Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/2dc136-400d-40e7-ad86-8ce60a5c8b1f/1/BmlWc2R7qTLmh4DTW1yvS_0RBRo.roa
File: BmlWc2R7qTLmh4DTW1yvS_0RBRo.roa (raw, json)
Hash identifier: EZx3KaMFhCAhxrYuJYSj8zfA9hd39ElJgHft+b2Tcwg=
Subject key identifier: 06:69:56:73:64:7B:A9:32:E6:87:80:D3:5B:5C:AF:4B:FD:11:05:1A
Certificate issuer: /CN=f80e017cf1711519b0ff9f65858c491b2fa5d40b
Certificate serial: 0388D75B
Authority key identifier: F8:0E:01:7C:F1:71:15:19:B0:FF:9F:65:85:8C:49:1B:2F:A5:D4:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-A4BfPFxFRmw_59lhYxJGy-l1As.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/2dc136-400d-40e7-ad86-8ce60a5c8b1f/1/BmlWc2R7qTLmh4DTW1yvS_0RBRo.roa
Signing time: Mon 28 Mar 2022 18:54:19 +0000
ROA not before: Mon 28 Mar 2022 18:54:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49689
IP address blocks: 2a10:8b40:1001::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59299675 (0x388d75b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f80e017cf1711519b0ff9f65858c491b2fa5d40b
Validity
Not Before: Mar 28 18:54:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06695673647ba932e68780d35b5caf4bfd11051a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:01:b5:39:56:01:ca:c0:30:c4:06:5d:74:21:
a4:03:e7:93:67:9b:0b:0c:89:a5:7d:46:7e:c2:b8:
f9:65:13:5b:b1:04:ce:79:06:a4:61:5f:18:7e:96:
77:8d:40:3d:14:cd:2f:2f:2b:be:48:26:d5:46:5a:
bb:5b:2a:dc:85:ab:18:6a:9b:f0:4e:3a:7c:0d:29:
66:b5:5a:9d:2d:31:d1:f9:cd:ef:fe:6e:63:80:9b:
a1:ef:72:ca:d6:bc:80:58:9b:2a:fa:14:19:e7:d0:
85:11:ab:c9:1a:92:9e:19:22:62:36:23:68:0a:b4:
b0:c9:05:02:4b:15:c5:8d:f6:a4:39:42:9d:f3:3b:
05:85:b8:da:0a:2d:e5:93:09:ba:a5:a0:e5:bb:26:
8c:f7:e7:d7:aa:49:27:a5:47:12:ca:c9:a8:6f:a2:
33:61:48:08:4e:50:73:37:22:c5:e8:3b:49:cf:cc:
00:88:ef:d0:77:f6:ce:51:f9:30:08:93:47:f2:d1:
05:9b:cf:33:10:21:bb:a6:ca:a0:04:ab:cd:69:45:
09:c3:a7:60:f9:6d:f2:f1:62:b1:40:49:c0:43:a5:
6f:92:77:7d:45:76:17:73:a5:98:a2:c7:c8:18:b3:
db:00:79:27:12:3f:e1:28:c3:8a:de:cf:2f:f8:b5:
f2:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:69:56:73:64:7B:A9:32:E6:87:80:D3:5B:5C:AF:4B:FD:11:05:1A
X509v3 Authority Key Identifier:
keyid:F8:0E:01:7C:F1:71:15:19:B0:FF:9F:65:85:8C:49:1B:2F:A5:D4:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-A4BfPFxFRmw_59lhYxJGy-l1As.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/2dc136-400d-40e7-ad86-8ce60a5c8b1f/1/BmlWc2R7qTLmh4DTW1yvS_0RBRo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/2dc136-400d-40e7-ad86-8ce60a5c8b1f/1/1-A4BfPFxFRmw_59lhYxJGy-l1As.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:8b40:1001::/48
Signature Algorithm: sha256WithRSAEncryption
60:1e:f0:c1:c8:41:6c:5e:39:41:3e:30:90:4e:75:73:9a:2d:
2c:b6:87:d4:9c:b5:e9:78:c6:7a:45:99:dc:ca:79:25:88:54:
81:77:1e:71:a5:d5:8b:f7:b5:33:8b:6f:c7:0d:33:df:9e:36:
20:0f:a1:70:56:35:06:cc:b7:70:44:f1:11:1f:c4:dd:ff:b7:
8f:7b:d4:d8:ef:6a:df:80:9b:b2:30:24:a6:61:a5:71:f5:d5:
2d:82:5d:21:90:55:2d:e9:1c:96:fd:a6:6c:ff:c1:ba:f2:fb:
d0:3a:42:7e:f9:23:87:34:dd:e7:6f:fe:4d:67:bf:8b:28:80:
38:f2:c4:1c:e5:98:e0:8f:54:34:7b:6d:9d:b6:71:a1:09:77:
dd:0a:a1:89:9f:b4:f9:4b:e2:4d:75:d9:64:ec:1f:b1:03:a4:
b2:f6:38:6f:3e:fb:a0:4c:da:5a:a1:12:41:93:44:fc:f6:7a:
2e:d1:90:d9:ff:e2:d5:7e:d3:3e:b7:77:49:5d:78:6d:fd:a3:
f8:45:ee:fa:9c:82:af:41:5a:99:f4:61:42:29:f8:50:24:af:
41:b6:29:23:40:00:ec:c9:0c:71:96:0c:7c:a8:31:9c:4d:7c:
b3:c9:cb:b8:56:d2:01:f8:81:f6:a2:5d:5f:46:c0:62:4a:c1:
83:95:62:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:35 2023 by rpki-client on console-ams.rpki-client.org