Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/DHvj-KhxEW9voKocEVyOoYe2QqM.roa
File: DHvj-KhxEW9voKocEVyOoYe2QqM.roa (raw, json)
Hash identifier: c0Xy0C7rnCar0ZrYs2ZtMODy7yPGx+B+i13AVQ0Oucs=
Subject key identifier: 0C:7B:E3:F8:A8:71:11:6F:6F:A0:AA:1C:11:5C:8E:A1:87:B6:42:A3
Certificate issuer: /CN=3691d2950145dceac00c0ca4eb536d92867b38d3
Certificate serial: 018202C5707797FF03906D25DA639FEA6D88
Authority key identifier: 36:91:D2:95:01:45:DC:EA:C0:0C:0C:A4:EB:53:6D:92:86:7B:38:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpHSlQFF3OrADAyk61NtkoZ7ONM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/DHvj-KhxEW9voKocEVyOoYe2QqM.roa
Signing time: Fri 15 Jul 2022 16:51:09 +0000
ROA not before: Fri 15 Jul 2022 16:51:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204318
IP address blocks: 2a13:4c00::/34 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:02:c5:70:77:97:ff:03:90:6d:25:da:63:9f:ea:6d:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3691d2950145dceac00c0ca4eb536d92867b38d3
Validity
Not Before: Jul 15 16:51:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c7be3f8a871116f6fa0aa1c115c8ea187b642a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ae:a7:74:15:72:ab:2e:dd:65:64:b7:ac:cd:
28:f0:c6:40:83:ed:45:20:2e:64:a6:0f:0a:29:c8:
75:60:16:90:27:81:92:1a:88:78:e3:32:85:7d:5b:
70:47:96:d1:ed:71:75:75:9f:19:85:9c:0e:31:16:
85:c8:6c:4e:58:8c:64:9b:8b:4b:cd:c3:57:3f:90:
0e:c4:6d:ff:83:71:22:de:ff:e5:47:75:51:20:e8:
d3:7b:dd:93:df:4d:c7:ed:68:f4:86:3f:6e:7c:38:
c8:99:7b:c0:d7:d2:69:cf:cd:9c:e4:81:ef:98:31:
3f:d7:52:ad:5f:34:9f:bd:3c:34:84:f8:7f:c3:6b:
8e:8c:71:78:1b:74:e5:ff:ff:aa:d9:0a:13:6f:78:
57:57:71:cc:da:82:c7:55:70:1d:38:ad:e7:88:e2:
90:45:ae:70:ff:24:4d:97:60:f0:44:42:10:1b:da:
65:9e:80:10:6f:51:be:b7:37:b2:f7:9f:ba:59:85:
e3:02:d5:70:60:5b:83:87:a1:37:2b:c5:60:d0:07:
f8:75:0b:96:4b:61:26:e1:d1:b1:9e:c3:a2:00:0d:
3f:9d:44:0c:5d:26:e5:ff:a9:85:ad:c8:4f:ee:a6:
20:3d:fd:c1:06:ce:16:ed:0d:b1:10:74:ae:61:cd:
6b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:7B:E3:F8:A8:71:11:6F:6F:A0:AA:1C:11:5C:8E:A1:87:B6:42:A3
X509v3 Authority Key Identifier:
keyid:36:91:D2:95:01:45:DC:EA:C0:0C:0C:A4:EB:53:6D:92:86:7B:38:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpHSlQFF3OrADAyk61NtkoZ7ONM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/DHvj-KhxEW9voKocEVyOoYe2QqM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/NpHSlQFF3OrADAyk61NtkoZ7ONM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:4c00::/34
Signature Algorithm: sha256WithRSAEncryption
ca:0c:00:83:c0:87:00:f8:29:ba:38:88:56:d6:c3:19:7a:9d:
c7:c8:cb:1a:f8:2c:f4:12:6e:af:26:89:65:30:d8:73:6d:f8:
8f:f1:d3:d4:0a:d0:90:ee:27:07:ef:1c:f9:fd:97:a3:ae:e4:
a6:ed:10:43:76:c6:b3:66:c5:ad:22:e2:cd:8f:53:9e:45:fb:
b7:34:9e:37:26:53:dc:f8:10:08:82:c3:f6:ab:ef:11:fd:4a:
d8:c1:51:7e:4a:41:4a:b1:ef:77:fd:61:e8:16:f0:be:b2:82:
6b:8b:e4:dc:69:0b:65:a8:67:7c:32:50:52:79:5d:fa:18:06:
7d:3a:01:3d:65:bc:7d:0a:d0:8c:66:4c:4b:93:65:c4:59:5f:
5f:27:b3:0f:f1:d4:3e:f6:3a:35:d5:c0:c2:bc:b9:be:ea:fa:
fb:e3:65:9f:a7:66:66:3e:64:9a:cf:64:6c:a6:85:d8:84:35:
8d:12:fe:ff:91:89:0c:7b:c4:d9:08:b8:a6:5f:88:57:fb:0e:
89:d0:42:9d:61:39:ca:c6:58:33:fc:80:2c:ca:33:1b:4c:17:
69:e3:4d:a7:68:ac:fa:c0:a7:c3:b0:e8:2e:46:d6:bc:f2:a4:
06:75:cd:3d:0a:84:cb:c1:93:11:95:d5:e8:af:9e:08:ec:57:
71:da:d5:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:30 2023 by rpki-client on console-ams.rpki-client.org