Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/aaCk476Uzr1yJ7CL6iKF9vIdDIs.roa
File: aaCk476Uzr1yJ7CL6iKF9vIdDIs.roa (raw, json)
Hash identifier: gNOrV80VHxDGChg+9IhYxuNSlbVhtXbRKZd0u7G0JUM=
Subject key identifier: 69:A0:A4:E3:BE:94:CE:BD:72:27:B0:8B:EA:22:85:F6:F2:1D:0C:8B
Certificate issuer: /CN=30d58e40c6d91f3729e57e3344d308b5992fe46e
Certificate serial: 0183D1265EF7CD204855CA6D381FC7FAED38
Authority key identifier: 30:D5:8E:40:C6:D9:1F:37:29:E5:7E:33:44:D3:08:B5:99:2F:E4:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MNWOQMbZHzcp5X4zRNMItZkv5G4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/aaCk476Uzr1yJ7CL6iKF9vIdDIs.roa
Signing time: Thu 13 Oct 2022 11:41:36 +0000
ROA not before: Thu 13 Oct 2022 11:41:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 2a13:141:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d1:26:5e:f7:cd:20:48:55:ca:6d:38:1f:c7:fa:ed:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30d58e40c6d91f3729e57e3344d308b5992fe46e
Validity
Not Before: Oct 13 11:41:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69a0a4e3be94cebd7227b08bea2285f6f21d0c8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:01:56:38:aa:7c:31:82:23:b4:83:ac:ad:45:
b5:4e:b1:d5:ae:c5:88:b1:ec:35:e0:5f:6e:a4:16:
52:af:b9:9b:d0:07:7d:56:dc:68:7c:32:bb:be:a1:
c8:ad:ba:cc:62:c6:b2:6d:b2:df:a0:5c:1b:fe:af:
3e:00:4c:9a:a5:cd:a7:53:f0:87:1d:90:3d:a6:65:
e8:32:42:4f:b1:77:ef:ce:ac:4f:5d:7e:84:a4:a9:
95:19:82:d0:42:f3:20:b7:19:42:60:62:e0:eb:8b:
43:5e:5d:49:83:de:33:93:41:fa:a6:99:b6:57:ff:
c1:2f:77:7d:ec:ba:d3:69:c6:f6:1d:fa:70:9f:4f:
42:4c:35:a2:22:77:4a:a9:ef:e9:5d:81:6e:a7:4d:
38:bd:16:87:74:77:e6:7e:b5:3d:95:72:75:d8:c6:
25:44:2a:4c:93:44:34:eb:e9:33:58:7a:ae:c5:86:
11:7c:ee:6a:4b:2f:28:a1:85:e7:c3:28:71:dc:47:
b1:2a:48:37:10:fc:18:b3:6f:b8:c7:af:55:ad:0f:
75:fb:f4:5b:7a:5e:3f:9a:f9:cc:e3:11:92:d6:7d:
b7:7f:cb:0d:94:18:c9:db:83:f1:7d:43:c2:e7:5a:
4e:26:d6:00:12:19:ac:9d:cb:1e:db:1d:ab:e9:fa:
60:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:A0:A4:E3:BE:94:CE:BD:72:27:B0:8B:EA:22:85:F6:F2:1D:0C:8B
X509v3 Authority Key Identifier:
keyid:30:D5:8E:40:C6:D9:1F:37:29:E5:7E:33:44:D3:08:B5:99:2F:E4:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MNWOQMbZHzcp5X4zRNMItZkv5G4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/aaCk476Uzr1yJ7CL6iKF9vIdDIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:141:3::/48
Signature Algorithm: sha256WithRSAEncryption
19:05:77:33:a4:87:25:d3:24:6e:d3:5e:85:44:04:e6:11:2d:
58:f6:26:2f:75:39:0f:55:93:c8:16:93:ed:fd:11:e3:5e:f0:
ae:ef:d1:7a:3a:37:45:02:77:de:41:af:96:14:1d:d3:6d:12:
5a:ba:fb:3a:09:a5:c1:23:de:ba:fb:f3:72:13:a1:75:f5:98:
a4:57:ef:5e:18:b1:a6:6c:4f:53:ec:e7:03:ce:00:a5:d7:cf:
fe:70:56:92:ea:9c:96:63:4b:28:53:1b:66:cd:7d:f9:8d:ff:
84:b0:ad:65:0e:4c:47:86:55:ac:44:3b:01:4d:e6:df:d2:a9:
b9:a6:7e:05:4f:98:81:0f:36:7b:25:fd:ff:b4:59:00:c1:0a:
f6:9d:7a:74:d7:3a:5e:a8:94:b5:69:f0:ee:fd:d7:d8:97:ae:
4b:73:3f:96:2a:48:4d:62:d5:cd:65:07:9f:f2:34:b4:cd:74:
e3:ae:ef:69:32:90:0e:36:26:8f:11:a3:f6:94:c4:5d:da:1c:
3c:a9:25:1a:23:23:1d:c6:44:46:b2:35:aa:f4:40:fa:de:88:
fd:a5:26:c1:61:be:8b:dc:45:9b:dc:f8:00:2e:6a:34:a7:8a:
45:85:de:74:93:da:b3:6a:7a:53:d8:8f:6e:9c:ef:1f:7a:de:
45:19:63:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:18 2023 by rpki-client on console-fra.rpki-client.org