Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/4BjOq104qcv7Uy6-O-x_8lue5Mo.roa
File: 4BjOq104qcv7Uy6-O-x_8lue5Mo.roa (raw, json)
Hash identifier: DZ7tmQZN1OtUU9ksks0QaLpFz30IHfE6nThuteBAgbs=
Subject key identifier: E0:18:CE:AB:5D:38:A9:CB:FB:53:2E:BE:3B:EC:7F:F2:5B:9E:E4:CA
Certificate issuer: /CN=30d58e40c6d91f3729e57e3344d308b5992fe46e
Certificate serial: 0183D0F05C3326BD02F72EAAB70738F836B5
Authority key identifier: 30:D5:8E:40:C6:D9:1F:37:29:E5:7E:33:44:D3:08:B5:99:2F:E4:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MNWOQMbZHzcp5X4zRNMItZkv5G4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/4BjOq104qcv7Uy6-O-x_8lue5Mo.roa
Signing time: Thu 13 Oct 2022 10:42:36 +0000
ROA not before: Thu 13 Oct 2022 10:42:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 2a13:141:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d0:f0:5c:33:26:bd:02:f7:2e:aa:b7:07:38:f8:36:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30d58e40c6d91f3729e57e3344d308b5992fe46e
Validity
Not Before: Oct 13 10:42:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e018ceab5d38a9cbfb532ebe3bec7ff25b9ee4ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:cf:a4:c1:a1:52:3c:44:69:1d:d4:c7:5e:a9:
06:e8:06:09:ff:d8:d3:3a:89:b2:0a:c0:09:a8:e3:
32:0e:50:b1:be:94:4d:3c:ba:9f:a4:a8:f0:44:83:
7e:1a:51:8a:b1:3d:2e:4f:be:f8:06:c5:84:d7:86:
4b:72:14:dc:75:7e:53:dd:05:f6:fa:17:7f:04:3c:
cb:e0:4d:94:e5:47:b7:36:f0:c5:95:79:87:db:92:
4c:02:e7:16:3f:ae:df:12:7e:25:0e:2c:63:5a:9c:
53:3c:bd:06:4f:c8:8f:8d:01:33:0a:c8:bd:9e:28:
c1:80:a0:d6:9f:12:50:44:74:b2:47:c2:65:35:66:
86:10:7b:19:91:db:85:08:cd:7b:b3:a9:7a:0a:14:
a7:28:31:d7:b7:ce:5a:02:76:90:b0:e6:9b:70:8b:
63:6f:b8:34:67:83:0f:a6:56:c9:d4:df:8b:0e:5e:
d5:23:a8:e9:25:03:8c:10:e7:c8:9c:99:57:71:68:
73:37:7f:2c:e7:27:72:77:93:0d:78:17:dd:6a:8c:
8d:77:0c:ea:1f:59:8d:63:8f:08:06:91:eb:89:16:
f6:dc:80:f2:61:61:79:9f:6b:ad:ba:88:b8:32:66:
c2:75:d5:f5:06:b7:dd:11:81:61:89:bb:4a:dc:c2:
6c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:18:CE:AB:5D:38:A9:CB:FB:53:2E:BE:3B:EC:7F:F2:5B:9E:E4:CA
X509v3 Authority Key Identifier:
keyid:30:D5:8E:40:C6:D9:1F:37:29:E5:7E:33:44:D3:08:B5:99:2F:E4:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MNWOQMbZHzcp5X4zRNMItZkv5G4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/4BjOq104qcv7Uy6-O-x_8lue5Mo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:141:2::/48
Signature Algorithm: sha256WithRSAEncryption
5b:0b:29:f5:d1:1c:90:e3:3e:9b:f0:75:01:0a:a8:8d:21:0d:
dd:c8:76:8d:0e:e5:ce:35:1f:46:57:70:21:c6:2e:73:71:28:
0d:56:83:02:1a:82:8b:34:5e:77:1d:8c:05:ea:79:a9:c4:9c:
3e:8f:90:52:75:60:15:15:ec:2e:51:a1:20:1d:47:1b:23:76:
fb:f0:72:06:f7:3a:0c:1a:99:9a:be:a4:07:2f:7f:ed:f8:5f:
37:dd:99:2d:8b:3d:3e:f8:16:b9:dd:8f:b2:31:a8:af:f8:3c:
72:4d:5f:d8:f6:b5:62:54:f8:d8:e1:7d:1f:da:49:36:dd:0d:
b8:75:16:af:67:f5:36:04:31:85:ad:fc:30:78:70:39:41:3b:
32:62:cc:35:df:ed:67:45:2a:56:7a:4e:89:9d:c0:0c:28:13:
30:ff:3e:6c:ac:9e:97:02:b4:1d:95:ae:3d:8f:83:53:be:23:
d5:d4:c0:f3:af:b7:c2:99:fb:bb:1d:6a:24:78:8f:71:28:66:
3c:10:e8:9e:19:31:ab:5f:78:9f:29:17:29:09:e7:35:49:25:
68:39:04:2e:34:4d:fd:91:c6:43:37:f9:c7:ef:b7:2a:f9:0d:
de:49:95:51:4e:32:ab:28:5f:01:36:db:34:ee:5c:29:c3:bd:
be:3c:bd:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:24 2024 by rpki-client on console-ams.rpki-client.org