Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/fvO1slLpShasxoqkmzUnIK3-zBU.roa
File: fvO1slLpShasxoqkmzUnIK3-zBU.roa (raw, json)
Hash identifier: /4SyJb/Uq8qQFxD40Oqt2KQXoj7Jnl5ezAYQQWzMQGQ=
Subject key identifier: 7E:F3:B5:B2:52:E9:4A:16:AC:C6:8A:A4:9B:35:27:20:AD:FE:CC:15
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 08C86224
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/fvO1slLpShasxoqkmzUnIK3-zBU.roa
Signing time: Sat 01 Jan 2022 14:02:03 +0000
ROA not before: Sat 01 Jan 2022 14:02:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212799
IP address blocks: 2a0e:8f02:2030::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147350052 (0x8c86224)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 14:02:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ef3b5b252e94a16acc68aa49b352720adfecc15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:17:9a:d7:f6:63:c1:4d:88:54:fb:fe:46:63:
4f:b0:bb:d3:84:66:b0:76:09:86:10:98:61:80:95:
2a:f5:a4:7b:37:1c:58:11:ca:8b:6e:a3:3f:67:eb:
39:62:48:4f:e2:a9:16:ad:37:f6:20:8c:dc:9f:37:
69:7e:dc:01:a0:b6:d2:93:aa:f5:34:f4:b9:c0:de:
42:8e:bc:ab:b7:db:33:fd:52:86:02:c7:a7:b8:8f:
57:e7:f5:a1:f0:3c:74:3b:52:87:fc:a0:17:6f:c7:
17:8e:ed:46:47:1f:21:fe:4f:f3:e5:07:30:d8:ed:
17:b7:fe:c4:c8:08:63:34:94:15:1f:98:15:96:c4:
4d:c1:08:a1:b0:8d:f3:33:cf:5f:c4:b3:f8:5e:0f:
c8:1f:f7:05:1d:b9:ed:1e:8e:f8:7e:af:00:3a:af:
c3:d2:67:8f:4a:60:19:e9:80:73:de:b1:c7:33:6e:
95:ba:71:b1:63:9d:74:bc:1e:86:60:da:ad:5a:05:
4a:70:bc:d8:c3:2d:01:e3:b2:27:1f:3a:c9:ed:fb:
15:b9:a7:b0:0b:d2:85:a9:84:72:e3:02:fe:de:be:
8e:fc:fb:30:1c:49:9a:94:1a:f4:d8:8e:c2:73:0b:
71:a1:74:94:86:72:98:59:8f:ea:1e:91:bf:53:72:
a2:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:F3:B5:B2:52:E9:4A:16:AC:C6:8A:A4:9B:35:27:20:AD:FE:CC:15
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/fvO1slLpShasxoqkmzUnIK3-zBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:2030::/44
Signature Algorithm: sha256WithRSAEncryption
8f:44:2d:65:ea:7c:72:91:7c:58:de:7e:6e:3a:97:70:5a:b9:
0c:f5:9e:a5:b4:60:05:f5:56:ce:00:ac:e1:fe:3e:6a:bc:db:
5c:4f:a5:98:25:15:0b:98:06:f9:f0:ca:10:9b:d3:b7:00:84:
ea:d3:3f:a0:de:7a:59:d9:67:59:b7:88:7b:dc:28:6a:98:78:
6b:82:b4:7f:e9:62:83:bf:83:63:a2:44:a9:82:de:4d:f4:6e:
2c:86:07:6d:cb:e4:53:cd:a6:32:fb:88:45:14:7a:a9:cc:69:
6f:3e:da:a2:02:1c:3d:21:b4:dd:73:08:b6:d7:ef:ad:35:07:
1e:10:88:e5:8b:c4:42:56:ba:a4:58:77:20:34:84:46:b4:9b:
16:71:d9:76:02:3b:db:95:3b:ae:1a:4e:a9:0d:52:1d:c4:a9:
ef:ad:d9:00:36:d6:bb:2a:40:6b:81:81:e9:88:50:8a:c5:6f:
82:59:d2:59:46:1c:c1:d1:17:f8:34:11:92:b4:df:38:6a:6a:
b5:c2:4d:a4:30:e0:7a:92:e9:08:a9:95:10:b7:29:bf:53:de:
aa:07:20:6f:72:66:77:34:ca:91:23:36:ee:09:ae:d5:71:16:
3b:ad:5b:9d:7b:7c:50:80:a1:7f:67:7b:1e:9d:39:15:cc:a1:
34:e5:c8:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:12 2023 by rpki-client on console-ams.rpki-client.org