Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/E_wi93xs52Ja87rCEpMPmPc8gTQ.roa
File: E_wi93xs52Ja87rCEpMPmPc8gTQ.roa (raw, json)
Hash identifier: Rbw48WU3y2wY2ewFiFCf2zIUlSmnSEmbTN42f8oTKHQ=
Subject key identifier: 13:FC:22:F7:7C:6C:E7:62:5A:F3:BA:C2:12:93:0F:98:F7:3C:81:34
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0150643A
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/E_wi93xs52Ja87rCEpMPmPc8gTQ.roa
Signing time: Sat 01 Jan 2022 01:00:22 +0000
ROA not before: Sat 01 Jan 2022 01:00:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212500
IP address blocks: 2a0d:ef01::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22045754 (0x150643a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 01:00:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=13fc22f77c6ce7625af3bac212930f98f73c8134
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ef:ed:87:e6:85:98:e4:c9:03:d6:a1:68:df:
e6:45:17:cc:60:a5:1b:78:0d:44:ac:e1:c7:64:ec:
fa:cd:31:c3:13:bd:8b:fe:6a:16:c7:1a:f6:7b:43:
4c:60:d2:b9:32:da:ed:b1:d0:ef:bf:45:c5:7d:36:
58:f2:35:ce:0f:23:db:d9:ce:eb:e3:d5:5a:d4:ca:
50:5a:b9:f5:a5:87:e2:68:a7:d1:fc:2c:c9:96:63:
f1:25:57:4c:d9:98:d4:c4:35:8b:ae:b4:c5:d2:96:
01:61:1f:71:ac:13:51:d4:3a:10:6e:39:2d:7c:f8:
39:f9:b0:8b:d8:42:84:66:94:7b:f2:2e:c1:21:0f:
19:26:ac:b2:b6:89:f8:39:f4:16:d6:94:b9:19:94:
f1:7a:98:84:01:95:23:80:7f:c9:17:15:1b:0b:69:
27:38:21:2c:a6:11:fd:8e:85:b8:72:1b:ba:4b:2f:
34:a4:3b:7e:47:e5:fc:4a:e2:60:94:18:58:96:0e:
26:a1:65:e1:54:23:18:5a:0d:81:df:85:99:1f:e4:
71:7f:92:e1:6b:bf:dd:82:6a:4b:fd:9c:ce:e3:c9:
d4:b9:a6:fb:c6:64:71:22:02:9f:7f:2e:79:85:c1:
25:e5:59:41:85:85:ba:b5:67:a3:4f:44:b9:87:7a:
cb:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:FC:22:F7:7C:6C:E7:62:5A:F3:BA:C2:12:93:0F:98:F7:3C:81:34
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/E_wi93xs52Ja87rCEpMPmPc8gTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:ef01::/44
Signature Algorithm: sha256WithRSAEncryption
5c:08:db:25:9b:1f:78:77:cf:02:eb:3f:0f:49:fb:97:b9:d4:
0b:4a:25:5b:c2:5a:93:38:20:19:4e:6d:31:01:05:c2:f6:29:
04:38:f4:86:f6:66:ec:d9:82:5b:a0:83:f6:d0:4a:e1:a3:ec:
6a:1c:bd:03:2e:e2:64:24:7d:9f:a9:46:b2:48:12:0d:46:3e:
a3:85:fd:a1:41:6a:12:54:f1:10:bc:a7:ab:30:c3:bc:4b:26:
78:78:bd:7a:17:ac:5a:0f:5b:b3:e8:75:a2:f0:a7:f4:e8:36:
32:24:bf:03:1e:f4:ae:4a:b4:26:a1:a6:8d:bb:3b:29:9a:f2:
c1:fa:0b:33:7f:a2:77:9a:e7:f7:6b:9e:b3:bd:5d:54:7f:2d:
f3:fd:51:80:31:5a:ee:50:33:4b:02:01:94:e9:7e:dc:35:31:
8b:1b:6f:eb:21:18:b7:79:2b:36:da:4d:bf:2b:1b:d9:64:03:
ce:48:8f:81:d9:7f:57:c0:47:68:98:68:14:d0:57:ce:04:ce:
e1:f7:9f:59:c1:92:6b:e1:22:03:da:f4:7c:f3:c5:a4:3c:66:
20:3d:08:85:06:3a:9f:54:38:e1:3e:6a:d5:29:55:66:d2:97:
90:4d:76:67:7a:7b:61:42:48:48:bb:eb:8d:3d:1e:10:42:3f:
ec:2d:28:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:37 2023 by rpki-client on console-fra.rpki-client.org