Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/9f5105-12d7-4f6b-9d0d-d977b389d5ab/1/vCYT0w-ZJi5UXq2BtCKNFEsBV4o.roa
File: vCYT0w-ZJi5UXq2BtCKNFEsBV4o.roa (raw, json)
Hash identifier: lTY3WKBq/0aSVS0ccRT4PQxriIhJocfmMXH7QdUZFts=
Subject key identifier: BC:26:13:D3:0F:99:26:2E:54:5E:AD:81:B4:22:8D:14:4B:01:57:8A
Certificate issuer: /CN=f618619ae3c9b59d868bcdfcc7e73d813f8504e5
Certificate serial: 018B1DACA543A7504C4187B51595B311CEFD
Authority key identifier: F6:18:61:9A:E3:C9:B5:9D:86:8B:CD:FC:C7:E7:3D:81:3F:85:04:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9hhhmuPJtZ2Gi838x-c9gT-FBOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/9f5105-12d7-4f6b-9d0d-d977b389d5ab/1/vCYT0w-ZJi5UXq2BtCKNFEsBV4o.roa
Signing time: Wed 11 Oct 2023 07:38:55 +0000
ROA not before: Wed 11 Oct 2023 07:38:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216333
IP address blocks: 2a13:d6c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1d:ac:a5:43:a7:50:4c:41:87:b5:15:95:b3:11:ce:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f618619ae3c9b59d868bcdfcc7e73d813f8504e5
Validity
Not Before: Oct 11 07:38:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bc2613d30f99262e545ead81b4228d144b01578a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:14:95:5a:f6:b9:09:a7:c7:bf:21:cc:7d:ed:
7c:a7:b6:df:bf:d9:b3:b5:67:4e:d3:b6:9a:c1:aa:
e6:23:f1:22:39:5c:b0:c0:9d:ed:8e:e7:b1:9c:53:
30:4b:21:73:04:64:fb:37:21:c9:a5:ff:25:54:b4:
1e:08:2a:25:21:68:8f:3a:2f:84:44:9c:40:91:38:
9b:76:e3:1f:96:ca:d3:92:e7:29:de:52:8b:ce:06:
7d:a4:3c:cf:86:5b:cf:11:ff:23:55:87:4e:78:ee:
60:04:0b:e5:bd:6c:ae:ac:3e:c2:12:3b:9a:27:3a:
95:e4:5b:cc:2b:22:6c:3a:2c:cc:65:23:35:ae:ef:
8e:33:c7:68:82:0d:72:f9:c5:33:d8:9c:d6:f3:a4:
6d:dc:a3:60:f0:e4:66:19:0d:a0:dc:a6:cb:da:e3:
63:12:c0:a3:82:08:54:41:f2:66:40:e9:de:99:0e:
2a:73:b1:c3:50:8d:ea:52:ca:11:8d:ac:68:6c:39:
c2:ae:87:5c:d8:9c:0a:c6:b0:a2:27:07:56:30:06:
91:05:f3:bf:b2:a9:86:1a:7d:03:be:0c:17:c0:42:
83:f0:a8:f5:91:99:a3:b1:a0:43:83:05:a9:ca:2b:
f0:63:48:62:08:b2:52:1c:c6:0d:04:60:8d:a7:b7:
41:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:26:13:D3:0F:99:26:2E:54:5E:AD:81:B4:22:8D:14:4B:01:57:8A
X509v3 Authority Key Identifier:
keyid:F6:18:61:9A:E3:C9:B5:9D:86:8B:CD:FC:C7:E7:3D:81:3F:85:04:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9hhhmuPJtZ2Gi838x-c9gT-FBOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/9f5105-12d7-4f6b-9d0d-d977b389d5ab/1/vCYT0w-ZJi5UXq2BtCKNFEsBV4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/9f5105-12d7-4f6b-9d0d-d977b389d5ab/1/9hhhmuPJtZ2Gi838x-c9gT-FBOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:d6c0::/32
Signature Algorithm: sha256WithRSAEncryption
61:32:fb:4f:b5:bb:ba:1c:ca:23:e2:ad:b1:38:fc:ce:5d:6d:
48:76:a1:22:88:1b:67:9f:ce:73:63:6c:43:fc:8f:19:2d:a3:
1d:c8:fa:a1:d1:b2:0e:72:c4:20:9c:d7:b3:6b:76:b6:a0:56:
6a:98:41:11:2f:26:e7:34:12:ae:89:6a:db:c4:d5:09:6f:14:
75:58:35:d2:c1:89:76:8d:28:15:4a:c9:fd:a8:04:73:25:e4:
df:1e:fb:46:c2:a4:17:b9:5e:d5:e2:81:96:b9:76:2c:33:ef:
80:74:98:39:03:3f:78:fa:d9:37:a4:e3:8c:17:8b:15:4f:e0:
a1:ca:e2:7b:44:07:56:86:52:be:ff:05:d1:68:db:96:5d:c5:
1d:80:13:29:d8:1d:3b:02:cc:1e:63:5c:4c:90:8d:7d:2a:96:
ae:18:e5:d9:9d:07:5a:7c:5e:74:45:b0:b6:30:f4:fe:ff:0c:
67:be:6a:c7:92:34:fc:73:19:41:3f:03:4e:27:ea:b2:ec:05:
83:f2:02:2b:90:09:cf:43:86:40:78:81:84:f6:b2:36:b3:5c:
ac:7c:2f:6d:ce:be:c2:a6:46:5c:ed:98:80:8d:88:7a:bd:43:
b4:44:e1:ee:95:3c:a5:11:49:a0:88:e2:35:b9:e7:51:90:86:
23:30:c3:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:51:21 2025 by rpki-client