Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/NVoQT06oxbMa34I7GCwLWdsnr8M.roa
File: NVoQT06oxbMa34I7GCwLWdsnr8M.roa (raw, json)
Hash identifier: iXchuedAl72gN6Fk4OjP3s88TGaiuignpY6s2I1IPTs=
Subject key identifier: 35:5A:10:4F:4E:A8:C5:B3:1A:DF:82:3B:18:2C:0B:59:DB:27:AF:C3
Certificate issuer: /CN=4da84d247ce37cdccf06e1571d226a2b85677bcd
Certificate serial: 086D2EFF
Authority key identifier: 4D:A8:4D:24:7C:E3:7C:DC:CF:06:E1:57:1D:22:6A:2B:85:67:7B:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TahNJHzjfNzPBuFXHSJqK4Vne80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/NVoQT06oxbMa34I7GCwLWdsnr8M.roa
Signing time: Sat 01 Jan 2022 14:56:59 +0000
ROA not before: Sat 01 Jan 2022 14:56:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201086
IP address blocks: 2a05:6f80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141373183 (0x86d2eff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4da84d247ce37cdccf06e1571d226a2b85677bcd
Validity
Not Before: Jan 1 14:56:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=355a104f4ea8c5b31adf823b182c0b59db27afc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:61:a4:87:03:31:8e:1b:ac:21:39:6c:1a:ed:
7d:c2:f2:e3:1d:12:a1:76:70:af:f9:bc:dc:ee:44:
a6:b8:6d:00:5e:6c:fd:f4:b6:ae:ee:55:db:f8:cc:
5d:76:32:a5:20:f8:48:91:e3:0c:d8:c1:87:26:1d:
bd:15:75:8d:1e:30:2b:71:ce:7d:db:32:d4:33:27:
87:71:85:35:86:d3:6b:de:89:7f:d5:3e:e9:0d:41:
17:a8:08:c5:1c:83:fa:d5:62:7b:5e:ce:f2:0b:eb:
f0:50:27:fe:63:c5:c8:75:05:fe:4a:8b:f8:a3:0a:
24:e2:cc:54:b8:75:00:d9:a0:45:8d:15:07:81:1f:
fa:47:5d:7d:8f:d2:95:6a:0d:78:52:74:01:d6:4d:
64:b7:80:b2:da:2f:43:b1:13:26:79:d4:f9:ce:09:
e7:3d:9d:82:f7:19:3d:75:bc:69:4e:9b:74:df:57:
0b:73:09:99:8c:09:e8:2e:33:fe:74:8f:fb:69:6e:
6d:7e:da:72:91:25:5c:36:0a:cf:3a:ac:99:12:bc:
bd:d4:e3:5d:be:18:38:3b:60:f4:6a:3e:b8:4e:74:
bf:cb:86:d5:fd:80:dc:8a:4a:dc:f4:7a:ce:45:e9:
f7:7d:2e:46:10:04:d5:33:78:35:b9:7e:9b:64:db:
d6:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:5A:10:4F:4E:A8:C5:B3:1A:DF:82:3B:18:2C:0B:59:DB:27:AF:C3
X509v3 Authority Key Identifier:
keyid:4D:A8:4D:24:7C:E3:7C:DC:CF:06:E1:57:1D:22:6A:2B:85:67:7B:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TahNJHzjfNzPBuFXHSJqK4Vne80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/NVoQT06oxbMa34I7GCwLWdsnr8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/TahNJHzjfNzPBuFXHSJqK4Vne80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:6f80::/29
Signature Algorithm: sha256WithRSAEncryption
ae:f4:b7:de:86:48:e4:b2:ae:3b:3c:5a:d6:bf:77:30:3a:80:
84:8a:22:23:92:3c:55:d0:4f:1f:2d:96:26:ed:a7:c3:72:c1:
7e:34:2a:fc:e9:b3:93:f3:03:2b:8b:9e:b8:23:e3:de:2a:ef:
f0:5e:49:43:9f:b8:12:93:6a:f1:33:b1:90:f1:8a:44:8d:73:
14:5d:9d:44:14:66:ff:e0:ea:88:1f:d9:2f:0a:4b:0c:0e:f3:
dc:e6:97:54:25:ad:2b:9b:a6:c3:3b:5e:3f:4f:2d:db:84:8a:
54:45:50:e4:7f:b4:57:01:da:36:21:c3:d3:dd:39:4c:76:87:
7c:c8:57:20:a2:ff:c8:77:51:42:af:24:cf:a8:15:9e:5c:c0:
ae:88:de:26:7f:65:83:37:21:db:c6:07:3b:99:04:30:92:99:
6d:e9:d7:cc:27:ab:a9:64:6e:bc:c3:15:32:67:b1:85:15:41:
b2:df:44:61:77:09:06:72:76:12:8b:6a:79:2c:4f:90:a8:99:
c4:41:55:d2:c3:ac:8f:98:f2:7c:23:17:5c:86:58:2c:5a:e4:
d0:20:be:21:75:b3:ca:0e:f9:cf:85:ab:4e:f1:eb:f1:46:b6:
f2:aa:f3:59:4a:3e:22:3d:e3:b5:00:a8:16:e4:fc:c3:82:b3:
4f:2c:26:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:09 2023 by rpki-client on console-fra.rpki-client.org