Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/flTvx70vQ-tpnHVYfPBq8TdTZjs.roa
File: flTvx70vQ-tpnHVYfPBq8TdTZjs.roa (raw, json)
Hash identifier: ErLeiX/sVwzpTi5ggCrKZyLkWKEkL3KDJpqtKFfJZLE=
Subject key identifier: 7E:54:EF:C7:BD:2F:43:EB:69:9C:75:58:7C:F0:6A:F1:37:53:66:3B
Certificate issuer: /CN=5df53645843e6d2883dc8f9c4f415c1eadbbf60a
Certificate serial: 04BC0A12
Authority key identifier: 5D:F5:36:45:84:3E:6D:28:83:DC:8F:9C:4F:41:5C:1E:AD:BB:F6:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfU2RYQ-bSiD3I-cT0FcHq279go.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/flTvx70vQ-tpnHVYfPBq8TdTZjs.roa
Signing time: Wed 09 Feb 2022 19:58:06 +0000
ROA not before: Wed 09 Feb 2022 19:58:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 2a10:4741:23::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79432210 (0x4bc0a12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df53645843e6d2883dc8f9c4f415c1eadbbf60a
Validity
Not Before: Feb 9 19:58:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e54efc7bd2f43eb699c75587cf06af13753663b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d7:75:6c:22:59:f0:06:a1:ad:8a:ef:c5:b3:
3e:52:fd:bd:1f:84:db:a1:2d:4f:3d:49:12:d4:65:
d5:eb:18:3d:ff:61:98:36:61:da:45:59:1b:33:fb:
77:90:03:31:6d:3d:d3:d6:e5:3b:dc:d5:c4:e4:bf:
18:5a:05:b4:09:04:af:97:29:b4:c3:cc:c5:03:33:
d8:6e:d9:8d:f5:1d:69:28:59:11:34:a8:7e:16:e4:
88:66:35:ed:48:69:eb:aa:ed:c3:ba:cc:ae:70:67:
a7:bf:9d:7a:08:71:4a:8e:9a:6e:f0:20:3f:1f:0a:
b9:4a:65:79:ca:79:97:e7:51:e8:0d:40:12:cf:29:
94:67:86:f1:eb:89:1f:9b:d4:47:84:30:2b:b4:fb:
77:1d:c8:e7:07:21:07:7e:7c:93:84:c2:cc:4f:ba:
c2:38:c1:9e:d8:96:4e:1f:5e:8a:7f:10:4a:6f:1b:
e8:bd:f5:4c:17:57:81:f9:c9:30:bb:c6:c1:38:ac:
40:00:bb:e3:c0:dd:16:6b:98:12:e5:b7:67:23:19:
fd:fb:17:74:61:fe:d6:c6:1f:7c:9a:59:66:45:ef:
0a:9a:70:b5:5c:8a:61:62:5d:c0:ba:18:fc:97:eb:
c8:bb:3b:b0:03:72:bd:75:d2:56:fe:e1:92:29:bc:
82:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:54:EF:C7:BD:2F:43:EB:69:9C:75:58:7C:F0:6A:F1:37:53:66:3B
X509v3 Authority Key Identifier:
keyid:5D:F5:36:45:84:3E:6D:28:83:DC:8F:9C:4F:41:5C:1E:AD:BB:F6:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfU2RYQ-bSiD3I-cT0FcHq279go.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/flTvx70vQ-tpnHVYfPBq8TdTZjs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/XfU2RYQ-bSiD3I-cT0FcHq279go.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4741:23::/48
Signature Algorithm: sha256WithRSAEncryption
67:ad:04:74:b8:1a:8d:a4:b5:c3:12:08:de:2b:43:2c:87:99:
6a:2f:8a:df:fa:25:02:a9:6a:2d:b4:c3:bd:14:f1:2f:d5:8d:
1a:e5:9a:ef:85:06:f9:ae:4e:b6:61:ee:69:2a:00:b0:9e:42:
7f:b1:97:6a:f4:65:ca:01:cd:a9:a1:a8:6f:73:8c:a4:49:30:
33:24:68:64:c6:e6:43:5d:2e:6e:28:51:27:84:53:d3:e8:d4:
47:be:ed:9f:10:66:88:de:c2:b7:49:db:60:b5:ca:de:5d:8a:
49:2a:05:62:b9:68:9d:62:f2:6c:92:43:87:69:68:83:18:cf:
00:5d:ce:f8:b2:b4:5a:c8:a0:0a:c3:a8:49:9f:73:cb:6b:d0:
4c:e9:f2:0d:27:22:a7:5e:de:80:55:66:c3:52:52:57:04:35:
5e:dc:32:06:4c:57:36:ed:68:6f:3e:9a:03:48:cb:7b:c3:73:
ed:ee:82:60:64:4d:50:23:17:12:2a:60:06:eb:71:39:9c:4f:
e9:7a:a0:be:23:ee:76:f4:af:9c:5a:d8:f6:59:cb:eb:77:11:
2c:4b:ff:49:4d:69:d7:83:f7:f3:31:f3:91:57:90:e3:95:df:
c6:01:20:ea:bc:82:ab:f1:59:73:fc:dc:e8:5b:1d:83:aa:4b:
91:3b:b7:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:43 2023 by rpki-client on console-ams.rpki-client.org