Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/vmnTXCuN6RlExXg9ZG_odx98RPE.roa
File: vmnTXCuN6RlExXg9ZG_odx98RPE.roa (raw, json)
Hash identifier: 8ooKQGLmkV+DABzazuPPzYep0+tBtpyL/kWDpM++vbQ=
Subject key identifier: BE:69:D3:5C:2B:8D:E9:19:44:C5:78:3D:64:6F:E8:77:1F:7C:44:F1
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 08B762FF
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/vmnTXCuN6RlExXg9ZG_odx98RPE.roa
Signing time: Sat 01 Jan 2022 14:01:51 +0000
ROA not before: Sat 01 Jan 2022 14:01:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211635
IP address blocks: 2a0e:8f02:2120::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146236159 (0x8b762ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 14:01:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be69d35c2b8de91944c5783d646fe8771f7c44f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:2e:ed:1c:ac:b2:9b:05:d0:0c:2f:24:fb:00:
7d:19:0e:8d:7a:1c:26:8c:0b:33:5a:c4:b1:d0:20:
ba:4b:af:e5:7f:a1:e5:ba:63:fd:6c:4a:75:81:e1:
86:b7:30:3a:2a:7e:bf:50:96:f9:28:9b:14:c3:ad:
ab:e6:9f:83:d3:99:1b:a3:99:67:07:3d:a8:25:84:
44:00:79:b2:9c:53:65:c3:cc:e6:65:85:7e:0b:b5:
b8:43:5e:aa:48:d9:97:d8:7a:b4:ec:c8:c7:e0:4e:
7b:ff:8a:01:23:8a:53:af:ec:fd:85:7f:1d:98:83:
21:da:31:75:9d:d0:b9:6b:d3:d5:de:3b:ef:7f:56:
be:f8:93:84:ed:c5:1a:1d:95:e6:3d:8a:4e:dc:91:
b2:e0:03:08:df:5e:60:b0:54:12:29:4d:32:e6:4b:
ea:b6:fb:06:90:12:a2:16:35:ad:d9:3e:40:fb:7d:
94:5e:88:9e:df:31:53:70:65:0c:aa:a7:de:de:73:
97:4d:a1:52:48:03:75:84:0d:18:43:64:94:59:7c:
32:f6:c7:ea:b1:02:14:f4:10:06:74:ab:44:b8:a8:
a8:84:7d:e8:bb:6c:cf:bf:6f:3a:75:71:41:72:c7:
23:9e:11:f6:7b:68:c1:93:67:a4:72:d3:d9:36:07:
76:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:69:D3:5C:2B:8D:E9:19:44:C5:78:3D:64:6F:E8:77:1F:7C:44:F1
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/vmnTXCuN6RlExXg9ZG_odx98RPE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:2120::/44
Signature Algorithm: sha256WithRSAEncryption
8f:ab:c8:4d:f1:50:48:80:86:3d:9a:fb:51:c7:24:ac:37:07:
3f:ae:27:ab:42:f5:3f:0d:e3:7f:cc:2c:8e:79:10:04:6a:90:
36:6c:09:27:e4:f0:8b:38:0d:f3:03:18:0f:89:71:64:d8:c3:
04:17:70:5f:fd:db:dc:08:34:39:cf:0a:14:e6:06:b1:79:2c:
13:c7:7e:21:27:da:77:61:33:2c:f8:2a:5f:64:d0:4e:14:50:
d5:28:16:6f:07:0a:01:03:66:de:24:a1:a5:1b:2d:f2:9b:98:
4e:4e:2b:99:88:31:c2:53:55:4e:6e:25:c3:33:a4:6b:81:01:
01:61:70:58:f6:04:de:a9:5e:79:5d:d5:e4:34:ba:1b:b8:8b:
25:1f:4e:b3:63:8e:5b:5e:98:f3:a4:2b:25:63:c4:4f:2a:55:
6f:2e:23:51:79:70:b3:5b:42:96:fc:30:79:3e:03:6e:01:48:
ed:68:cf:c9:4f:f3:eb:ed:e2:36:8f:5f:0b:dd:c6:f3:de:d7:
18:8b:43:f7:b3:ff:53:6f:4a:8e:ef:ae:6c:a7:e4:80:75:33:
ce:d0:87:29:7f:35:9b:80:51:c9:4a:4d:2a:f8:a5:16:65:10:
bd:0a:06:2a:58:a3:fa:e0:b9:73:ac:ad:51:c7:5c:ec:1f:02:
e0:d3:78:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:12 2023 by rpki-client on console-ams.rpki-client.org