Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/11cf4e-60a3-4622-b212-7314e694bac9/1/vzNEu3suMrDs4zaRcnFq6LfV0EQ.roa
File: vzNEu3suMrDs4zaRcnFq6LfV0EQ.roa (raw, json)
Hash identifier: cNXX7hSviNVCn0R0DuFuh3CCkx4QxDFQQFZ8SGw/h6o=
Subject key identifier: BF:33:44:BB:7B:2E:32:B0:EC:E3:36:91:72:71:6A:E8:B7:D5:D0:44
Certificate issuer: /CN=6b877f082ff5fef4b07cf8f7c0f71334bc8b8482
Certificate serial: 01A436
Authority key identifier: 6B:87:7F:08:2F:F5:FE:F4:B0:7C:F8:F7:C0:F7:13:34:BC:8B:84:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a4d_CC_1_vSwfPj3wPcTNLyLhII.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/11cf4e-60a3-4622-b212-7314e694bac9/1/vzNEu3suMrDs4zaRcnFq6LfV0EQ.roa
Signing time: Fri 17 Jun 2022 07:19:45 +0000
ROA not before: Fri 17 Jun 2022 07:19:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35506
IP address blocks: 2a10:d000:3::/48 maxlen: 48
2a10:d001:1800::/38 maxlen: 38
2a10:d000:1c::/48 maxlen: 48
2a10:d000:14::/48 maxlen: 48
2a10:d000::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107574 (0x1a436)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b877f082ff5fef4b07cf8f7c0f71334bc8b8482
Validity
Not Before: Jun 17 07:19:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf3344bb7b2e32b0ece3369172716ae8b7d5d044
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a0:fc:56:19:7c:63:5d:3e:48:43:25:c3:9a:
ac:70:e9:48:ef:de:d3:14:ad:2f:14:71:9d:8f:ff:
bd:b8:29:ba:db:e9:88:f0:1d:d5:af:16:fc:58:06:
13:53:6b:25:a9:97:1d:cd:37:ac:b6:4f:ee:0a:b9:
1c:a6:3c:dc:67:11:ba:33:f9:75:80:b4:1c:7b:a2:
95:28:21:16:8e:5a:4d:bf:99:8d:7b:d6:13:6f:b5:
75:39:f3:60:7f:aa:ea:3d:44:1a:a0:1a:e0:54:ee:
8a:c3:d4:ea:85:d7:25:e2:64:63:a5:b3:88:ef:4a:
77:ef:20:42:ea:99:12:41:67:23:a2:da:46:a3:94:
f7:19:7a:df:53:4c:83:1f:43:94:a4:21:6f:4b:9d:
fb:d5:87:1d:e0:98:89:84:94:74:33:37:73:67:4c:
10:9a:54:97:0a:8c:f9:83:4c:7f:67:da:17:ce:69:
00:74:7a:be:51:06:f1:67:31:50:a0:a8:be:a9:e3:
88:6c:a1:5c:3e:2e:52:4b:25:cc:cf:a5:01:74:ec:
2c:6e:fe:ed:b3:bb:b8:36:60:3d:cb:0f:bb:2c:4a:
97:a8:9f:9a:88:e4:04:f6:d0:73:5b:29:00:d4:58:
47:38:8b:43:2f:7a:90:0c:8c:09:56:45:6d:fb:89:
7c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:33:44:BB:7B:2E:32:B0:EC:E3:36:91:72:71:6A:E8:B7:D5:D0:44
X509v3 Authority Key Identifier:
keyid:6B:87:7F:08:2F:F5:FE:F4:B0:7C:F8:F7:C0:F7:13:34:BC:8B:84:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4d_CC_1_vSwfPj3wPcTNLyLhII.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/11cf4e-60a3-4622-b212-7314e694bac9/1/vzNEu3suMrDs4zaRcnFq6LfV0EQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/11cf4e-60a3-4622-b212-7314e694bac9/1/a4d_CC_1_vSwfPj3wPcTNLyLhII.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:d000::/29
Signature Algorithm: sha256WithRSAEncryption
1f:15:02:8f:4c:3d:ec:8f:5e:3e:b9:fd:4d:43:f1:15:1e:a8:
ac:1d:87:6b:5c:ce:67:63:b1:15:b1:45:cd:63:df:9c:75:ff:
66:6d:0c:a0:ae:83:2a:45:5a:f6:c7:e8:c3:27:bd:3c:3d:35:
8e:04:65:68:a1:7a:57:cd:92:a7:66:35:39:25:b9:7a:cc:02:
fa:20:c4:7e:c8:48:ea:bb:bb:45:5c:79:0e:a5:e9:bc:2b:29:
c9:91:43:2c:2e:15:b1:e0:e6:67:88:00:a4:af:ba:8d:85:54:
97:54:20:97:6d:0a:da:0a:0d:bc:9f:bd:70:4c:d9:97:d7:63:
d3:8c:41:81:7c:88:0f:39:31:ca:f1:7e:eb:e8:0b:c1:89:0c:
81:b5:4b:73:9c:6c:10:8c:df:53:df:a9:b6:e9:97:45:d4:01:
ba:d1:e3:8e:e9:cb:53:ee:1a:1f:29:99:42:4a:e5:6c:cc:69:
c0:47:4d:18:79:46:32:b1:2b:c4:b7:7c:6e:b3:2b:e0:0d:06:
0c:56:84:57:e4:98:2c:a7:25:f1:39:e3:05:1c:cb:f8:d7:01:
85:4a:c7:3f:ce:90:72:e2:dc:c1:1e:bd:60:36:04:38:4d:05:
38:fa:ba:18:32:9d:0e:e6:63:14:95:db:bc:0b:56:26:90:4e:
25:e6:3d:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:28 2024 by rpki-client on console-fra.rpki-client.org