Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/15b08a-0299-401a-947f-69967100f868/1/Vk6Uo8AtCKAz4NWG9TJR-iIe2pA.roa
File: Vk6Uo8AtCKAz4NWG9TJR-iIe2pA.roa (raw, json)
Hash identifier: HMVINXdhVk1tMR390PN/Pk4TKoE0+NxsEMePis0pFoM=
Subject key identifier: 56:4E:94:A3:C0:2D:08:A0:33:E0:D5:86:F5:32:51:FA:22:1E:DA:90
Certificate issuer: /CN=e4adcd7a10cea1b5bd27ac8582e7d8062620dae7
Certificate serial: 018486C062848088639E9794742D37FC3096
Authority key identifier: E4:AD:CD:7A:10:CE:A1:B5:BD:27:AC:85:82:E7:D8:06:26:20:DA:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5K3NehDOobW9J6yFgufYBiYg2uc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/15b08a-0299-401a-947f-69967100f868/1/Vk6Uo8AtCKAz4NWG9TJR-iIe2pA.roa
Signing time: Thu 17 Nov 2022 18:01:05 +0000
ROA not before: Thu 17 Nov 2022 18:01:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 2a11:98c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:86:c0:62:84:80:88:63:9e:97:94:74:2d:37:fc:30:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4adcd7a10cea1b5bd27ac8582e7d8062620dae7
Validity
Not Before: Nov 17 18:01:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=564e94a3c02d08a033e0d586f53251fa221eda90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:0d:2a:af:73:49:f9:30:59:16:86:76:0e:da:
b5:58:43:c1:c5:9b:58:53:d7:a4:d3:d1:87:8f:8d:
42:4e:d2:c6:ae:7f:54:ea:a2:87:7c:cc:cc:64:f1:
ec:3d:e0:dd:0c:dc:64:d8:f6:0b:0e:df:5f:00:09:
c0:8a:36:1c:d4:c8:fd:a6:81:16:be:e0:3c:95:86:
27:7b:73:d6:fe:2b:ab:29:33:6e:6f:ba:ad:5b:1d:
86:96:98:3c:61:2e:5e:34:b7:b3:10:21:a7:38:a6:
59:7a:9c:3e:35:c2:5c:8f:e2:ac:b3:01:81:08:aa:
94:8d:dc:7d:35:f0:01:1c:21:42:8c:41:6d:e8:a0:
73:a5:f9:05:e7:92:b7:b7:47:09:54:ba:ff:29:4d:
87:02:6e:1f:56:40:07:07:a4:91:b1:73:87:e6:34:
b3:a9:f2:ac:e8:71:92:f9:8e:6b:cc:12:54:43:7b:
ba:e3:69:e2:d8:6f:99:55:f7:e5:c2:5d:42:ce:8c:
ff:59:f4:7d:3b:fa:de:d1:39:1a:03:3d:61:23:06:
03:cd:27:f3:8a:5f:22:a4:30:8b:48:ea:82:08:76:
a1:40:af:51:43:72:99:49:60:9c:d5:d3:d0:35:f8:
de:b4:de:ce:83:29:ed:d1:88:c9:78:87:7e:fe:e4:
9a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:4E:94:A3:C0:2D:08:A0:33:E0:D5:86:F5:32:51:FA:22:1E:DA:90
X509v3 Authority Key Identifier:
keyid:E4:AD:CD:7A:10:CE:A1:B5:BD:27:AC:85:82:E7:D8:06:26:20:DA:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5K3NehDOobW9J6yFgufYBiYg2uc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/15b08a-0299-401a-947f-69967100f868/1/Vk6Uo8AtCKAz4NWG9TJR-iIe2pA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/15b08a-0299-401a-947f-69967100f868/1/5K3NehDOobW9J6yFgufYBiYg2uc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:98c0::/29
Signature Algorithm: sha256WithRSAEncryption
14:d8:f7:ea:e6:bc:79:e9:33:f1:ec:9d:f2:b5:65:f0:36:53:
e2:eb:83:24:98:76:70:b2:b7:5f:37:72:c4:b7:00:2c:fe:42:
4f:e6:c6:40:c5:e1:fe:de:50:27:36:23:6f:eb:05:fe:22:84:
69:3b:56:fe:50:13:f8:bd:85:9d:f9:78:f5:6f:bd:54:88:53:
19:53:4e:7d:12:fe:d4:a6:36:61:b2:e0:62:c8:89:23:a1:6b:
f0:7f:ab:2f:f6:42:94:b7:0a:2b:ce:6f:f9:e0:43:1d:08:59:
c1:13:95:04:a7:da:7d:48:49:1c:6b:a9:e0:17:97:26:c0:86:
1a:0f:41:b6:84:d5:70:41:19:da:46:bc:4b:c3:56:6b:69:f4:
c3:85:d4:8e:09:cd:7c:2f:83:7b:cf:00:50:3a:83:9f:1e:24:
c3:5a:38:f2:fa:c8:c5:1a:6f:1d:3b:5d:d1:db:8b:6c:14:a5:
41:74:03:bf:3a:f5:63:0f:02:a7:9c:9f:70:72:45:51:e8:1d:
fa:0f:b6:06:65:ed:b5:bd:9a:b8:b1:5c:0d:8d:48:fd:51:fb:
8c:2d:16:26:1c:03:cc:90:be:df:cd:66:bb:07:6d:94:c2:bc:
06:34:81:2e:22:0d:19:b0:70:a2:fb:f6:04:3a:34:85:4b:c6:
a4:42:0b:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:55 2023 by rpki-client on console-fra.rpki-client.org