Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/6a3f35-35b8-49e0-9f44-b818faecb717/1/EtN7E1zdenRKJBw0YGfoVcl37l8.roa
File: EtN7E1zdenRKJBw0YGfoVcl37l8.roa (raw, json)
Hash identifier: rF584C6FN1I77j+w4mPJcNxVJ6bh84Z1Sg2rp/Wmx2E=
Subject key identifier: 12:D3:7B:13:5C:DD:7A:74:4A:24:1C:34:60:67:E8:55:C9:77:EE:5F
Certificate issuer: /CN=fa4e405359a2131708fc02438d472568e2c03470
Certificate serial: 018534F0218E43DC86F692D8FB00D0749CDA
Authority key identifier: FA:4E:40:53:59:A2:13:17:08:FC:02:43:8D:47:25:68:E2:C0:34:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-k5AU1miExcI_AJDjUclaOLANHA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/6a3f35-35b8-49e0-9f44-b818faecb717/1/EtN7E1zdenRKJBw0YGfoVcl37l8.roa
Signing time: Wed 21 Dec 2022 13:47:10 +0000
ROA not before: Wed 21 Dec 2022 13:47:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31743
IP address blocks: 2a10:8800::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:34:f0:21:8e:43:dc:86:f6:92:d8:fb:00:d0:74:9c:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa4e405359a2131708fc02438d472568e2c03470
Validity
Not Before: Dec 21 13:47:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=12d37b135cdd7a744a241c346067e855c977ee5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:5a:ae:b1:1c:92:e9:48:ba:90:b1:12:2c:e5:
8a:bb:93:64:77:2d:57:10:2c:20:ae:c0:1b:14:09:
1d:75:f1:3d:92:29:49:42:64:0f:b9:18:db:f5:80:
94:c0:a9:fe:85:0a:4b:71:4a:c4:9a:36:e2:cf:c5:
e4:7c:61:13:84:1f:f4:85:68:7c:77:96:17:e9:f5:
13:73:eb:d3:65:5c:ef:7f:f5:91:97:a2:2a:de:55:
6f:60:9d:7d:67:26:c4:d8:fe:a9:a8:8d:70:71:95:
58:3b:a0:01:54:3b:e9:c4:80:91:34:6c:8e:98:96:
bf:f1:7a:38:d2:95:2a:17:e5:86:6b:b6:bb:e4:02:
f4:71:3f:2a:a0:c7:c3:68:d6:c3:bc:54:ee:29:a8:
cb:3b:e9:4f:80:1f:1c:16:cc:67:57:bc:2a:34:70:
c4:e4:7f:aa:7b:9a:14:5a:b0:f5:5d:3c:04:43:2e:
a5:3a:40:a1:e9:e2:88:18:3b:e3:7d:26:c3:88:d4:
d8:6f:39:c3:c2:9f:88:bf:17:ca:cb:da:92:81:3a:
ce:4b:80:86:0b:a5:ef:d8:48:f3:48:fd:4b:b6:11:
33:29:3c:6e:47:1e:cd:4e:93:42:54:0e:81:8e:58:
87:01:c7:f6:1f:11:04:41:e9:4a:d2:8d:ad:c0:cf:
2a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:D3:7B:13:5C:DD:7A:74:4A:24:1C:34:60:67:E8:55:C9:77:EE:5F
X509v3 Authority Key Identifier:
keyid:FA:4E:40:53:59:A2:13:17:08:FC:02:43:8D:47:25:68:E2:C0:34:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-k5AU1miExcI_AJDjUclaOLANHA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/6a3f35-35b8-49e0-9f44-b818faecb717/1/EtN7E1zdenRKJBw0YGfoVcl37l8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/6a3f35-35b8-49e0-9f44-b818faecb717/1/1-k5AU1miExcI_AJDjUclaOLANHA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:8800::/29
Signature Algorithm: sha256WithRSAEncryption
7d:c7:ba:40:cb:74:da:0b:bf:09:e3:90:67:02:34:51:29:ce:
23:d6:06:55:3e:d9:53:72:7c:ad:82:67:e8:93:33:3d:3a:be:
ac:be:08:cf:b7:fc:b1:66:3f:70:f6:cf:c6:9e:2c:10:ab:a9:
c8:73:a9:af:8c:98:0e:c5:50:f7:30:eb:ba:a7:cd:cb:5b:d0:
68:9a:91:e6:22:aa:a4:14:ac:6d:ed:0f:40:6d:50:0c:df:b4:
b5:eb:93:0b:9a:9c:c3:a8:19:7b:e9:04:81:a6:43:ff:31:86:
58:a9:e5:e1:88:0c:14:50:e7:83:29:74:11:e9:d9:12:d3:4a:
01:46:27:cd:bf:52:87:a0:da:ad:4c:f8:c2:fa:ce:cc:d4:0d:
9f:0b:17:b1:ae:0b:64:87:15:f8:15:76:a4:a9:2a:08:24:90:
fc:0e:aa:92:a3:8e:4a:fb:01:d1:b1:3b:e9:e7:ef:05:d7:e8:
7f:8f:90:c8:c7:0b:8f:09:dd:92:2e:49:f5:0b:9a:13:25:4a:
d4:a2:88:7f:f5:96:10:e9:04:16:61:19:3a:ce:1e:41:1c:f3:
29:31:48:68:66:6b:19:09:cf:54:4c:98:6c:a0:9f:15:50:e8:
f9:06:40:09:df:ee:99:e2:a7:a3:8e:8f:21:ce:25:59:27:f0:
b9:5c:43:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:59 2023 by rpki-client on console-ams.rpki-client.org