Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/Vva-Tme1-VFvaeLn-WxkkmBD0Ho.roa
File: Vva-Tme1-VFvaeLn-WxkkmBD0Ho.roa (raw, json)
Hash identifier: KO6rZZXkfg9kGJKkCm7gcdM5dyjxbI0UdbFIObsgVHg=
Subject key identifier: 56:F6:BE:4E:67:B5:F9:51:6F:69:E2:E7:F9:6C:64:92:60:43:D0:7A
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 08B593E3
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/Vva-Tme1-VFvaeLn-WxkkmBD0Ho.roa
Signing time: Sat 01 Jan 2022 14:01:50 +0000
ROA not before: Sat 01 Jan 2022 14:01:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211498
IP address blocks: 2a0e:8f02:f021::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146117603 (0x8b593e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 14:01:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56f6be4e67b5f9516f69e2e7f96c64926043d07a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:df:11:9a:bb:7a:9b:68:37:3c:9e:00:90:db:
83:ed:ec:79:ac:e9:b5:20:39:2f:62:1c:e1:ac:f7:
f0:4b:89:64:00:91:05:80:ae:8d:64:2a:6c:ff:9f:
ed:8e:c0:4e:74:d3:9f:91:f9:36:27:7a:38:bd:db:
a3:64:d0:cd:90:03:38:7d:5e:e4:1a:4b:fc:c9:00:
59:2c:2a:f0:2c:bf:27:7a:4f:e6:59:b6:03:e7:26:
d1:48:b1:bf:10:bf:97:7f:1d:ae:79:99:ac:05:b5:
d7:2c:0f:df:c2:54:42:2d:88:79:b9:4a:1e:bc:0c:
70:43:d2:8c:56:ef:1c:01:4d:16:23:53:6c:26:2d:
f3:b8:9f:01:fd:17:f4:ba:56:37:d1:d7:f0:af:36:
08:10:76:c3:35:0f:85:85:fb:c9:90:59:9e:40:d0:
0d:d2:52:38:fc:4c:d1:b1:f0:3c:b4:6a:52:d3:52:
99:de:92:23:d9:01:d7:be:63:36:0d:82:78:67:83:
79:2a:8c:9d:f0:23:d0:80:29:af:c6:5e:b5:0d:1c:
2c:cb:51:13:5f:65:50:af:ab:af:81:43:79:26:e9:
a8:c2:5d:bf:11:0f:0f:2f:c9:a7:9d:cb:c3:ff:df:
22:d6:e3:d8:07:3a:b7:2a:e7:1a:ec:99:da:2d:5b:
b3:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:F6:BE:4E:67:B5:F9:51:6F:69:E2:E7:F9:6C:64:92:60:43:D0:7A
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/Vva-Tme1-VFvaeLn-WxkkmBD0Ho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f021::/48
Signature Algorithm: sha256WithRSAEncryption
9d:4c:b0:24:a5:29:29:4f:82:1b:fa:91:8a:9a:55:73:84:9f:
2b:ca:b1:de:6c:79:5f:92:5c:e8:15:95:f6:8f:84:46:45:dc:
77:71:f5:d1:66:f1:32:e3:73:d4:e5:0c:6d:ac:7f:bb:5a:80:
ff:7e:c8:73:c1:29:22:36:ee:80:fc:bf:d0:ca:d8:a5:f6:67:
cc:6f:79:56:c6:38:ce:5d:e8:38:c8:b4:31:c2:6c:d4:10:0c:
67:58:e2:33:e4:e0:bd:a1:4a:79:a7:09:18:92:63:23:64:24:
10:88:35:65:df:95:ff:9e:5f:3c:8b:53:41:2f:ca:c5:ef:3a:
c2:c3:53:66:10:fb:a3:4b:fd:3f:84:d9:5a:13:1b:2d:4f:00:
3b:ba:9b:7a:19:da:b1:b1:60:62:de:cc:3d:b3:0a:69:01:51:
0b:91:ed:1c:e8:3d:36:10:e8:74:4e:7e:5f:a2:30:d3:c2:49:
40:8e:7f:d3:32:c2:ee:7b:b4:8c:86:5d:cd:3d:52:74:4e:1c:
36:a1:4a:68:c0:0f:5d:77:ca:d4:bb:a6:cc:be:aa:f4:9c:2c:
14:0d:14:67:5b:ae:f9:a9:53:18:23:ec:2a:89:07:cf:c5:5f:
3f:bb:72:30:74:31:8e:73:c3:8d:49:81:f3:79:5a:3d:ab:92:
9f:1f:b5:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:24 2023 by rpki-client on console-fra.rpki-client.org