Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/WVJzh7fmxov6FctbtZJYv91GFeI.roa
File: WVJzh7fmxov6FctbtZJYv91GFeI.roa (raw, json)
Hash identifier: 2fV1wiIWsCWBE/YyhKw9wAjuNk2SrMk0Q2u2etZRQrc=
Subject key identifier: 59:52:73:87:B7:E6:C6:8B:FA:15:CB:5B:B5:92:58:BF:DD:46:15:E2
Certificate issuer: /CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664
Certificate serial: 0182F51B987C0E76821FA378E85579384AFF
Authority key identifier: 0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/WVJzh7fmxov6FctbtZJYv91GFeI.roa
Signing time: Wed 31 Aug 2022 18:13:22 +0000
ROA not before: Wed 31 Aug 2022 18:13:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203307
IP address blocks: 2a11:f880::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f5:1b:98:7c:0e:76:82:1f:a3:78:e8:55:79:38:4a:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664
Validity
Not Before: Aug 31 18:13:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59527387b7e6c68bfa15cb5bb59258bfdd4615e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:77:4e:bc:96:fe:f1:dd:40:1f:eb:d5:a8:7a:
52:1e:c5:74:47:fe:68:7b:7c:24:c9:e9:a6:7e:85:
3d:b9:61:68:cb:1e:74:fa:ba:db:60:f3:f3:85:67:
e0:2f:54:4c:b8:cb:2e:44:96:71:e0:70:d7:da:91:
7d:40:2d:d3:38:fe:18:ca:b3:c8:56:e8:4e:91:a9:
90:22:ac:3f:72:04:41:db:78:35:74:ad:f1:f5:5e:
27:21:b7:ad:27:3f:63:84:30:fe:26:5f:e3:ca:ec:
07:36:c4:6e:f8:64:12:a1:7d:12:96:3a:d3:a3:33:
c7:17:9c:c3:65:9d:68:9c:89:c7:c5:59:aa:7f:08:
21:5f:64:20:83:84:f8:73:6a:d7:20:b1:3e:80:88:
eb:84:1c:4e:0c:08:84:37:9c:8a:23:a1:a4:2a:b1:
f0:ce:2d:a6:24:8a:b0:d4:73:90:af:7c:82:2c:cb:
a4:dc:b7:e0:a4:26:4e:3e:2d:e3:ff:4e:20:e5:09:
39:87:4e:0b:fa:9f:d4:2b:2f:83:63:66:60:2d:d4:
0b:a6:74:5a:11:41:7d:49:eb:98:b0:0e:83:25:5b:
7b:ca:be:ac:18:95:da:0f:70:41:a1:dd:7d:1f:db:
e0:68:55:5d:c1:03:15:ad:6f:23:ed:e5:c1:18:d5:
80:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:52:73:87:B7:E6:C6:8B:FA:15:CB:5B:B5:92:58:BF:DD:46:15:E2
X509v3 Authority Key Identifier:
keyid:0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/WVJzh7fmxov6FctbtZJYv91GFeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f880::/29
Signature Algorithm: sha256WithRSAEncryption
36:80:d6:d7:46:e6:a3:7e:a2:7b:af:34:77:da:db:f7:81:60:
d0:8d:bc:f2:dd:1b:b7:b8:c5:84:29:9a:8f:a6:07:dd:a5:05:
68:63:81:61:b3:29:c0:04:e4:e9:7d:7b:ba:11:37:26:c4:26:
72:de:7e:4c:36:19:49:56:c7:a7:22:3f:55:cc:86:33:ab:d6:
2c:fb:53:b6:91:1c:3c:a4:6d:6c:c1:ab:a7:ad:ae:ea:d6:b5:
fd:4f:68:89:8d:f8:f0:83:18:20:99:77:53:25:e0:45:0b:26:
a2:9b:c0:8e:53:59:90:a1:bc:f6:ff:b4:0e:f0:5c:b0:0e:54:
13:be:2e:eb:05:b1:64:ec:8c:0a:a2:02:76:f7:36:9a:23:f3:
59:49:a6:fd:a8:b0:ec:6d:62:b0:3c:59:a3:26:85:05:3a:8b:
58:b7:4c:25:22:14:1d:c3:48:52:40:f1:60:26:08:3d:64:a9:
f4:6c:16:73:8f:70:25:2c:73:e3:22:b5:9d:e1:85:10:8d:2d:
45:d5:6e:95:be:bf:45:01:9a:09:d1:d6:a3:40:14:64:84:ad:
22:90:cd:32:1b:3e:c9:15:93:6e:83:ed:ab:31:ab:e3:6f:cf:
a3:6e:a9:f1:c7:70:95:a4:00:65:4a:02:a6:23:4c:aa:2a:61:
f8:81:b7:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:51 2023 by rpki-client on console-ams.rpki-client.org