Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/DaU_pWJmvk7zifaE2ya5LryQnTM.roa
File: DaU_pWJmvk7zifaE2ya5LryQnTM.roa (raw, json)
Hash identifier: 4sFuDNAKupdHIHy4+Qr67mkpGCBeUodjBbDZwROCJEg=
Subject key identifier: 0D:A5:3F:A5:62:66:BE:4E:F3:89:F6:84:DB:26:B9:2E:BC:90:9D:33
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 08B92C44
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/DaU_pWJmvk7zifaE2ya5LryQnTM.roa
Signing time: Sat 01 Jan 2022 14:01:53 +0000
ROA not before: Sat 01 Jan 2022 14:01:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211715
IP address blocks: 2a0e:8f02:f01c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146353220 (0x8b92c44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 14:01:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0da53fa56266be4ef389f684db26b92ebc909d33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:50:e5:90:fa:93:66:39:d0:2d:1b:6c:e0:13:
34:86:fd:12:dd:de:5b:89:5e:ed:da:5b:cc:c8:40:
36:c5:8d:e8:f2:52:ad:cf:0b:26:e1:3e:17:80:d9:
fd:a4:56:dc:da:53:fe:c7:74:b7:5b:ac:8d:18:d6:
fe:b7:4b:e4:ab:f8:90:a9:fa:11:be:82:02:38:a6:
b2:55:e6:56:8a:ec:14:65:3b:53:e1:cf:2f:3c:02:
50:40:3b:73:8f:39:5f:5e:e1:63:ce:66:6a:93:ee:
97:30:82:ec:e1:c7:a8:56:b2:95:4a:28:bb:90:40:
55:8b:55:25:d5:14:39:fd:55:9a:57:2f:fc:65:bb:
ff:f0:5e:14:c6:36:8b:cf:44:6e:b6:1f:16:e4:1d:
e6:48:a4:b6:ea:2b:4a:d7:8a:b0:ac:27:14:62:62:
4d:06:d5:89:ba:d4:eb:9f:56:a9:04:86:72:e0:81:
59:e0:9f:65:0d:75:3b:69:4a:f4:71:d9:96:72:e0:
1f:b4:80:34:6e:03:cf:44:37:36:c0:44:c1:f9:94:
62:b3:ce:01:50:c7:2b:2d:d8:2b:62:1d:48:a4:fa:
00:f7:fe:be:dd:09:03:49:80:7e:09:4f:c4:43:23:
65:56:54:b3:a5:75:b4:f3:cf:07:40:63:0b:e1:72:
b7:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:A5:3F:A5:62:66:BE:4E:F3:89:F6:84:DB:26:B9:2E:BC:90:9D:33
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/DaU_pWJmvk7zifaE2ya5LryQnTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f01c::/48
Signature Algorithm: sha256WithRSAEncryption
1d:e6:93:8e:50:ca:29:f7:74:b6:8d:ed:10:99:66:c9:79:16:
54:4d:88:78:46:b8:f0:c1:0f:25:c1:a5:db:8b:2f:29:95:bb:
8c:25:9e:55:81:25:b1:aa:79:47:62:31:ff:a2:4f:79:f4:08:
52:2f:2e:97:71:d7:11:c6:36:7f:82:fc:95:c0:00:23:ab:28:
f4:52:b2:6e:d1:64:3a:b6:27:1d:a5:8f:07:26:b8:4e:89:05:
95:2c:62:aa:2a:ae:20:ff:be:5a:f9:97:52:d8:8c:88:41:bc:
59:1f:10:1e:04:09:1c:d5:db:f9:bf:49:96:f9:d2:ea:60:11:
e9:b0:c6:e4:5c:b0:c4:25:b2:f8:19:fd:cf:db:7b:11:11:41:
5a:29:91:a3:c6:34:48:3f:ad:a5:5b:04:2b:06:e7:c6:f0:12:
39:47:58:34:39:40:b5:62:bf:9b:d0:0a:30:fd:88:8c:f8:43:
59:9e:61:cd:ba:26:bf:90:4b:dd:17:1b:45:a1:f9:cd:b8:45:
51:a8:bc:f7:e4:f4:09:26:4a:ce:03:6a:e6:14:24:55:a0:e9:
9a:40:95:f2:85:68:24:a7:dd:1d:34:2c:7c:5c:f0:e8:26:0f:
87:27:83:e8:05:fd:2c:6b:c5:dd:2c:12:2a:4e:67:e3:e9:61:
68:bd:21:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:12 2023 by rpki-client on console-ams.rpki-client.org