Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d001ff-8323-4b89-be3d-c2efeb3b32a5/1/WiV265OtwkKoe9foDj7JQ2ZIEcA.roa
File: WiV265OtwkKoe9foDj7JQ2ZIEcA.roa (raw, json)
Hash identifier: 9/jLz/d2KwDfenTp4IdnDhpCuJl3xb1fJOoR0dtecb0=
Subject key identifier: 5A:25:76:EB:93:AD:C2:42:A8:7B:D7:E8:0E:3E:C9:43:66:48:11:C0
Certificate issuer: /CN=9d5138e1facf7b65dbb575fa7d47240c278b34df
Certificate serial: 0A930D0D
Authority key identifier: 9D:51:38:E1:FA:CF:7B:65:DB:B5:75:FA:7D:47:24:0C:27:8B:34:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nVE44frPe2XbtXX6fUckDCeLNN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d001ff-8323-4b89-be3d-c2efeb3b32a5/1/WiV265OtwkKoe9foDj7JQ2ZIEcA.roa
Signing time: Sat 01 Jan 2022 06:54:15 +0000
ROA not before: Sat 01 Jan 2022 06:54:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 2a0b:8100::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177409293 (0xa930d0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d5138e1facf7b65dbb575fa7d47240c278b34df
Validity
Not Before: Jan 1 06:54:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a2576eb93adc242a87bd7e80e3ec943664811c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f9:7d:7d:5e:fe:12:eb:d7:c2:eb:6b:28:1c:
46:b7:b7:bc:94:95:e3:2a:fa:1f:4a:86:5d:e3:96:
86:98:79:71:7e:4e:a2:be:b5:53:34:10:4b:9b:28:
d2:8a:58:1a:ba:87:e3:25:21:29:c6:fa:05:a9:ec:
80:c1:e8:37:69:6f:2a:6d:a9:5a:da:91:96:4f:8e:
59:e8:ee:78:f1:9b:36:43:2d:62:c5:18:a1:c1:f4:
81:20:25:03:cd:19:29:d7:86:ae:f7:b8:17:8d:2e:
ad:43:ca:3a:6f:9c:03:30:36:5c:1e:0b:7f:e1:87:
27:01:fe:29:fe:1b:9f:60:de:15:ac:7e:5c:ed:ec:
9a:67:e4:3d:2b:7d:a9:1b:ba:86:e8:f3:6e:f7:a5:
ed:77:09:17:00:db:32:d4:0f:2c:1e:7e:46:85:c7:
98:f1:38:cb:bd:53:01:c0:c7:96:08:1f:29:ad:93:
82:9e:88:e7:72:17:9d:53:7e:07:79:4e:0c:32:8c:
33:ad:23:32:98:66:7c:fc:3c:89:10:f1:15:9c:7f:
1d:fe:8d:3c:1c:cb:1d:76:cc:69:ce:16:e6:6b:6a:
87:b6:ba:ba:b4:a6:c0:c1:37:45:5e:04:12:72:99:
ff:7b:a8:d2:68:b9:45:65:fe:bd:8b:d0:82:60:4e:
12:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:25:76:EB:93:AD:C2:42:A8:7B:D7:E8:0E:3E:C9:43:66:48:11:C0
X509v3 Authority Key Identifier:
keyid:9D:51:38:E1:FA:CF:7B:65:DB:B5:75:FA:7D:47:24:0C:27:8B:34:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nVE44frPe2XbtXX6fUckDCeLNN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d001ff-8323-4b89-be3d-c2efeb3b32a5/1/WiV265OtwkKoe9foDj7JQ2ZIEcA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d001ff-8323-4b89-be3d-c2efeb3b32a5/1/nVE44frPe2XbtXX6fUckDCeLNN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:8100::/32
Signature Algorithm: sha256WithRSAEncryption
1e:81:d8:0a:05:4a:7e:d1:42:bd:ab:af:be:74:8b:b5:2d:8d:
84:2b:b8:10:aa:86:77:a1:13:3b:f3:32:43:c6:c6:5e:7e:ca:
9b:f9:0a:66:4e:41:04:10:5e:bc:71:3d:2e:42:e1:ed:75:86:
93:2e:c6:47:19:49:4e:c8:39:12:01:fa:42:97:e9:59:22:10:
7f:1d:c3:27:a6:61:a9:7d:58:24:d7:ce:12:96:f2:fc:6c:3e:
5e:b0:f0:f0:69:b9:a0:1b:b9:a9:a9:e7:d9:be:66:45:c9:89:
70:c0:81:af:e0:4c:a6:37:b2:ad:e5:a8:71:95:61:68:9e:e7:
22:71:e8:70:74:e2:b9:28:b9:59:d1:fe:f5:57:64:40:08:b3:
3d:b7:d2:71:2e:84:0c:8d:d0:49:97:bb:9d:b4:cf:14:4c:04:
6b:b5:5f:d9:e0:d3:58:fd:9b:30:29:57:94:99:b5:bf:0e:92:
81:00:ed:a9:12:4f:4f:a0:93:a9:8f:b8:bb:34:81:73:40:93:
3e:76:00:2a:01:3c:d5:46:b5:b1:5c:4b:24:84:d3:5c:d4:10:
55:fe:ed:6e:b1:89:6a:ab:2e:c3:0e:1d:d1:c1:9e:6d:78:d9:
e5:ec:a2:f7:28:1a:d9:19:47:30:54:bc:46:36:f5:a3:b3:91:
af:97:ec:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:19 2023 by rpki-client on console-fra.rpki-client.org