Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/vzao7n9o-jn0LcQ80XnNMBZ8G-E.roa
File: vzao7n9o-jn0LcQ80XnNMBZ8G-E.roa (raw, json)
Hash identifier: xK8YvUqS5gV83GRaBFQeX6Tlucuar1z3A4800JY07ow=
Subject key identifier: BF:36:A8:EE:7F:68:FA:39:F4:2D:C4:3C:D1:79:CD:30:16:7C:1B:E1
Certificate issuer: /CN=30d58e40c6d91f3729e57e3344d308b5992fe46e
Certificate serial: 0183D1265FAF0D048DD285E6ED5B5EB5D773
Authority key identifier: 30:D5:8E:40:C6:D9:1F:37:29:E5:7E:33:44:D3:08:B5:99:2F:E4:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MNWOQMbZHzcp5X4zRNMItZkv5G4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/vzao7n9o-jn0LcQ80XnNMBZ8G-E.roa
Signing time: Thu 13 Oct 2022 11:41:36 +0000
ROA not before: Thu 13 Oct 2022 11:41:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 2a13:141:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d1:26:5f:af:0d:04:8d:d2:85:e6:ed:5b:5e:b5:d7:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30d58e40c6d91f3729e57e3344d308b5992fe46e
Validity
Not Before: Oct 13 11:41:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf36a8ee7f68fa39f42dc43cd179cd30167c1be1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:31:55:a5:14:ed:96:14:6a:de:f2:e9:fd:a9:
a5:c1:d4:f1:18:d6:58:9e:02:cf:04:c7:b5:f7:a4:
a1:c4:95:1c:47:a1:83:ce:08:ba:e6:0d:21:36:24:
6b:54:c9:e4:d6:68:fd:50:a4:58:fb:09:b9:f3:e3:
9e:9b:2e:67:2e:ee:ac:11:a0:8f:6c:14:5b:42:29:
15:6a:9f:7c:79:0c:29:c0:14:be:0e:b5:1b:32:ff:
cf:4f:ec:8c:95:26:81:ba:6b:ed:81:52:4b:c2:00:
02:a0:1a:4e:a7:92:0f:59:7d:ef:b8:9f:39:6d:d6:
52:92:1d:55:c4:20:cc:e1:95:8f:d0:30:ae:4c:bc:
12:ed:3c:5a:4c:12:08:82:d7:6d:0a:0f:72:19:3e:
45:16:89:39:0f:07:ee:bc:d9:ef:c9:61:18:c1:a4:
26:47:ea:cf:e6:d7:3c:da:28:12:59:fa:39:5d:6a:
5d:6e:49:6a:8c:18:a4:83:50:96:d8:86:0e:8d:77:
41:4a:9e:52:3e:f1:98:32:70:2b:94:3c:6a:3e:4e:
12:63:a5:53:ec:40:7f:c6:72:ad:10:77:d6:14:29:
6e:8f:ce:c2:5c:0f:7f:c1:8a:20:ae:f8:77:f6:da:
3e:0c:b9:2b:d8:e0:84:06:25:87:ba:2b:14:0b:d4:
13:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:36:A8:EE:7F:68:FA:39:F4:2D:C4:3C:D1:79:CD:30:16:7C:1B:E1
X509v3 Authority Key Identifier:
keyid:30:D5:8E:40:C6:D9:1F:37:29:E5:7E:33:44:D3:08:B5:99:2F:E4:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MNWOQMbZHzcp5X4zRNMItZkv5G4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/vzao7n9o-jn0LcQ80XnNMBZ8G-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:141:3::/48
Signature Algorithm: sha256WithRSAEncryption
5e:d1:67:dd:6d:52:64:82:12:86:d2:95:4a:81:a4:54:d7:d2:
e0:ad:4e:89:9d:63:f3:93:c4:25:5c:ef:67:ad:83:55:ed:7d:
ca:59:6e:70:a2:ac:02:8e:fb:8a:02:c7:74:56:5f:f9:98:72:
b3:66:39:7c:b8:c6:d0:3e:6f:02:51:0e:1d:de:35:69:21:e5:
c5:ec:db:ba:a5:4c:d7:ef:f0:71:1f:b0:a3:5e:4f:ba:d3:9c:
59:f3:7c:a1:96:21:62:c5:d9:6c:cc:04:89:c2:78:58:61:6d:
e8:d7:f7:b8:93:73:8a:9f:3f:5c:a4:72:01:67:eb:c6:19:c7:
98:5d:30:cc:6b:3f:23:de:53:0c:e2:b0:39:4c:45:19:80:cb:
6b:f2:6e:13:0f:19:15:25:52:e9:6f:cc:d8:70:23:08:fe:f6:
78:bc:09:a6:f5:f9:6f:e9:cc:33:3e:eb:b1:93:42:69:e0:bc:
3e:11:f1:65:1a:e4:c6:2a:09:90:17:66:f7:1e:ae:29:f2:9a:
46:94:aa:ca:2c:4f:80:2c:95:f1:cf:90:26:3c:e8:83:9f:c7:
36:74:ab:48:d5:70:7f:77:64:58:63:20:ea:40:d8:0f:44:4e:
e2:7d:55:62:f3:8f:3c:f3:3f:1c:a3:bf:5d:fc:c3:c1:32:cc:
c6:11:73:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:18 2023 by rpki-client on console-fra.rpki-client.org