Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/c67c3e-45c6-4c81-9738-c44ddffa69ab/1/dxoooYf15-uvs_KytDPNQBHETJs.roa
File: dxoooYf15-uvs_KytDPNQBHETJs.roa (raw, json)
Hash identifier: 5VfOOY2JwRIkvmT2o4XNU/NxItOudgHDqaB24xBmgv4=
Subject key identifier: 77:1A:28:A1:87:F5:E7:EB:AF:B3:F2:B2:B4:33:CD:40:11:C4:4C:9B
Certificate issuer: /CN=0caa8840e53bb965be5192c85b740345e7a0652c
Certificate serial: 018249B0979D471F69C0948D519157F2FDBA
Authority key identifier: 0C:AA:88:40:E5:3B:B9:65:BE:51:92:C8:5B:74:03:45:E7:A0:65:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DKqIQOU7uWW-UZLIW3QDReegZSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/c67c3e-45c6-4c81-9738-c44ddffa69ab/1/dxoooYf15-uvs_KytDPNQBHETJs.roa
Signing time: Fri 29 Jul 2022 11:21:26 +0000
ROA not before: Fri 29 Jul 2022 11:21:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 2a13:7f00::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:49:b0:97:9d:47:1f:69:c0:94:8d:51:91:57:f2:fd:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0caa8840e53bb965be5192c85b740345e7a0652c
Validity
Not Before: Jul 29 11:21:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=771a28a187f5e7ebafb3f2b2b433cd4011c44c9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f2:f9:dd:7a:ab:2e:aa:2c:d4:de:07:ed:3d:
e9:e8:ab:7b:84:65:16:20:bb:59:66:db:12:50:85:
6a:df:96:1d:27:a9:03:81:5a:5d:5e:f9:67:13:df:
1a:7f:35:1a:84:1c:c8:31:71:4c:e1:94:dd:aa:da:
c5:e8:86:c6:0c:cb:a0:8b:d3:4f:85:4e:c3:1d:b1:
a5:dd:49:d1:a9:ec:55:46:ad:94:8e:1c:b6:aa:a7:
6f:fd:1f:ad:05:35:9a:37:29:74:c1:a1:c6:08:2a:
f3:08:5f:16:96:6c:7a:37:42:88:74:af:44:d5:9d:
f5:10:14:32:8b:25:52:a0:b1:8d:d1:6e:ef:cf:0b:
53:dd:37:9f:28:b1:9c:ce:37:90:e9:a5:8d:94:50:
d6:53:98:ea:b1:23:ad:79:8c:86:0d:e6:0d:5f:d7:
6f:94:ea:24:48:37:5f:62:12:9c:02:f5:4d:83:2e:
02:90:f5:f9:3b:57:83:e0:e5:8a:ba:31:b9:74:a4:
46:b3:76:47:86:ea:cf:32:19:f4:14:ae:91:47:ec:
72:19:1a:95:f8:2c:ac:f1:7d:91:dd:4e:4f:78:84:
49:4f:06:2b:86:b6:de:5c:32:6d:73:1d:d5:6c:f2:
13:82:9d:8c:7c:8c:26:e5:2a:95:6f:d8:ac:5a:ae:
0f:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:1A:28:A1:87:F5:E7:EB:AF:B3:F2:B2:B4:33:CD:40:11:C4:4C:9B
X509v3 Authority Key Identifier:
keyid:0C:AA:88:40:E5:3B:B9:65:BE:51:92:C8:5B:74:03:45:E7:A0:65:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DKqIQOU7uWW-UZLIW3QDReegZSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/c67c3e-45c6-4c81-9738-c44ddffa69ab/1/dxoooYf15-uvs_KytDPNQBHETJs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/c67c3e-45c6-4c81-9738-c44ddffa69ab/1/DKqIQOU7uWW-UZLIW3QDReegZSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:7f00::/32
Signature Algorithm: sha256WithRSAEncryption
1f:d7:a4:b0:53:01:6b:4c:7b:18:33:f2:e3:19:aa:31:6c:37:
c6:c0:1d:43:db:36:f7:88:ab:e0:78:25:11:89:40:bb:a7:0e:
99:ea:6f:60:d2:4c:88:2b:bb:17:f8:59:dd:9e:5f:5c:6d:3e:
99:9f:f3:c1:92:d8:76:50:4e:5f:7d:6f:d6:ca:b6:ac:c2:17:
ee:34:9e:77:13:a6:f1:9b:ff:cc:6d:dd:d7:d1:ab:a9:aa:08:
5a:3e:a8:61:e1:9a:85:ac:2c:32:1c:4b:f2:aa:71:5d:76:b1:
ec:84:41:55:6a:17:0d:33:a3:bf:c2:71:5f:38:3f:1d:1c:77:
99:2a:3d:da:c0:86:75:4c:3f:20:8e:af:df:be:39:73:75:51:
3d:e9:f9:5d:70:f3:38:79:76:46:d4:14:1b:29:12:44:de:06:
6a:49:71:a1:eb:e2:40:ba:ac:39:08:93:0c:9d:13:40:25:45:
f4:f0:d5:72:3c:57:93:d4:ee:37:9f:fb:69:9f:a7:35:e6:8e:
76:4e:9b:7f:80:2b:33:2c:eb:95:1c:2a:fb:59:fa:a5:af:3e:
dc:f3:9a:f4:d0:74:c8:2b:29:77:06:4b:c1:78:04:d3:37:43:
62:1e:21:9a:b4:46:ae:96:49:93:3c:12:fd:39:c7:83:55:73:
91:33:8f:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:59 2023 by rpki-client on console-fra.rpki-client.org