Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/nDW-IukQw54ZSJvRr-juKSVN7zY.roa
File: nDW-IukQw54ZSJvRr-juKSVN7zY.roa (raw, json)
Hash identifier: Gv990xGSp4kckHutvtyPStETpliP9Dd7rrj13HvgAsU=
Subject key identifier: 9C:35:BE:22:E9:10:C3:9E:19:48:9B:D1:AF:E8:EE:29:25:4D:EF:36
Certificate issuer: /CN=30d58e40c6d91f3729e57e3344d308b5992fe46e
Certificate serial: 0183DF20402E157E23DF98249856D8FF989D
Authority key identifier: 30:D5:8E:40:C6:D9:1F:37:29:E5:7E:33:44:D3:08:B5:99:2F:E4:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MNWOQMbZHzcp5X4zRNMItZkv5G4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/nDW-IukQw54ZSJvRr-juKSVN7zY.roa
Signing time: Sun 16 Oct 2022 04:49:36 +0000
ROA not before: Sun 16 Oct 2022 04:49:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202348
IP address blocks: 2a13:141:2::/48 maxlen: 48
2a13:141:11::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:df:20:40:2e:15:7e:23:df:98:24:98:56:d8:ff:98:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30d58e40c6d91f3729e57e3344d308b5992fe46e
Validity
Not Before: Oct 16 04:49:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c35be22e910c39e19489bd1afe8ee29254def36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:75:94:2f:34:42:e2:e0:15:31:01:15:92:61:
3d:13:65:54:93:c3:0b:6c:37:3c:a0:62:1d:70:ea:
d4:e6:25:f0:f6:19:c8:d6:ea:d1:83:37:2f:e0:29:
9e:46:1e:c4:b1:17:f7:22:01:9f:05:68:c8:80:34:
d0:32:59:14:0b:58:0c:15:43:89:ec:81:1c:cc:8c:
05:04:29:c4:f8:0f:b3:28:f3:af:99:7b:00:d4:12:
44:99:17:e5:82:f1:b8:0f:d1:17:e3:7d:5e:5c:af:
d8:7f:a3:c6:1a:06:61:cb:91:d3:50:cd:5f:63:a1:
8f:76:71:7d:7c:b6:48:66:c7:4a:38:03:dc:06:c3:
90:40:b9:e6:67:ef:97:1e:14:64:31:89:1e:6d:6f:
f7:da:d0:52:b4:01:e2:23:1b:08:a8:bb:42:7b:95:
aa:23:38:8e:ff:f1:34:2e:92:52:8e:a7:26:34:09:
6e:72:b0:69:fb:f4:fa:9f:36:89:68:21:35:57:64:
70:d2:c5:28:30:83:9b:3a:e3:6e:2b:9a:96:00:b7:
84:87:12:6d:b2:4c:90:6d:1c:05:59:65:22:ed:4f:
9e:76:88:74:aa:16:dc:62:6a:d2:8d:d1:2f:d1:c9:
c5:f6:c8:79:1d:4c:8d:ab:a7:cf:cf:70:5c:52:78:
bd:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:35:BE:22:E9:10:C3:9E:19:48:9B:D1:AF:E8:EE:29:25:4D:EF:36
X509v3 Authority Key Identifier:
keyid:30:D5:8E:40:C6:D9:1F:37:29:E5:7E:33:44:D3:08:B5:99:2F:E4:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MNWOQMbZHzcp5X4zRNMItZkv5G4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/nDW-IukQw54ZSJvRr-juKSVN7zY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:141:2::/48
2a13:141:11::/48
Signature Algorithm: sha256WithRSAEncryption
18:bb:39:e7:b8:3d:20:0e:d9:34:d1:bb:e4:38:f8:bc:b5:82:
27:e8:11:d6:45:20:03:15:34:02:46:2b:99:d2:81:7b:c5:09:
2b:27:07:fc:2f:4b:db:b0:89:ac:8e:7a:a5:4e:4c:f0:41:8b:
32:a9:69:0d:00:e2:c0:56:79:dd:2a:d0:ee:94:24:cd:76:3b:
b7:81:11:d5:c5:93:9e:72:b1:e3:59:6e:34:f4:1a:1c:71:2f:
65:34:36:ff:67:e3:92:a7:ec:ec:bc:10:7e:37:27:1c:9e:46:
f0:a9:d1:fb:24:aa:8f:6c:5f:4c:c4:e4:22:89:28:0e:7e:3f:
b0:e0:f5:b9:f9:00:4a:c4:3f:ef:5d:81:41:fa:66:fb:65:e4:
6d:11:a4:48:f3:7c:a4:ef:8b:35:8a:61:6a:6f:74:47:55:22:
df:d0:ab:f8:9a:f9:aa:dc:cd:50:8a:2e:ef:a1:96:1e:fd:85:
4f:65:b7:1d:d2:cf:dd:43:f5:5d:dd:a3:b1:5d:b8:5a:4d:c9:
45:36:bf:bf:c3:76:2a:d4:da:b6:80:7c:7d:26:fc:2b:72:48:
3b:f7:7c:b0:8a:e3:2b:47:20:24:ec:7c:31:10:17:1d:26:4a:
b8:6d:78:df:05:41:f3:1c:e3:04:10:cc:52:c9:a5:80:0a:9d:
98:55:80:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:07 2023 by rpki-client on console-ams.rpki-client.org