Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/df7944-2589-47cb-ab56-5358401fb796/1/oBfq0uib5dzIAPoLcsogX2OeuMg.roa
File: oBfq0uib5dzIAPoLcsogX2OeuMg.roa (raw, json)
Hash identifier: meDn4sP2KRo7TTePy8kp7VFe+6SGeie3yW5bMFfnPUA=
Subject key identifier: A0:17:EA:D2:E8:9B:E5:DC:C8:00:FA:0B:72:CA:20:5F:63:9E:B8:C8
Certificate issuer: /CN=70bf553042f1a43827dc034500bbd1068a7297ca
Certificate serial: 0183E56CBB1C83020CB7E5CF1E43380C5936
Authority key identifier: 70:BF:55:30:42:F1:A4:38:27:DC:03:45:00:BB:D1:06:8A:72:97:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cL9VMELxpDgn3ANFALvRBopyl8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/df7944-2589-47cb-ab56-5358401fb796/1/oBfq0uib5dzIAPoLcsogX2OeuMg.roa
Signing time: Mon 17 Oct 2022 10:10:51 +0000
ROA not before: Mon 17 Oct 2022 10:10:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 147049
IP address blocks: 2a13:240:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e5:6c:bb:1c:83:02:0c:b7:e5:cf:1e:43:38:0c:59:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70bf553042f1a43827dc034500bbd1068a7297ca
Validity
Not Before: Oct 17 10:10:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a017ead2e89be5dcc800fa0b72ca205f639eb8c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:bb:03:9a:70:48:eb:be:ec:92:52:e3:51:15:
7d:4e:e9:b2:68:c5:a2:68:e7:6a:a9:4f:69:dd:81:
76:4d:e0:af:59:52:46:65:fb:6e:70:2f:66:ee:37:
42:bc:a4:ae:70:84:8e:21:84:d8:fd:0c:d9:1b:d0:
56:cc:66:48:c9:0e:d6:2b:2a:28:2d:8e:79:0e:bb:
df:29:4d:00:9d:aa:a0:e4:7d:43:26:53:9b:ae:9a:
c2:2c:f3:5a:56:a6:f3:73:17:ae:ca:83:53:3b:e7:
35:ed:c1:25:00:d9:49:d1:82:58:b1:16:d2:04:8c:
de:cd:1e:fc:6e:bb:a9:28:5b:57:1e:a0:f4:e2:b3:
2f:71:57:79:8c:39:61:c2:23:1a:bf:dc:be:ac:6b:
2c:93:6a:f8:29:5a:06:aa:0f:e1:a9:f1:9f:f8:8c:
9f:ca:dd:d2:f1:64:7d:c7:63:4d:b1:28:bf:f8:2f:
f8:95:2d:bd:7e:ba:52:c5:08:2a:04:98:6f:d3:a5:
b2:6e:65:f5:50:8a:b3:49:b0:39:ea:44:12:55:44:
1c:11:9f:0c:2b:7b:b2:ea:20:91:c3:2f:56:c1:37:
10:2c:88:45:47:32:aa:d8:ff:a1:f3:d0:b4:9c:f3:
40:4d:e0:3e:0c:67:a2:c1:94:f4:74:18:cd:87:b1:
0d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:17:EA:D2:E8:9B:E5:DC:C8:00:FA:0B:72:CA:20:5F:63:9E:B8:C8
X509v3 Authority Key Identifier:
keyid:70:BF:55:30:42:F1:A4:38:27:DC:03:45:00:BB:D1:06:8A:72:97:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cL9VMELxpDgn3ANFALvRBopyl8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/df7944-2589-47cb-ab56-5358401fb796/1/oBfq0uib5dzIAPoLcsogX2OeuMg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/df7944-2589-47cb-ab56-5358401fb796/1/cL9VMELxpDgn3ANFALvRBopyl8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:240:1::/48
Signature Algorithm: sha256WithRSAEncryption
5e:e5:ee:f6:fb:2c:15:78:48:c3:e7:04:8f:ca:8c:dd:6c:1b:
6c:37:21:d0:e6:49:17:59:59:af:01:97:06:b0:3d:62:eb:be:
e0:9a:66:df:6c:bb:4a:17:66:5d:d3:cc:48:67:6c:e7:a6:35:
3f:3b:69:03:2e:09:91:ba:ec:e8:bd:c4:8d:0f:8a:ad:e1:39:
bc:63:77:4b:fb:a4:8d:06:f9:76:a1:1e:38:0b:45:21:9c:6b:
38:f8:97:c5:5e:61:d9:67:fc:e7:d6:c7:de:d0:48:7a:34:a4:
52:f6:2b:05:8e:95:af:f5:27:36:f9:61:47:e6:c9:a8:dc:9a:
af:60:60:f8:44:a8:4b:f4:49:24:f0:e9:22:58:91:b5:f8:10:
3f:81:c0:c3:e2:8f:b7:2a:ff:4c:d5:5a:33:c3:5e:3c:e3:2c:
66:66:97:33:01:f9:74:a9:b3:29:fb:e4:84:b6:c4:d9:84:7e:
4e:04:33:57:90:97:fa:2e:ed:02:2e:8c:40:e4:0c:7d:71:51:
0b:85:b6:74:db:6f:32:47:6d:3e:da:e1:95:86:de:40:aa:a1:
15:92:63:5c:ad:ab:af:b6:a5:75:31:74:da:82:19:eb:74:36:
7d:49:95:05:02:e2:31:53:50:7a:8d:2f:82:cc:5c:a7:5c:24:
e2:8a:a8:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:13 2023 by rpki-client on console-fra.rpki-client.org