Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/nVv8Vc1GbxqgOyJEskSsRE5_vy4.roa
File: nVv8Vc1GbxqgOyJEskSsRE5_vy4.roa (raw, json)
Hash identifier: KbRX5cLy1Ed7wTNdsIgEOVRkb1jto89fcZREWAxuW7w=
Subject key identifier: 9D:5B:FC:55:CD:46:6F:1A:A0:3B:22:44:B2:44:AC:44:4E:7F:BF:2E
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0100D6BF
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/nVv8Vc1GbxqgOyJEskSsRE5_vy4.roa
Signing time: Sat 01 Jan 2022 00:59:26 +0000
ROA not before: Sat 01 Jan 2022 00:59:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39792
IP address blocks: 2a0c:b641:1c0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16832191 (0x100d6bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d5bfc55cd466f1aa03b2244b244ac444e7fbf2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e0:8c:cb:8d:6e:1f:16:ea:a9:d5:e4:ba:4a:
f6:cb:2d:0b:8d:f1:44:d9:9f:6b:6a:2a:44:c3:16:
4f:91:cd:b0:a6:88:03:a3:6d:60:28:2e:de:55:0c:
ca:2d:a7:06:12:dd:dd:0a:4c:1c:aa:2e:a3:9d:90:
7c:46:56:c8:b7:1e:5b:59:50:b1:30:91:71:04:df:
0b:fc:f2:ed:2c:16:70:57:0d:4a:a6:78:f4:a3:c5:
ad:10:1f:98:ab:ee:a5:d2:70:3e:46:e2:91:23:75:
6b:fd:b6:c4:69:ad:3c:64:db:43:1b:5c:40:4a:e5:
30:71:30:33:c9:b2:7c:81:4b:d4:d1:20:80:4c:3a:
61:55:a2:6f:d6:3b:ea:f1:c2:88:ff:35:d1:ee:2f:
1f:9c:a7:04:84:05:4e:68:76:0c:73:ec:dd:f2:a5:
8e:5a:0c:a2:41:c2:b8:37:81:cb:23:52:39:03:10:
4e:bd:32:8f:75:64:70:f8:ec:91:43:82:32:34:e7:
51:c2:16:8d:49:34:d5:d6:44:12:60:3f:da:d9:39:
bb:c7:3a:17:f2:95:bf:f5:1f:16:3c:7a:05:94:17:
d7:8a:26:b4:61:15:15:a2:8f:6f:27:07:f4:b2:43:
af:ff:cf:40:0e:ba:6b:f4:d2:ae:7b:7f:98:32:78:
93:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:5B:FC:55:CD:46:6F:1A:A0:3B:22:44:B2:44:AC:44:4E:7F:BF:2E
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/nVv8Vc1GbxqgOyJEskSsRE5_vy4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:1c0::/44
Signature Algorithm: sha256WithRSAEncryption
8d:68:ae:65:9e:78:f3:2b:ef:52:d5:d0:27:aa:29:4b:2d:4c:
90:c7:dd:e2:34:67:e6:a5:39:65:05:35:89:0b:d9:b0:63:c6:
84:c3:13:a4:c3:06:a8:cd:e0:7b:23:7b:18:3c:fe:d2:e6:96:
95:17:e9:93:27:06:24:e3:9c:d6:df:58:cc:ae:a1:63:85:7e:
9b:af:df:fe:1b:5e:59:14:4f:99:79:62:90:26:be:dc:3a:29:
5b:97:24:45:77:a7:df:56:1e:e9:72:cf:d3:22:b5:ac:ab:b1:
a2:ec:c2:9e:9d:7e:a3:69:74:50:cd:15:58:a1:c5:c4:dd:ba:
41:33:51:5e:d3:8f:e0:6b:b9:78:c7:52:20:6c:56:a8:de:ec:
54:e3:70:88:cd:f1:4e:4d:0d:56:12:06:9b:37:37:be:53:f0:
0d:27:35:10:88:84:07:37:a1:c1:ee:96:d6:bd:e1:fe:10:41:
fd:c9:d9:c3:fb:2e:0a:96:4c:86:02:8f:00:2a:2b:73:05:a9:
f3:0f:62:24:7e:d0:02:a4:c1:ad:81:9b:27:74:4c:c3:20:ed:
8b:f4:cd:4c:c4:a6:84:23:5a:ff:a2:93:37:5f:ab:bc:56:c7:
30:a6:ab:f5:63:64:4d:d9:57:cd:18:60:bd:ff:f6:8f:b1:07:
ee:64:e9:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:37 2023 by rpki-client on console-fra.rpki-client.org