Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/45f808-6c27-4579-8529-2bf8618b6f36/1/ElN3khOtal9sC_E95_Wl5n9ggg8.roa
File: ElN3khOtal9sC_E95_Wl5n9ggg8.roa (raw, json)
Hash identifier: k7QTolFVaJhuYcFxmjScxbeGEf83UTAhuggJZHFYU0A=
Subject key identifier: 12:53:77:92:13:AD:6A:5F:6C:0B:F1:3D:E7:F5:A5:E6:7F:60:82:0F
Certificate issuer: /CN=3001d9bd20658eac2b261ab16872b8f4764ebbb7
Certificate serial: 0182371111778FDAD185CA6B6A413D23F50B
Authority key identifier: 30:01:D9:BD:20:65:8E:AC:2B:26:1A:B1:68:72:B8:F4:76:4E:BB:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MAHZvSBljqwrJhqxaHK49HZOu7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/45f808-6c27-4579-8529-2bf8618b6f36/1/ElN3khOtal9sC_E95_Wl5n9ggg8.roa
Signing time: Mon 25 Jul 2022 20:34:01 +0000
ROA not before: Mon 25 Jul 2022 20:34:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 2a11:59c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:37:11:11:77:8f:da:d1:85:ca:6b:6a:41:3d:23:f5:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3001d9bd20658eac2b261ab16872b8f4764ebbb7
Validity
Not Before: Jul 25 20:34:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1253779213ad6a5f6c0bf13de7f5a5e67f60820f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:c0:2d:89:4d:bf:73:6b:20:15:fe:da:04:db:
04:39:8b:06:df:02:c9:7a:3c:9b:e9:4f:b5:23:ff:
7d:08:b0:59:8e:f0:e5:0f:52:bc:73:8b:c1:51:b6:
eb:c9:9b:aa:92:62:c2:1f:6f:4b:02:d6:45:a5:06:
d9:74:e9:15:bc:89:ae:d8:d4:e5:29:c8:6d:99:02:
8c:ac:39:e5:e0:45:bb:45:a1:8d:20:a4:bc:04:4c:
cb:64:50:4a:62:3e:da:26:fe:78:d2:05:1b:96:fb:
c9:6b:fb:b1:1a:a4:78:95:33:64:9c:12:09:ef:e8:
c4:09:cb:a9:01:15:33:55:81:7c:38:07:b5:4c:20:
04:9e:dd:4f:97:8c:82:43:2f:e6:64:db:f9:21:c0:
eb:29:fe:89:78:c4:de:67:6d:73:6c:86:cf:04:50:
f9:fa:90:fc:28:ad:1d:77:40:51:03:1b:ca:2b:78:
c7:55:15:7b:83:f6:ba:87:50:43:78:9b:4a:c9:cb:
13:8d:20:50:78:7b:7c:89:77:0f:c4:c1:79:83:09:
da:ea:00:63:3a:6b:8e:09:53:ba:4a:7e:d1:60:2f:
77:36:c4:3d:5b:01:06:5d:8f:ea:dc:37:70:87:82:
88:84:36:b5:4b:ae:53:e4:a8:e1:22:d5:12:fd:35:
99:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:53:77:92:13:AD:6A:5F:6C:0B:F1:3D:E7:F5:A5:E6:7F:60:82:0F
X509v3 Authority Key Identifier:
keyid:30:01:D9:BD:20:65:8E:AC:2B:26:1A:B1:68:72:B8:F4:76:4E:BB:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MAHZvSBljqwrJhqxaHK49HZOu7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/45f808-6c27-4579-8529-2bf8618b6f36/1/ElN3khOtal9sC_E95_Wl5n9ggg8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/45f808-6c27-4579-8529-2bf8618b6f36/1/MAHZvSBljqwrJhqxaHK49HZOu7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:59c0::/29
Signature Algorithm: sha256WithRSAEncryption
1e:79:9d:1d:e4:72:c1:64:35:69:58:39:a9:af:d7:33:21:a1:
e1:d4:65:77:ad:f4:82:d5:45:27:68:43:4f:66:45:e7:6b:a1:
4d:34:40:c8:c2:99:ee:35:3e:4c:5b:da:61:73:60:96:1d:40:
34:92:09:bb:54:b6:fa:e5:81:dc:60:54:60:51:47:81:36:c2:
ae:dd:89:da:af:1a:6c:ba:45:e5:db:b6:c6:73:82:dd:57:33:
1c:60:43:08:3a:3f:73:d2:d1:36:10:18:41:99:e6:8f:d4:28:
da:2d:fb:df:d8:e9:e6:ed:da:3b:c7:07:b6:8a:4f:32:1e:33:
a1:03:d8:ff:c1:74:dd:19:8c:c4:14:b8:18:36:01:32:65:a9:
f1:f2:10:ad:4c:8a:08:b7:bc:21:29:7c:b8:b8:93:e2:b3:f9:
39:f9:7d:f9:44:dc:7b:56:b5:83:80:52:2b:83:c0:a9:64:68:
20:12:a8:0a:b6:3e:06:e1:4c:92:f3:d9:86:fe:bf:c7:ab:6a:
36:a1:4c:1a:23:fb:9b:a8:20:17:7b:bf:34:1e:dd:10:a0:a8:
c3:55:0a:71:f5:de:59:b6:d3:c7:8f:55:3a:d7:2d:30:32:f8:
41:c1:70:b3:d1:72:63:54:13:b1:8c:46:a0:f3:f1:03:8a:92:
1c:56:d2:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:36 2023 by rpki-client on console-fra.rpki-client.org