Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/wEpaOvKMEOmlarryLQ0YYafdagU.roa
File: wEpaOvKMEOmlarryLQ0YYafdagU.roa (raw, json)
Hash identifier: vSUuyIVOBxBxpch5AEWn4Yo7w1nwOQZEjLuFObAFmfg=
Subject key identifier: C0:4A:5A:3A:F2:8C:10:E9:A5:6A:BA:F2:2D:0D:18:61:A7:DD:6A:05
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 01833E46E22AD4974F2D7B22857E226E7561
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/wEpaOvKMEOmlarryLQ0YYafdagU.roa
Signing time: Wed 14 Sep 2022 23:12:56 +0000
ROA not before: Wed 14 Sep 2022 23:12:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 2a0e:e380::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:3e:46:e2:2a:d4:97:4f:2d:7b:22:85:7e:22:6e:75:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Sep 14 23:12:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c04a5a3af28c10e9a56abaf22d0d1861a7dd6a05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:72:5d:53:93:3a:89:22:15:94:4c:51:48:19:
ab:1f:e7:83:ca:e2:6f:b0:65:71:5a:6d:f1:85:4e:
42:88:6d:11:21:1c:d1:0a:4e:be:39:e7:38:b2:0c:
bd:83:48:85:8e:d4:1e:67:38:ed:3a:ad:ea:d5:83:
d7:15:c2:91:69:b7:0e:fb:5d:1a:86:5b:fb:20:f7:
58:83:aa:ce:6b:df:e8:9e:ca:c9:23:53:37:f5:26:
f5:be:66:06:2c:89:72:2a:0d:de:b1:bb:a2:c9:8b:
f3:3d:46:d5:f5:b6:61:2c:ad:a7:52:ce:bc:ee:6f:
6d:b5:f2:fd:6b:34:9f:a6:a0:f6:74:9a:a7:3e:f7:
23:4b:5e:be:4c:fd:6e:30:21:fc:b2:cd:1d:e0:2c:
9c:c0:56:b0:cc:8b:8c:3c:35:ab:bd:e8:fe:5a:aa:
98:99:f5:ea:f6:b4:55:1d:f9:da:27:c9:28:09:ff:
77:aa:08:08:1b:93:e2:c8:23:5c:87:36:0c:59:39:
97:b8:ef:95:04:1f:9d:6c:54:55:92:3d:58:e1:6f:
e2:34:0a:f5:73:ad:cb:e2:44:63:98:be:82:98:2b:
ba:5e:cf:ca:9f:c4:d4:94:a8:40:64:aa:cc:2a:63:
d8:99:4c:9b:4b:5d:9d:b5:05:5e:9f:ca:67:9b:cd:
f0:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:4A:5A:3A:F2:8C:10:E9:A5:6A:BA:F2:2D:0D:18:61:A7:DD:6A:05
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/wEpaOvKMEOmlarryLQ0YYafdagU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:e380::/29
Signature Algorithm: sha256WithRSAEncryption
39:7e:a7:47:1a:ae:90:4d:dd:6e:b5:61:02:bf:e2:f5:e8:23:
f3:36:f2:5e:2c:51:65:3a:74:d8:c0:50:bb:ce:e4:85:ee:60:
6e:13:45:f3:b5:c0:b7:83:3c:89:09:cc:e1:4d:d7:07:ee:a9:
55:7c:be:6b:dd:a4:95:50:e6:68:bd:13:39:8e:95:e2:6c:33:
05:80:cb:c9:92:13:ca:78:a9:e4:60:e8:a1:7c:95:a3:b3:6f:
be:ea:f5:22:3f:f2:81:95:11:07:06:45:68:9b:3f:d6:64:db:
5c:3f:65:33:f8:f0:fc:0d:71:c7:12:62:16:bb:7d:bd:05:13:
ba:64:f1:cd:ea:32:2b:5d:ce:7d:32:06:5e:b4:fe:e2:67:2d:
e2:59:b0:f0:8a:1a:39:ea:41:e8:d0:5a:94:89:fe:d4:66:5d:
9f:aa:01:dd:0c:e5:6f:6b:31:ba:fb:60:8a:c8:31:71:c0:8b:
7a:fa:0b:6b:eb:0c:2e:29:ef:3e:06:bd:2a:5b:58:e7:85:fd:
5e:22:c1:d7:3b:4b:15:af:48:fa:a0:8b:6d:c9:84:2a:ab:5e:
c3:4d:0a:c1:ec:91:68:b2:bf:6f:aa:76:40:0e:18:7e:e5:b0:
fd:3a:21:f3:66:59:d3:aa:58:96:02:2c:95:06:b2:ba:68:79:
56:b2:f3:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:27 2023 by rpki-client on console-ams.rpki-client.org