Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/8e1f53-b674-40e8-8bb8-db5d89e8a17c/1/UHYqQw_LzHtfyx9cT95PQe6jC-Y.roa
File: UHYqQw_LzHtfyx9cT95PQe6jC-Y.roa (raw, json)
Hash identifier: 07RmEzRdkbS3VpVvvC8CRF1NnPdrr5fVjoH5Xbhu/mg=
Subject key identifier: 50:76:2A:43:0F:CB:CC:7B:5F:CB:1F:5C:4F:DE:4F:41:EE:A3:0B:E6
Certificate issuer: /CN=40cc81ff82ced61aef8476ace7a0e818bbae8fc4
Certificate serial: 01A458
Authority key identifier: 40:CC:81:FF:82:CE:D6:1A:EF:84:76:AC:E7:A0:E8:18:BB:AE:8F:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QMyB_4LO1hrvhHas56DoGLuuj8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/8e1f53-b674-40e8-8bb8-db5d89e8a17c/1/UHYqQw_LzHtfyx9cT95PQe6jC-Y.roa
Signing time: Fri 03 Jun 2022 16:01:20 +0000
ROA not before: Fri 03 Jun 2022 16:01:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204774
IP address blocks: 2a13:5000::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107608 (0x1a458)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40cc81ff82ced61aef8476ace7a0e818bbae8fc4
Validity
Not Before: Jun 3 16:01:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50762a430fcbcc7b5fcb1f5c4fde4f41eea30be6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:cb:e9:c5:c2:0d:4f:7b:28:25:1f:b9:b7:cc:
db:71:0a:72:a4:33:92:ed:28:8b:50:28:7f:0b:56:
03:6e:44:6e:34:88:b1:6d:d4:98:e4:00:a2:a8:b4:
bd:74:60:1a:91:af:82:82:31:f9:33:3c:e1:81:f4:
5c:cb:09:cb:6b:6e:be:cf:90:94:f6:9c:fa:26:fa:
a6:64:eb:3b:e1:d8:d4:4d:1d:ea:50:5f:2a:6a:db:
e4:3b:de:0c:90:c1:93:34:4c:60:49:ba:af:6e:cc:
d1:cd:db:4c:c7:ae:ee:82:78:b5:6f:04:e2:57:5d:
25:8f:1f:1e:19:0a:45:c3:e5:26:79:32:c1:9a:8e:
b8:29:02:e7:68:8d:57:b7:9a:3f:20:cb:c9:2f:38:
57:12:5d:7e:56:ff:d6:f6:3e:85:27:63:99:1c:7a:
7c:dd:29:46:0b:5f:d1:36:95:03:82:e5:c0:82:03:
e8:77:14:20:5d:08:c6:de:a9:08:06:62:ff:73:6a:
bb:e4:d7:c8:1d:4d:df:e6:16:19:b6:db:ff:df:5e:
55:28:82:d0:f9:92:b2:87:a7:ae:dd:10:2f:ce:28:
1b:77:1d:0e:85:89:59:ac:f9:3d:a8:03:6e:df:1c:
fe:c4:cb:ab:9e:00:f6:46:6e:b5:6d:b7:50:c4:af:
29:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:76:2A:43:0F:CB:CC:7B:5F:CB:1F:5C:4F:DE:4F:41:EE:A3:0B:E6
X509v3 Authority Key Identifier:
keyid:40:CC:81:FF:82:CE:D6:1A:EF:84:76:AC:E7:A0:E8:18:BB:AE:8F:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QMyB_4LO1hrvhHas56DoGLuuj8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/8e1f53-b674-40e8-8bb8-db5d89e8a17c/1/UHYqQw_LzHtfyx9cT95PQe6jC-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/8e1f53-b674-40e8-8bb8-db5d89e8a17c/1/QMyB_4LO1hrvhHas56DoGLuuj8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:5000::/29
Signature Algorithm: sha256WithRSAEncryption
35:14:f0:6c:5c:2e:51:b1:89:a4:59:b9:9b:d7:1c:20:21:30:
42:f7:64:3a:2a:9a:02:e6:65:79:5e:9b:ad:41:33:d1:52:ed:
2e:15:65:77:10:30:0b:9c:8c:ff:bb:66:5a:4a:02:cf:d2:1b:
41:8b:d9:56:31:7c:8b:df:a8:70:b9:b3:4c:19:6d:50:07:7d:
bc:c7:52:21:45:f3:e6:62:88:f5:ba:68:23:c8:3e:a1:ba:95:
ce:88:7a:08:35:30:a3:38:e7:6c:62:7d:0c:cb:3c:df:c5:84:
8d:79:d0:94:83:a8:26:d7:b0:49:e1:d4:b8:e6:dc:95:24:4e:
47:3d:41:e9:7d:aa:6c:98:9f:ab:0b:d3:17:89:b4:0e:9d:41:
94:29:c1:18:a4:f5:78:0f:45:98:fd:09:9e:94:29:b9:03:11:
91:e1:fe:52:38:ac:96:23:19:97:3a:03:8d:3b:fe:a7:2a:9e:
34:b2:e7:49:5d:6c:2f:8e:b0:85:cb:d9:cd:de:92:c0:95:23:
08:d0:95:9e:7d:52:86:ae:6d:20:b7:d5:b3:9b:b3:69:63:76:
12:c9:e0:fb:03:52:2e:09:44:12:f8:cd:01:56:8d:91:1f:34:
3c:45:b1:bd:87:5e:69:d8:23:c1:96:4f:ae:e1:28:7d:77:e8:
78:5f:11:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:17 2023 by rpki-client on console-ams.rpki-client.org