Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/vUXqHy2-veeu6PmnFTKEgyNt1Es.roa
File: vUXqHy2-veeu6PmnFTKEgyNt1Es.roa (raw, json)
Hash identifier: LtfHMrUWKWZ3NC3JcvFpCKq6QrFXOCc6qUfMpPYsCfc=
Subject key identifier: BD:45:EA:1F:2D:BE:BD:E7:AE:E8:F9:A7:15:32:84:83:23:6D:D4:4B
Certificate issuer: /CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Certificate serial: 0182A2F5CCE2648CDA73DC78E15C4DF8F2E0
Authority key identifier: C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/vUXqHy2-veeu6PmnFTKEgyNt1Es.roa
Signing time: Mon 15 Aug 2022 19:23:13 +0000
ROA not before: Mon 15 Aug 2022 19:23:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203363
IP address blocks: 2a05:4140:700::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a2:f5:cc:e2:64:8c:da:73:dc:78:e1:5c:4d:f8:f2:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Validity
Not Before: Aug 15 19:23:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd45ea1f2dbebde7aee8f9a715328483236dd44b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:62:5d:7f:3b:e9:4b:a3:48:27:42:f5:fe:e9:
0a:15:c7:ba:e8:35:f8:4c:3a:21:3b:e5:2c:72:0a:
50:b8:ab:63:5e:7f:98:9f:87:51:a0:be:ea:c1:80:
22:c7:65:1c:f1:05:cf:4c:99:a9:d0:42:ce:20:ba:
1c:1a:1a:83:51:0e:31:ed:da:90:95:fa:49:16:72:
e8:5a:b2:e5:9a:36:36:14:60:79:0b:ec:2d:83:6b:
1a:43:35:ed:c1:57:fc:95:6e:e7:69:25:50:59:05:
ed:b6:be:96:ee:fc:54:0e:19:8d:9d:c5:ea:ab:60:
06:62:15:8c:02:66:2e:2d:84:d3:4f:d4:fd:df:b0:
ba:a6:ee:cb:b4:46:a3:63:68:a7:bb:56:18:c5:fb:
03:0f:18:52:d8:e4:95:a7:d2:61:0b:9b:9c:e8:03:
ac:33:f2:9a:ab:47:7b:3c:74:65:ba:41:0c:52:33:
89:4b:ea:d2:8a:5a:3e:e2:d7:35:70:f7:e4:37:f3:
63:16:cc:32:bb:b6:29:ea:db:9d:4b:44:dc:07:e3:
e9:b9:6e:07:71:72:86:1d:20:2f:6d:f0:43:9d:28:
6c:78:0d:26:6e:81:15:c2:3c:db:04:94:cb:c2:2e:
6f:10:c6:45:e0:2d:89:61:79:6f:d5:60:f9:b2:b8:
30:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:45:EA:1F:2D:BE:BD:E7:AE:E8:F9:A7:15:32:84:83:23:6D:D4:4B
X509v3 Authority Key Identifier:
keyid:C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/vUXqHy2-veeu6PmnFTKEgyNt1Es.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/x0xgresM1XaM91b1YrG1zFucGAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:4140:700::/40
Signature Algorithm: sha256WithRSAEncryption
4d:d3:00:1d:69:9a:8f:b1:8a:52:df:bb:2a:24:82:9a:40:05:
80:09:c0:cc:8b:95:cf:5f:02:46:d1:26:7e:6b:b8:c1:0a:43:
f3:1a:99:83:95:b4:cd:47:8b:46:ec:90:e5:01:ca:a5:fb:5e:
b2:6b:76:5b:9d:d8:ee:4d:30:cd:93:f7:46:28:f6:ca:a9:ae:
3a:cf:f6:4a:09:c7:f8:c1:1e:b6:40:52:4f:f6:9c:f8:74:ee:
bd:c6:25:fb:a6:88:90:ed:78:34:35:17:30:96:6f:85:35:32:
f7:94:29:c1:cb:c6:2e:bf:9a:d8:a4:b2:e1:57:01:4c:fb:4f:
b7:9d:c8:3e:48:c6:b7:fe:34:5d:c2:8d:e1:43:c0:ca:e6:44:
07:ce:6e:71:c9:e3:0e:28:b5:ba:75:4b:22:e6:71:81:95:cf:
f2:bd:81:56:e6:b3:94:c7:74:4b:66:73:af:da:4d:05:b4:97:
60:65:48:8f:47:81:d9:84:47:50:63:91:a0:2e:3b:51:96:e9:
a6:69:9e:d5:c9:5f:d9:09:55:f2:35:86:ec:09:1c:b0:43:51:
f1:74:0f:3a:2a:de:06:14:7a:10:8c:82:04:26:c4:c4:33:55:
98:c9:1a:68:eb:8f:e6:d6:e7:7c:20:81:05:96:fe:89:49:f4:
d7:9c:cb:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:53 2023 by rpki-client on console-ams.rpki-client.org