Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/vBQSqTDJmgvFI2a41LxiOrn-ZHU.roa
File: vBQSqTDJmgvFI2a41LxiOrn-ZHU.roa (raw, json)
Hash identifier: bVcUtCtnoNJLXme9nx5Oljv/YFZCCtQ3zQ392cUSTnA=
Subject key identifier: BC:14:12:A9:30:C9:9A:0B:C5:23:66:B8:D4:BC:62:3A:B9:FE:64:75
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018485A3A146B30505C915E5853DF9B96D3E
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/vBQSqTDJmgvFI2a41LxiOrn-ZHU.roa
Signing time: Thu 17 Nov 2022 12:50:04 +0000
ROA not before: Thu 17 Nov 2022 12:50:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201325
IP address blocks: 2a0c:9a40:82b0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:85:a3:a1:46:b3:05:05:c9:15:e5:85:3d:f9:b9:6d:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Nov 17 12:50:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc1412a930c99a0bc52366b8d4bc623ab9fe6475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:15:75:be:dd:56:2f:27:ee:1d:a1:d6:04:3f:
4a:bc:1f:9d:f1:3f:d5:8e:cc:a8:d1:fc:b6:97:fc:
cf:ba:04:a9:38:b1:83:8e:a4:a2:4c:1f:62:a6:2e:
97:b1:2c:26:27:90:af:ef:33:d1:5d:d5:4f:d1:e1:
f8:f0:9b:b4:e5:ea:60:fd:a2:ee:a5:54:c5:f2:5d:
32:91:c1:b5:d9:ac:de:0a:c4:f0:51:41:4e:18:53:
6c:4d:8c:1e:d4:e4:56:a3:bd:48:53:bb:b4:20:55:
00:f8:0f:1f:b4:d5:03:f4:43:90:58:01:ba:6a:9e:
c0:ac:f2:4e:38:45:d5:5b:3f:bc:3d:a9:30:00:fd:
03:2d:17:95:6d:26:14:2f:b8:ca:a8:b2:d0:ba:63:
63:f7:05:4d:f5:e7:a3:5c:45:4c:c0:77:67:f5:e2:
e4:14:bf:0d:2e:36:eb:00:ab:c9:95:f9:9f:9d:a0:
61:35:70:32:06:73:fa:de:d7:07:43:6e:31:c4:a8:
3a:22:0c:22:4d:1a:93:73:b2:35:04:20:7c:da:09:
2b:58:f0:86:9c:c4:75:4f:09:8b:fc:be:86:0a:90:
35:64:7d:bf:56:5e:ba:9d:45:b2:da:51:4d:15:fd:
55:55:2a:da:fb:f8:27:52:72:73:41:cb:b6:4d:cd:
a7:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:14:12:A9:30:C9:9A:0B:C5:23:66:B8:D4:BC:62:3A:B9:FE:64:75
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/vBQSqTDJmgvFI2a41LxiOrn-ZHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:82b0::/48
Signature Algorithm: sha256WithRSAEncryption
d2:13:58:18:c4:2d:59:91:9e:a3:d5:7d:88:19:bd:fd:6b:2c:
c5:0a:be:78:da:dc:5f:57:28:d8:4b:49:fe:fd:b9:0c:01:db:
59:e0:11:f0:2e:63:8b:d5:21:66:52:43:7f:dc:96:92:a1:95:
ed:52:50:ba:1f:05:f5:71:0f:ef:dc:55:9c:09:d4:25:0a:c6:
49:3d:77:e2:34:d8:10:11:8e:c8:b0:16:0b:77:9e:50:f5:f7:
d7:c7:c6:7b:17:4a:7f:a0:ca:c0:89:12:13:c0:d8:5b:fa:fd:
fd:4d:b2:c5:6d:b4:3b:57:94:02:db:29:c3:11:a0:80:2f:dc:
d7:70:d4:16:ad:b2:47:78:09:c6:05:b0:1e:bd:7e:06:76:43:
87:40:83:18:48:51:bf:fa:f8:36:ea:52:fb:b8:2b:f8:89:85:
ef:28:ad:ec:c4:da:dc:3b:72:b2:4c:4a:1c:50:d9:a9:15:08:
08:f8:a6:72:bc:54:15:0d:cf:04:2a:4f:8c:b9:1b:03:51:de:
a5:d3:db:e7:b9:cb:40:de:4e:34:2a:ad:67:0c:90:1f:ee:59:
c2:67:e4:5c:9f:25:35:df:d3:21:2b:12:f5:06:b1:97:93:50:
53:0e:53:ef:de:61:a0:c1:17:fd:55:83:d8:24:90:44:70:13:
82:c7:27:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:34 2023 by rpki-client on console-fra.rpki-client.org