Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/vaND8EejiD7iBjVOLFRL2eVyuhQ.roa
File: vaND8EejiD7iBjVOLFRL2eVyuhQ.roa (raw, json)
Hash identifier: WHAFgsS4jF9Gwl/VOlDsXXP3rfcP1ioOP6hRyEbb71E=
Subject key identifier: BD:A3:43:F0:47:A3:88:3E:E2:06:35:4E:2C:54:4B:D9:E5:72:BA:14
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0182944195ECE157C1F784388815083CD72F
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/vaND8EejiD7iBjVOLFRL2eVyuhQ.roa
Signing time: Fri 12 Aug 2022 22:51:42 +0000
ROA not before: Fri 12 Aug 2022 22:51:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204307
IP address blocks: 2a0e:b107:ac0::/48 maxlen: 48
2a0e:b107:ac2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:94:41:95:ec:e1:57:c1:f7:84:38:88:15:08:3c:d7:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Aug 12 22:51:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bda343f047a3883ee206354e2c544bd9e572ba14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:aa:e8:04:b0:6a:65:50:49:2b:34:d2:db:ac:
89:b9:73:83:12:ab:7b:12:fb:57:00:d3:0b:1a:a1:
c7:01:58:74:1e:c2:74:a1:f8:44:1b:19:dc:ba:4d:
67:7e:60:3d:ca:55:d8:0d:82:69:4b:94:8c:df:43:
2f:19:2f:6e:f8:f7:82:d3:b6:ac:7b:9a:49:de:f2:
4d:4f:62:87:ae:cb:44:35:21:bd:a4:c5:b6:7e:e0:
ef:25:d5:a8:19:df:1e:7f:02:90:78:98:be:51:a5:
96:1e:4c:19:8a:10:7d:2a:e2:40:ae:91:2b:51:4f:
f5:bb:bc:aa:fe:a1:bf:01:89:b5:56:89:a7:1b:69:
19:2a:99:ba:ed:9b:bf:93:04:f2:bf:76:3e:7a:29:
9d:aa:2e:16:b7:78:84:23:18:50:1a:a0:50:0a:c2:
2e:c7:85:27:5a:e6:a8:ea:3c:d8:65:35:12:65:08:
a2:32:b1:31:b4:a8:65:54:44:b6:00:e2:68:73:ed:
43:64:95:62:1b:6e:ed:cd:6b:4f:bd:ed:cc:ba:98:
3d:f1:85:1e:34:55:0f:f2:d4:00:f1:be:4c:16:65:
42:ea:0b:a8:a4:f7:ba:35:b2:5d:4d:bc:1e:a2:e4:
03:aa:48:dd:7f:09:2a:b4:47:e3:c6:99:05:4b:f4:
f2:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:A3:43:F0:47:A3:88:3E:E2:06:35:4E:2C:54:4B:D9:E5:72:BA:14
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/vaND8EejiD7iBjVOLFRL2eVyuhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:ac0::/48
2a0e:b107:ac2::/48
Signature Algorithm: sha256WithRSAEncryption
be:ed:2a:19:64:33:ee:a4:15:e5:11:84:1e:28:a7:2c:71:fa:
07:f2:95:08:af:8b:c0:ab:ca:b3:b4:15:cd:36:c7:9d:ed:42:
13:f9:2f:59:f8:d3:09:f2:e6:fb:e0:73:9f:88:28:8a:8d:f0:
6c:0f:3a:29:33:82:95:01:3f:e4:74:8b:79:56:e0:55:69:96:
03:65:8d:5d:82:0d:c2:d8:a7:96:2c:1a:1f:f5:9b:d1:c7:e6:
0c:ad:49:1f:87:cd:1e:d4:b3:7a:1d:5d:41:06:78:73:fd:20:
c3:af:85:2a:4c:c4:dd:2d:12:98:06:42:c1:90:23:30:1a:ff:
ce:01:e4:4a:fe:41:1c:50:38:03:23:45:53:5e:34:60:1e:a5:
c3:52:7a:c5:e7:06:f4:5d:11:1e:dc:fc:32:6c:dd:5e:ca:fb:
52:54:c1:30:56:e6:e6:3d:5a:54:a5:16:59:d8:3c:e7:38:b6:
c1:65:9e:34:28:8c:f6:98:81:f2:60:36:f8:2f:4b:f1:95:15:
b5:b3:4c:82:eb:d0:08:6f:80:28:f0:07:4f:c9:1b:e3:73:f9:
7d:e3:5a:30:d0:08:00:ea:a4:9d:ab:c4:9a:f8:c2:29:e0:30:
8f:da:87:64:c6:e2:75:59:ad:8d:f2:a7:6b:fb:0c:ab:d0:be:
56:65:66:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:20 2023 by rpki-client on console-fra.rpki-client.org