Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/e2258d-8bc5-44ed-8073-ae999ed7c5d4/1/VQgKb2fDjZIxWWXWDu6Dt8BeVf0.roa
File: VQgKb2fDjZIxWWXWDu6Dt8BeVf0.roa (raw, json)
Hash identifier: NCg1UjJjcpV0OVHI5UOflM5/3l29kIF3lT2l5GLISLo=
Subject key identifier: 55:08:0A:6F:67:C3:8D:92:31:59:65:D6:0E:EE:83:B7:C0:5E:55:FD
Certificate issuer: /CN=9b97c22d0b338a8a45aa1345b0917ba0dc973390
Certificate serial: 030D7CB8
Authority key identifier: 9B:97:C2:2D:0B:33:8A:8A:45:AA:13:45:B0:91:7B:A0:DC:97:33:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m5fCLQsziopFqhNFsJF7oNyXM5A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/e2258d-8bc5-44ed-8073-ae999ed7c5d4/1/VQgKb2fDjZIxWWXWDu6Dt8BeVf0.roa
Signing time: Sat 01 Jan 2022 15:07:10 +0000
ROA not before: Sat 01 Jan 2022 15:07:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47869
IP address blocks: 2a10:1440::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51215544 (0x30d7cb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b97c22d0b338a8a45aa1345b0917ba0dc973390
Validity
Not Before: Jan 1 15:07:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55080a6f67c38d92315965d60eee83b7c05e55fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:5f:3e:13:46:79:ca:3c:a3:fd:20:62:03:49:
a4:55:69:6c:67:73:cd:d9:92:c5:f7:57:84:a3:ee:
e7:2b:17:42:28:93:24:84:2e:ea:48:c5:6d:f4:34:
b2:21:04:23:9b:3d:0a:5a:20:44:28:24:fe:c1:2f:
fa:fc:21:e2:1b:1d:fb:36:be:26:ea:30:29:ab:f8:
84:75:c1:e0:27:1f:72:26:bd:01:b3:29:af:fa:99:
8e:8b:6b:92:5d:c3:a9:eb:63:7c:5c:01:cf:db:57:
bb:3a:86:14:d9:e2:8b:23:06:6b:74:82:e2:2a:bd:
35:74:b7:34:b3:e3:0b:a7:85:b4:c7:e8:76:4d:8b:
40:ba:db:45:c4:4c:fb:bc:e5:99:23:55:3f:a4:46:
58:b0:3e:6e:48:99:34:eb:37:8d:11:82:a8:0f:e9:
f0:29:b3:00:96:a3:8d:c7:e5:47:37:fa:9f:c6:4e:
c9:5a:b7:c3:98:e2:76:81:e8:19:76:4d:f8:09:de:
3e:de:fb:ab:06:52:b6:cd:42:ca:5a:75:d5:de:c6:
80:16:46:16:ca:42:6c:18:0b:50:40:7d:47:d1:a4:
ca:0d:60:c5:04:30:20:55:18:ab:45:2d:c7:99:16:
9e:53:c4:ab:74:4d:31:28:11:f8:a3:78:67:ff:1f:
88:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:08:0A:6F:67:C3:8D:92:31:59:65:D6:0E:EE:83:B7:C0:5E:55:FD
X509v3 Authority Key Identifier:
keyid:9B:97:C2:2D:0B:33:8A:8A:45:AA:13:45:B0:91:7B:A0:DC:97:33:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m5fCLQsziopFqhNFsJF7oNyXM5A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/e2258d-8bc5-44ed-8073-ae999ed7c5d4/1/VQgKb2fDjZIxWWXWDu6Dt8BeVf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/e2258d-8bc5-44ed-8073-ae999ed7c5d4/1/m5fCLQsziopFqhNFsJF7oNyXM5A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:1440::/29
Signature Algorithm: sha256WithRSAEncryption
69:51:3b:e9:8d:7a:c0:5c:d3:41:75:31:fa:42:80:c9:5a:a4:
9d:16:f8:89:85:e4:ee:49:04:1e:23:19:ec:0e:5e:b7:9d:aa:
58:2f:55:fb:21:fb:f8:75:e3:79:33:2b:94:20:fe:c4:ab:8f:
ca:26:f3:a1:fc:39:9d:88:f4:e4:73:0b:01:ac:03:ec:a3:36:
6c:18:36:7e:fe:b0:8b:42:e5:09:4a:ed:78:d6:54:db:dd:0f:
1d:96:12:4e:bb:93:ce:46:4e:b5:52:dc:d3:5b:3a:81:26:22:
38:9f:cc:93:e8:7c:1f:20:83:ea:93:be:bd:10:27:a3:22:b9:
03:4e:0c:b6:97:d4:6f:82:57:ea:4f:a4:3b:15:a2:2e:ff:e3:
90:fa:c6:bc:75:2d:c0:c2:98:c9:f7:a5:92:1c:54:e5:c4:f6:
c4:a6:ae:ce:21:1c:8b:6a:4d:96:34:7a:0d:e9:6d:da:12:a6:
f6:e8:62:e9:5b:81:50:1a:2c:b1:e1:39:55:d1:bc:08:b1:2c:
42:2b:33:ff:07:77:72:c6:6f:c8:90:54:94:8c:49:3b:1c:20:
db:0e:0a:44:9b:fc:36:52:e0:40:51:55:38:11:13:ba:77:85:
96:20:50:2c:29:57:5e:80:40:6a:9b:84:c0:b0:1a:3f:99:72:
92:c3:c4:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:32 2023 by rpki-client on console-ams.rpki-client.org