Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/OK_VwzYBEvpZwIG_CiO0N0iGtQA.roa
File: OK_VwzYBEvpZwIG_CiO0N0iGtQA.roa (raw, json)
Hash identifier: 4whdWVtFXCW6CxB8bW3YOeOk9gW9J584CJkAJzlgjGI=
Subject key identifier: 38:AF:D5:C3:36:01:12:FA:59:C0:81:BF:0A:23:B4:37:48:86:B5:00
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 08C6299B
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/OK_VwzYBEvpZwIG_CiO0N0iGtQA.roa
Signing time: Sat 01 Jan 2022 14:01:59 +0000
ROA not before: Sat 01 Jan 2022 14:01:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212359
IP address blocks: 2a0e:8f02:f00e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147204507 (0x8c6299b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 14:01:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=38afd5c3360112fa59c081bf0a23b4374886b500
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:6b:7b:fc:be:22:fc:d0:a1:84:ca:75:d3:a1:
ee:bc:c7:2f:93:3e:bc:7f:9b:1e:06:e6:06:80:49:
24:80:58:1a:22:a9:94:97:e3:eb:0c:5c:1b:4e:ab:
ba:14:24:b2:3c:a3:f7:af:ac:03:9b:51:8b:59:9e:
f9:60:b8:b9:0c:9b:ee:83:08:7d:1b:97:d1:72:b2:
5b:14:82:d1:98:62:18:82:5f:2a:b1:c5:ed:7d:67:
ce:ce:1c:46:1b:73:82:34:0e:04:84:ec:0c:cd:24:
c3:a8:0d:d9:5f:6b:16:39:c6:29:9c:f5:c0:1b:56:
48:7c:2c:aa:7c:6c:82:92:e2:95:57:eb:f7:df:f6:
db:e3:db:08:d7:c3:1d:61:3f:b6:79:9e:23:d7:59:
d7:56:9d:8a:7b:2b:b5:3b:dd:ce:6d:26:b9:75:aa:
97:e4:02:7d:a6:6c:ef:d9:59:f5:7a:14:63:46:09:
a3:07:c4:ba:ed:43:e1:46:9a:b1:bd:66:19:bf:a9:
9f:bb:3c:d9:de:48:59:8f:38:b7:42:0f:e1:02:1d:
b3:0b:4b:0c:06:10:55:cd:28:79:02:ae:93:07:0d:
0e:bc:4d:1e:5a:ba:8a:b1:d1:26:66:e6:7b:a6:79:
53:d5:06:04:a7:af:2a:f1:a4:ea:b4:3e:ea:5a:e7:
a5:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:AF:D5:C3:36:01:12:FA:59:C0:81:BF:0A:23:B4:37:48:86:B5:00
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/OK_VwzYBEvpZwIG_CiO0N0iGtQA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f00e::/48
Signature Algorithm: sha256WithRSAEncryption
32:34:4c:1c:23:a7:1b:43:d0:24:0a:f0:27:cc:19:70:fe:c8:
ca:72:06:fe:c1:66:b9:46:08:57:10:2e:b9:a8:ac:ed:8c:4c:
aa:e4:c6:31:a2:9f:ad:d4:c9:a0:3f:ef:e7:19:6e:bb:bc:2c:
f3:71:d9:49:26:f7:43:ce:66:6c:88:8c:a2:47:60:09:d9:9e:
4e:56:d3:4f:d9:d3:f5:8a:a0:9c:6f:f8:ea:5b:91:42:52:c9:
a6:16:56:89:80:05:e9:a5:16:40:86:b0:0d:f5:bc:0d:70:ef:
1d:7b:9b:36:5e:d2:d8:04:6a:dd:a7:24:5d:6e:92:15:c4:f0:
4d:73:30:5e:a7:d9:d6:60:93:2b:6b:21:65:a6:a4:2a:57:b7:
77:f9:1f:ce:65:65:f5:ba:c3:0d:34:c7:a1:ff:3d:c6:1d:c0:
16:03:6c:36:35:28:7c:d7:d9:c0:2e:a0:25:d1:07:f4:32:bf:
da:1b:e1:dd:01:a9:a0:4c:d8:8c:a9:20:61:bf:bc:74:a3:e8:
84:d2:fa:16:03:6d:84:cd:5b:c6:4f:2a:3a:44:58:ef:42:7b:
67:72:07:3b:46:87:cc:05:37:e5:5f:5c:9c:7b:72:38:f8:16:
f9:f1:8e:a0:c3:f3:91:e0:5a:7d:0c:f2:a7:f6:58:f2:56:a2:
09:c3:be:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:12 2023 by rpki-client on console-ams.rpki-client.org