Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/VJ-oD_JFRHKmIE8WEvoN3_wVo28.roa
File: VJ-oD_JFRHKmIE8WEvoN3_wVo28.roa (raw, json)
Hash identifier: B/VPZjrgXwWYmcL177YSCwUjQLXLOyZ54tYClS2zfCY=
Subject key identifier: 54:9F:A8:0F:F2:45:44:72:A6:20:4F:16:12:FA:0D:DF:FC:15:A3:6F
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 33DA9854
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/VJ-oD_JFRHKmIE8WEvoN3_wVo28.roa
Signing time: Sat 01 Jan 2022 04:55:31 +0000
ROA not before: Sat 01 Jan 2022 04:55:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9095
IP address blocks: 2001:a98:8000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 869963860 (0x33da9854)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: Jan 1 04:55:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=549fa80ff2454472a6204f1612fa0ddffc15a36f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:41:5e:7f:d4:ab:71:90:cd:a8:b9:16:00:e2:
1c:e8:aa:ba:1f:a6:9f:20:a3:1b:8f:19:88:6e:ea:
6f:5b:62:15:de:f3:85:d6:8b:2c:54:d7:f5:d4:93:
ad:66:89:4d:2b:da:b7:ef:35:a8:5d:09:47:82:a9:
d4:69:b5:c5:3d:c8:01:f5:4b:a1:c7:05:a5:49:eb:
ec:49:aa:f8:2c:69:52:50:62:b0:f8:5c:3a:79:5d:
4b:c6:6f:e1:af:04:ba:72:af:08:51:3e:3b:fb:8c:
d8:bc:6d:51:84:c4:35:fc:78:d0:75:6b:56:45:0e:
f0:48:a6:eb:d8:45:c8:a2:d6:74:96:c0:4d:cc:9b:
ae:e2:0e:07:28:8f:95:ff:3f:90:c3:25:0e:33:fc:
79:50:85:c5:52:60:63:5f:b2:3b:48:f0:e4:bb:65:
9b:29:2e:f9:ef:11:ca:01:2e:25:d9:e5:cf:ec:1d:
5b:77:72:96:8a:1d:b0:ee:f0:df:85:20:0a:db:d9:
06:7d:76:fb:3e:44:2c:3d:46:71:90:ad:d0:e4:39:
bd:fe:22:05:37:7f:a8:6b:d0:16:11:1e:9a:2b:15:
b9:55:a9:87:2b:d9:cd:4d:05:f2:70:a5:a7:0f:5b:
1a:80:27:90:6c:fe:d4:37:8d:30:7a:e0:56:a9:77:
77:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:9F:A8:0F:F2:45:44:72:A6:20:4F:16:12:FA:0D:DF:FC:15:A3:6F
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/VJ-oD_JFRHKmIE8WEvoN3_wVo28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:a98:8000::/48
Signature Algorithm: sha256WithRSAEncryption
aa:7c:ab:30:26:ac:b9:c4:71:97:32:e9:4d:a5:c5:a5:09:9c:
f8:7f:54:3c:f8:2b:61:ed:44:08:fa:5f:cb:e4:2f:57:78:6d:
2c:e4:fe:e8:52:f4:a8:3a:c4:c9:f8:fd:b2:16:63:f9:25:59:
ca:e4:ed:85:85:59:28:0a:84:5e:86:c7:f3:b8:93:26:69:36:
96:52:57:19:26:2f:29:45:1c:84:1b:e2:08:76:e1:78:a7:55:
9b:04:f7:e3:b9:93:79:92:d0:5f:cb:2a:c8:44:3f:d5:bf:ed:
e7:c4:2a:c6:35:1c:03:19:c0:09:82:cc:df:eb:f1:de:6c:87:
8f:e7:b2:ae:a9:82:c8:19:e5:9d:80:f3:c4:84:81:ad:50:12:
8a:e7:90:1a:02:61:44:a3:d2:80:66:75:0a:82:39:12:11:5d:
fb:81:24:40:86:b0:8e:4b:f5:cd:02:1b:58:96:59:31:0d:d0:
c4:97:f8:87:e9:dd:a1:c8:0e:65:1b:cb:8b:9a:80:f0:fe:d6:
43:e1:a7:83:48:9c:b2:3c:75:90:24:92:5b:31:b4:0c:a1:8b:
fa:8f:76:23:b7:e1:ef:92:92:24:46:bf:d1:78:aa:e3:66:af:
7c:81:a0:ea:98:83:4d:81:69:d1:17:7b:ac:af:92:dd:24:54:
a6:a4:a0:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:39 2024 by rpki-client on console-fra.rpki-client.org