Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/FVOy0f0K_oo3_gT1kJFcW6KgPs4.roa
File: FVOy0f0K_oo3_gT1kJFcW6KgPs4.roa (raw, json)
Hash identifier: UfPooT10x8OtegkKtHJhs+6skxezIcDWKIs3yq9K0GA=
Subject key identifier: 15:53:B2:D1:FD:0A:FE:8A:37:FE:04:F5:90:91:5C:5B:A2:A0:3E:CE
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 015FF12C
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/FVOy0f0K_oo3_gT1kJFcW6KgPs4.roa
Signing time: Sat 01 Jan 2022 01:00:32 +0000
ROA not before: Sat 01 Jan 2022 01:00:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213310
IP address blocks: 2a0c:b641:7f0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23064876 (0x15ff12c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 01:00:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1553b2d1fd0afe8a37fe04f590915c5ba2a03ece
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:fc:39:60:f9:99:60:eb:6c:8b:c9:78:b5:1c:
d8:e3:68:09:3c:3b:a7:d5:da:79:b5:ce:5d:ac:6b:
f1:2f:11:a1:70:ae:a0:66:76:dc:c7:a1:fb:b0:5d:
01:3f:4e:9e:37:fd:3f:a5:49:48:82:ea:55:9b:0d:
a3:ae:13:75:37:66:65:c7:67:94:b9:bf:35:3c:d4:
5f:6b:23:29:ea:90:f8:cd:e4:a7:da:05:36:c6:67:
0e:48:b2:e2:59:68:fa:95:c1:4f:d0:9c:0e:66:a9:
ca:4f:82:12:ea:6b:cd:95:e5:22:21:3f:f1:18:60:
24:e6:73:04:47:c7:c6:ed:c2:e4:70:f7:2d:cc:14:
49:e1:c2:3c:d9:ca:60:32:aa:47:01:e2:43:62:fc:
a9:3b:24:c2:a2:f1:85:83:d6:03:e3:c2:79:70:5f:
a0:26:91:98:78:40:07:2b:b1:ff:fc:07:e6:7d:d2:
53:8f:81:49:59:1e:9a:46:38:28:13:b2:ad:1f:b9:
0a:33:2b:b8:73:db:6a:32:14:8a:c4:8b:46:a8:34:
76:0e:96:66:2c:4e:5e:64:a0:10:17:4a:6e:d3:d2:
d0:05:a4:ab:09:4a:60:1f:9b:da:08:da:6c:d2:e2:
d9:67:64:8d:5c:09:e0:58:3e:69:91:4a:49:78:3c:
1b:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:53:B2:D1:FD:0A:FE:8A:37:FE:04:F5:90:91:5C:5B:A2:A0:3E:CE
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/FVOy0f0K_oo3_gT1kJFcW6KgPs4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:7f0::/44
Signature Algorithm: sha256WithRSAEncryption
24:d7:3e:66:92:7d:6e:18:a1:d8:ac:19:44:85:e6:dd:f2:03:
82:4a:50:71:90:62:4e:21:60:f3:81:9a:d2:60:86:1d:26:20:
23:b2:78:7d:c7:72:c3:05:da:99:e7:be:10:38:9a:2e:a3:e5:
e0:f2:86:e3:e6:c5:c7:47:63:02:04:a1:b3:6f:a3:6d:8e:7b:
b6:f3:d5:a6:51:05:cd:fc:e2:5b:bf:7c:fb:e2:7e:7f:2f:e0:
e7:4a:07:ff:28:d9:13:01:47:ca:5a:1a:42:bf:7a:fd:78:30:
92:77:38:2b:72:4a:fb:06:c3:3f:4a:0f:ec:18:4e:0f:62:38:
6c:37:03:23:66:f5:d3:c4:81:95:59:31:c3:f9:e9:cd:8c:7e:
26:26:1c:66:c7:13:2e:85:36:29:80:33:40:a7:5b:50:f0:53:
b6:86:7a:86:9b:3e:75:32:d4:d3:09:fc:a2:4c:18:e6:f4:b2:
77:e8:3f:fa:e9:7a:bc:1b:26:cf:82:ba:86:c5:f5:0b:21:61:
91:6a:a6:68:3e:3e:17:b1:11:d3:ea:81:e3:c5:4a:14:9f:45:
4b:f0:37:56:db:9e:1f:38:76:d3:9b:25:3d:d0:a9:a4:1f:d0:
b9:52:b8:51:25:68:e8:89:10:88:d8:f3:00:aa:e2:2d:f5:18:
84:3f:7c:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:37 2023 by rpki-client on console-fra.rpki-client.org