Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/1ROgvQ5SmUrzlaJ4xAhflOEJhUs.roa
File: 1ROgvQ5SmUrzlaJ4xAhflOEJhUs.roa (raw, json)
Hash identifier: Kwcg7kA6YqsQhJRejKm7VZlDtZtRK+ZIsl8ChMG4Gm0=
Subject key identifier: D5:13:A0:BD:0E:52:99:4A:F3:95:A2:78:C4:08:5F:94:E1:09:85:4B
Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Certificate serial: 433A5ADB
Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/1ROgvQ5SmUrzlaJ4xAhflOEJhUs.roa
Signing time: Sat 01 Jan 2022 07:59:48 +0000
ROA not before: Sat 01 Jan 2022 07:59:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8280
IP address blocks: 2a03:f80:30::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1127897819 (0x433a5adb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Validity
Not Before: Jan 1 07:59:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d513a0bd0e52994af395a278c4085f94e109854b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:0c:d0:ee:71:39:92:f4:33:0a:24:af:e4:39:
63:c2:c7:58:a7:84:48:85:a3:b1:9e:e3:b0:e3:1b:
14:23:09:fb:2b:c3:95:70:e2:1a:3f:26:0d:0a:88:
2a:68:af:3e:4c:94:ec:25:56:1b:88:d1:48:82:be:
f8:c9:d9:2d:4a:c0:22:05:28:88:73:db:fe:46:a0:
f7:49:43:b8:e9:be:0e:4e:67:7f:bd:1a:cf:c9:a4:
bc:06:50:c6:20:ad:9b:16:62:4e:af:be:de:e5:15:
06:c7:fa:63:b1:44:38:5b:42:65:ca:e4:e4:e0:2c:
52:1a:ed:17:63:45:f4:e9:7f:80:b9:2a:c7:57:39:
43:ae:bb:bf:06:b3:a0:40:2d:7b:2b:8b:b6:61:b5:
12:2f:c8:04:f7:67:f9:be:fe:9f:bb:dc:7f:17:dd:
62:0f:60:69:91:bf:81:89:81:33:c6:2d:53:10:41:
12:d0:56:07:95:50:fa:f0:bc:fa:f1:74:4a:35:14:
53:7a:77:54:ca:ef:6a:bb:6c:b3:4f:cb:6f:8d:25:
6c:10:d4:f6:19:9b:3a:cd:31:78:9d:c2:ba:56:c1:
10:7b:c9:75:7b:f5:75:af:7e:e2:1f:92:6a:9c:55:
58:63:e5:72:01:74:b9:6d:6c:20:4f:d5:b5:8d:60:
96:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:13:A0:BD:0E:52:99:4A:F3:95:A2:78:C4:08:5F:94:E1:09:85:4B
X509v3 Authority Key Identifier:
keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/1ROgvQ5SmUrzlaJ4xAhflOEJhUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:f80:30::/48
Signature Algorithm: sha256WithRSAEncryption
26:cb:64:31:11:d6:23:1d:60:5a:bb:5a:f6:16:19:95:04:20:
b1:c6:0d:0e:12:a3:bf:7b:02:1b:0d:d0:65:e6:f0:42:10:55:
c9:20:5d:ba:19:2a:8b:f4:76:fc:27:23:82:8c:12:33:19:83:
a4:cd:8d:a1:31:9d:2d:34:a4:e7:20:f8:1e:e7:9a:74:09:7a:
ff:b8:33:ee:5d:7e:46:57:0a:3b:2d:87:cd:30:2b:8b:09:39:
7a:65:1e:89:d6:c3:0f:02:7b:db:18:58:2f:f3:90:08:b4:f2:
c1:48:06:c3:26:c6:ef:b0:58:bb:6b:3a:4c:f0:28:4f:7b:43:
20:0c:e9:2f:d9:c3:5a:59:f5:12:ba:d3:34:64:a3:bd:f7:82:
58:c1:09:e2:24:b0:64:9d:c5:c8:71:fe:49:47:70:39:12:5f:
3e:92:68:90:1c:ac:ee:f9:f1:53:38:76:13:e9:1f:f2:63:12:
26:4a:9d:f5:ac:70:67:12:3b:55:54:85:4c:f7:be:db:9e:76:
25:7a:4f:c6:47:f2:c0:5f:e7:b3:bf:59:b0:43:21:15:cf:47:
12:8e:d9:cc:a0:72:a9:e2:7b:e1:c3:55:7f:9f:54:02:d3:c6:
9e:81:02:03:c8:5e:f2:31:58:5c:21:90:9e:0b:10:62:47:5c:
27:49:2f:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:58 2023 by rpki-client on console-ams.rpki-client.org