vu1Oo.roa (raw, json)
Hash identifier: 4KMd/B1llOlL3FfXTpctK6jptfRdTwgMoUbNf/hfq+s=
Subject key identifier: BC:14:83:11:70:D5:B4:B4:A1:0F:1C:45:4A:5D:23:03:EB:EE:D4:EA
Certificate issuer: /CN=93503061e1ae503ec63d970b30875dd93ffabbdf
Certificate serial: 04888DFB
Authority key identifier: 93:50:30:61:E1:AE:50:3E:C6:3D:97:0B:30:87:5D:D9:3F:FA:BB:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k1AwYeGuUD7GPZcLMIdd2T_6u98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/a76ac1-5f22-47d1-b8c1-c623ed8f2f28/1/vBSDEXDVtLShDxxFSl0jA-vu1Oo.roa
Signing time: Thu 10 Mar 2022 08:24:42 +0000
ROA not before: Thu 10 Mar 2022 08:24:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 2a01:bb22::/33 maxlen: 33
2a01:bb22:8000::/33 maxlen: 33
2a01:bb23:8000::/33 maxlen: 33
2a01:bb23::/33 maxlen: 33
2a01:bb24::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76058107 (0x4888dfb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93503061e1ae503ec63d970b30875dd93ffabbdf
Validity
Not Before: Mar 10 08:24:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc14831170d5b4b4a10f1c454a5d2303ebeed4ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:58:75:2c:e1:08:17:74:e8:40:2a:04:ea:51:
af:98:6e:a7:95:79:86:ee:b5:07:d6:04:08:51:f9:
e3:58:b7:fa:00:f8:27:a6:eb:8e:79:61:ea:62:be:
73:da:75:d8:b3:7a:ec:32:75:8e:63:db:9a:06:d6:
d6:d8:cd:fd:33:27:77:f3:a7:40:26:b4:30:9f:db:
21:c1:2a:be:30:e9:7d:d9:2f:21:26:a8:39:fd:32:
5b:99:6a:72:af:40:4b:56:18:67:76:c8:d1:76:cb:
3e:35:8e:30:0b:67:09:0a:6c:f3:81:49:7f:c3:8e:
98:49:10:77:37:41:90:ff:86:76:e4:63:f6:86:52:
6e:08:80:3b:3a:b3:50:07:84:81:91:0c:eb:40:f0:
54:d0:d2:b4:d5:5a:6f:dd:95:31:8c:57:51:e6:f3:
a2:8c:30:d1:38:e7:71:ae:12:76:95:ca:61:56:06:
01:9a:15:6a:a3:10:e7:93:50:94:62:9b:56:d3:00:
12:94:a9:61:16:3c:51:4a:ba:2e:2f:fd:0e:53:9e:
bd:05:1e:a2:b2:ac:5b:2c:f8:c7:0c:d9:7c:81:5f:
02:f8:d7:02:e6:bf:13:11:72:c1:d9:b3:19:aa:df:
35:84:a7:a4:ff:cb:26:44:ec:ca:01:31:ba:2d:fc:
cd:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:14:83:11:70:D5:B4:B4:A1:0F:1C:45:4A:5D:23:03:EB:EE:D4:EA
X509v3 Authority Key Identifier:
keyid:93:50:30:61:E1:AE:50:3E:C6:3D:97:0B:30:87:5D:D9:3F:FA:BB:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k1AwYeGuUD7GPZcLMIdd2T_6u98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a76ac1-5f22-47d1-b8c1-c623ed8f2f28/1/vBSDEXDVtLShDxxFSl0jA-vu1Oo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a76ac1-5f22-47d1-b8c1-c623ed8f2f28/1/k1AwYeGuUD7GPZcLMIdd2T_6u98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:bb22::-2a01:bb24:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
70:57:bf:aa:6e:e6:ee:94:d6:f4:3c:5d:d7:de:20:91:d7:05:
24:9f:44:e6:e8:e7:c1:16:a0:08:62:a3:64:02:45:da:b4:2d:
42:cb:74:69:53:32:a5:e7:d2:48:9a:89:3c:3d:b3:2b:09:41:
fe:b2:0c:bc:6c:c7:c7:d2:16:cf:86:c1:cc:71:3d:76:a4:f3:
b8:2a:46:3e:9f:b0:6b:53:8f:88:e3:e3:f8:90:7a:86:1d:46:
41:05:99:59:49:a8:e5:4c:d9:90:af:b1:f9:ae:96:15:4a:49:
0d:19:45:de:1e:d5:e1:46:54:ba:1e:55:1a:25:ac:8f:d7:de:
18:48:42:43:9a:1c:cb:6f:b6:7a:5d:b9:d9:6a:39:56:04:f1:
4b:33:9a:27:74:83:65:da:3b:ee:30:3b:28:70:11:d4:ab:e0:
3e:69:0d:9e:d5:cf:65:e1:d9:ff:6d:47:cd:bb:e1:0c:de:28:
49:06:b5:35:1b:42:d4:3b:f0:ec:e7:1a:17:5c:91:16:09:22:
95:85:c3:8e:40:c2:fa:13:35:42:e0:d6:61:84:c6:27:42:d4:
95:12:ac:3b:9a:59:38:a9:de:e9:6d:ab:9e:e1:bc:6b:60:aa:
8f:fb:6f:0c:11:d9:74:8a:73:fd:02:18:9e:8b:16:46:86:30:
d6:41:2c:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:32 2024 by rpki-client on console-ams.rpki-client.org