Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/vEHHlRjIyGwvrOPtLdQj2JcZN0Q.roa
File: vEHHlRjIyGwvrOPtLdQj2JcZN0Q.roa (raw, json)
Hash identifier: Ugbjh/jEGEsKcRUPPOfRTqf/ksb/3EcHSiw7UCjSguQ=
Subject key identifier: BC:41:C7:95:18:C8:C8:6C:2F:AC:E3:ED:2D:D4:23:D8:97:19:37:44
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0182CC61807E5BF7F3928F337D316708581E
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/vEHHlRjIyGwvrOPtLdQj2JcZN0Q.roa
Signing time: Tue 23 Aug 2022 20:25:18 +0000
ROA not before: Tue 23 Aug 2022 20:25:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203226
IP address blocks: 2a0c:b641:350::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:cc:61:80:7e:5b:f7:f3:92:8f:33:7d:31:67:08:58:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Aug 23 20:25:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc41c79518c8c86c2face3ed2dd423d897193744
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:5d:bf:27:f3:8b:29:bf:52:6a:e9:c7:6b:af:
55:82:56:ab:20:ca:19:ec:2e:77:f4:17:86:76:a5:
02:58:7a:52:5a:b6:ea:a4:67:e4:3b:da:ce:0e:f1:
2e:a2:0c:9c:84:17:e8:55:7f:ae:3f:b1:92:ef:b5:
ca:9b:c2:a3:2e:6f:e0:7c:a0:7b:c9:6e:e1:63:e4:
03:97:63:a7:d3:c3:4f:58:9e:16:53:28:36:e0:e8:
56:c0:7d:9b:6a:f1:fa:7d:ea:f2:b3:1b:15:b8:02:
09:d3:98:83:77:a3:b2:d4:fe:03:e0:05:5e:fe:41:
12:00:c5:02:6a:f5:ad:cd:46:ba:53:62:0a:bb:26:
47:57:69:01:aa:d7:be:b2:0a:da:6b:f2:ec:0a:f7:
82:82:da:7c:1f:5d:4a:28:0a:16:79:c5:36:11:b8:
e7:23:1e:45:4c:12:06:48:cd:6b:af:8f:3d:27:bb:
7b:d7:f4:6c:e8:a5:7d:14:f2:50:88:50:fe:06:64:
44:c3:7d:d9:5c:50:1c:fd:36:5f:d4:cf:f7:3d:ee:
6d:cd:78:14:57:a6:0a:2b:b7:73:f7:6c:e5:18:f1:
93:1f:28:1c:da:44:14:9c:b4:56:a1:be:87:d5:9d:
da:fa:01:51:ea:67:8d:d6:c0:5d:d4:2b:89:10:9b:
0c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:41:C7:95:18:C8:C8:6C:2F:AC:E3:ED:2D:D4:23:D8:97:19:37:44
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/vEHHlRjIyGwvrOPtLdQj2JcZN0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:350::/44
Signature Algorithm: sha256WithRSAEncryption
68:bb:88:96:43:12:97:93:84:b3:fe:9a:28:64:28:1b:3f:d5:
9e:45:2b:26:9b:51:49:0f:0e:4d:79:57:a9:61:73:92:a4:a8:
d9:a1:a6:08:50:0c:49:51:02:83:fb:39:c6:d1:3e:1d:df:c4:
4f:f4:27:b9:79:9d:a6:b3:75:89:10:c3:45:98:d9:b9:35:cc:
76:f3:8c:09:68:a4:94:7f:18:1b:c9:cf:a2:37:81:f5:d4:c2:
ad:7d:d3:55:8e:a3:4d:7d:69:e7:52:58:fa:b6:99:8b:46:ec:
9d:0a:02:c0:98:0e:7f:fb:d5:e5:84:68:71:f7:ba:e0:8c:d4:
19:3d:77:82:66:ad:3b:05:45:4e:4c:ba:65:42:5f:45:35:24:
80:42:83:e1:b7:80:ee:7a:a4:24:2b:6d:6c:16:aa:4b:ac:26:
1e:cf:fc:3d:77:f1:38:b8:97:30:03:1c:34:b6:97:d0:b6:e7:
aa:7a:93:22:6a:2a:59:a2:0d:bd:b2:f5:12:8f:32:1a:5c:01:
85:0d:1c:b4:3f:4e:ed:15:9a:5b:f2:b7:06:11:50:3e:47:6d:
76:aa:3d:4f:79:fd:67:4b:4e:72:65:52:0e:56:cb:99:b1:bc:
73:77:4c:1f:26:f7:59:a9:00:99:b8:19:98:df:03:9e:5b:9c:
b6:34:7b:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:16 2024 by rpki-client on console-fra.rpki-client.org