Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/rtYYRzUdNxSIEyH8XbklyZ1LQog.roa
File: rtYYRzUdNxSIEyH8XbklyZ1LQog.roa (raw, json)
Hash identifier: Etune1iaf/nQVvZqiQl22VO+7ZzPxwGGbzgZqKWNKYw=
Subject key identifier: AE:D6:18:47:35:1D:37:14:88:13:21:FC:5D:B9:25:C9:9D:4B:42:88
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0182C446E1DDCC13734A63234D75543F1DE7
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/rtYYRzUdNxSIEyH8XbklyZ1LQog.roa
Signing time: Mon 22 Aug 2022 06:39:15 +0000
ROA not before: Mon 22 Aug 2022 06:39:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205175
IP address blocks: 2a00:1728:31::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c4:46:e1:dd:cc:13:73:4a:63:23:4d:75:54:3f:1d:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Aug 22 06:39:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aed61847351d3714881321fc5db925c99d4b4288
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a6:86:c5:37:13:b4:4d:50:51:02:69:38:6f:
ba:42:42:6d:73:9f:da:ba:d5:8e:45:9f:55:04:b5:
ba:e8:e4:2b:67:00:e1:1e:f3:d4:95:dd:46:10:ba:
f2:fc:ff:4f:10:57:d8:0a:b7:88:d6:91:45:e3:fb:
89:11:fc:72:51:cf:39:0c:95:44:53:5c:22:6e:7c:
00:98:e2:c1:f3:3b:cf:0e:d4:b6:b6:47:7a:83:a0:
27:ed:4b:83:7d:d2:a7:6d:bf:66:ca:5a:f2:4e:af:
f9:fb:15:c8:20:d1:8b:78:09:de:15:d3:5c:f9:3f:
b3:ce:b9:c5:46:04:69:8a:15:6f:c5:49:67:f1:80:
e9:32:12:f2:6b:23:27:7d:bd:9d:e3:a5:24:d1:3b:
25:89:02:5c:ae:fe:e1:0b:af:68:46:80:27:53:b0:
b2:e4:26:77:82:36:ac:d9:5c:e4:c0:6a:a9:25:77:
38:07:ff:5a:da:5a:8a:10:76:d6:f7:81:83:b5:ea:
0c:09:c4:e6:62:78:d2:ab:64:42:c6:4a:51:ce:e4:
1d:42:f5:7c:e1:68:9a:d8:17:6b:f3:55:17:21:a4:
9f:7e:80:3d:bd:a9:59:bc:25:74:d1:5f:5e:a0:83:
6c:33:7d:57:7a:e4:7a:0e:8c:cb:8f:2b:4f:b0:3b:
6f:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:D6:18:47:35:1D:37:14:88:13:21:FC:5D:B9:25:C9:9D:4B:42:88
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/rtYYRzUdNxSIEyH8XbklyZ1LQog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1728:31::/48
Signature Algorithm: sha256WithRSAEncryption
23:31:10:56:01:2f:9b:c2:bb:39:fb:b7:05:c5:78:27:80:75:
e2:e4:e1:04:13:5d:d1:31:2c:f5:e3:70:96:7c:7f:0b:1b:57:
6a:52:f8:87:f3:72:b3:52:88:a2:4d:41:32:14:b0:b4:f9:37:
c5:3e:73:91:2b:8d:85:42:69:27:d5:2e:83:74:ef:95:c7:92:
9d:09:41:cb:2c:ec:73:57:e1:11:9c:ea:66:58:6f:6f:87:f7:
02:c4:f2:0c:09:b7:92:f3:92:c9:b0:99:ad:fb:35:b2:65:6e:
61:fb:81:60:66:c7:32:b7:9e:28:e2:4f:e5:18:e6:fb:72:fa:
16:98:0d:ff:5c:f6:ac:e8:3a:84:6d:4f:6c:d6:d5:a4:c9:d9:
f5:83:f0:44:df:be:bf:6c:cc:a0:b7:52:0f:c9:67:39:83:65:
4b:f3:7a:00:85:b0:43:65:32:1b:ac:f3:7a:dd:ec:0f:59:a5:
44:69:87:c5:cf:b2:d2:e1:1f:03:45:21:0b:a9:89:2c:71:01:
ad:c6:78:09:98:74:3b:e7:b3:87:b7:bc:98:21:f7:1d:45:b2:
4e:8b:55:20:22:56:94:eb:03:31:33:a6:e5:ba:2f:5e:f9:92:
e8:89:cb:59:f2:38:d0:03:d5:aa:e8:eb:39:dd:54:bf:04:4d:
66:17:ae:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:42 2023 by rpki-client on console-ams.rpki-client.org