Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/VMZctyzcn3J7SeNN8LJahQm6szQ.roa
File: VMZctyzcn3J7SeNN8LJahQm6szQ.roa (raw, json)
Hash identifier: oSplPkPr6dLF/u8KhcHB5seKckERFXTyePB05Vbvn34=
Subject key identifier: 54:C6:5C:B7:2C:DC:9F:72:7B:49:E3:4D:F0:B2:5A:85:09:BA:B3:34
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 09760356
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/VMZctyzcn3J7SeNN8LJahQm6szQ.roa
Signing time: Mon 09 May 2022 09:45:59 +0000
ROA not before: Mon 09 May 2022 09:45:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211375
IP address blocks: 2a06:c3c0:4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158729046 (0x9760356)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: May 9 09:45:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=54c65cb72cdc9f727b49e34df0b25a8509bab334
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:11:39:22:43:2d:37:3e:1f:11:d1:dd:02:6b:
3c:86:c4:44:52:d7:ca:af:1b:11:2e:80:55:4e:ce:
b8:f8:89:08:e4:2c:f7:59:6d:cf:8d:5f:fc:72:a3:
fb:d0:47:4b:33:a4:ef:88:7c:24:b7:9d:43:60:d0:
31:b4:a1:76:5b:51:8c:70:55:d4:b9:0e:93:97:6d:
06:e1:c7:da:b8:30:42:3f:9a:d4:3f:10:49:6f:9c:
ee:9f:4c:ff:eb:3c:c9:bc:91:f9:aa:a5:63:5a:ab:
75:52:ed:5a:eb:33:8e:52:fe:29:a3:ca:0e:81:ec:
7c:e9:0e:58:ce:e0:73:f7:a6:c5:df:d8:4d:2b:fd:
2d:90:cc:8a:da:56:f4:15:17:9a:94:e2:10:79:90:
9a:c6:89:74:3a:6a:d1:40:25:1c:82:fd:f4:30:fd:
cf:b2:e1:75:1b:6f:7d:dd:93:5a:ed:23:ad:21:57:
e4:0e:3a:bc:ec:e5:69:93:7c:30:af:de:46:3c:d7:
e3:2a:cb:67:95:e3:89:c8:a2:3b:99:1c:b9:c8:b4:
7c:bd:94:e3:cb:8b:69:f3:4b:d8:24:f7:02:47:d7:
d7:65:40:9b:ed:0d:92:04:df:7d:d8:eb:9b:fa:48:
bc:03:6d:88:a3:68:b7:83:65:64:f2:dc:64:1e:9c:
66:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:C6:5C:B7:2C:DC:9F:72:7B:49:E3:4D:F0:B2:5A:85:09:BA:B3:34
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/VMZctyzcn3J7SeNN8LJahQm6szQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:c3c0:4::/48
Signature Algorithm: sha256WithRSAEncryption
15:5f:69:00:72:28:cd:e2:5f:2d:ee:12:1e:bb:dc:d4:5a:40:
24:85:93:7b:2a:95:59:46:af:d8:6b:9c:66:ee:40:f4:4d:9c:
03:dc:0e:34:10:61:6c:21:e6:d6:7f:f4:98:92:fb:0c:ae:20:
96:de:7f:7c:d1:ba:26:3a:03:a6:5c:35:16:53:69:e6:0b:d4:
40:7b:bc:bc:05:8c:b6:15:3a:81:e2:71:43:c0:19:a1:17:68:
cd:c1:2e:9b:8a:06:76:50:85:91:2b:e9:ee:5b:b1:37:5a:2e:
38:f2:a9:9a:da:dc:dd:1d:05:b7:15:1b:1e:ad:84:0d:d2:61:
53:79:e1:4d:13:e2:a1:35:b2:5e:b7:c1:9d:05:46:3d:87:35:
31:4a:3d:5f:fa:a7:04:47:cd:92:b7:2e:88:d9:bd:3f:40:0b:
11:0e:bd:fd:ab:28:79:1c:d0:1e:cb:9a:e0:37:3b:bf:f8:d7:
b4:19:fa:5e:3a:86:8e:68:9d:1c:52:4e:27:fc:90:5f:9e:3c:
85:3a:5d:5a:13:81:1c:1f:29:5a:77:fe:0b:6c:c4:b2:72:c1:
23:cc:04:25:ec:2a:7c:d8:19:af:1f:fa:36:e5:c2:76:ed:85:
33:54:34:92:73:4e:8a:5c:25:e1:e6:f1:45:97:15:05:54:7e:
28:cd:c2:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:44 2023 by rpki-client on console-ams.rpki-client.org