Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/965580-8736-4173-bde3-2c3028fcece9/1/VtWGPSLYmnmpl1H9OkzJXrSKIFE.roa
File: VtWGPSLYmnmpl1H9OkzJXrSKIFE.roa (raw, json)
Hash identifier: 1mpww45sJA0tmVscDKnHbHsT+xI+sy1rnkCABrRE260=
Subject key identifier: 56:D5:86:3D:22:D8:9A:79:A9:97:51:FD:3A:4C:C9:5E:B4:8A:20:51
Certificate issuer: /CN=93ecccde85c40b154f919baf64ef032ec70d751e
Certificate serial: 0D3A787B
Authority key identifier: 93:EC:CC:DE:85:C4:0B:15:4F:91:9B:AF:64:EF:03:2E:C7:0D:75:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-zM3oXECxVPkZuvZO8DLscNdR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/965580-8736-4173-bde3-2c3028fcece9/1/VtWGPSLYmnmpl1H9OkzJXrSKIFE.roa
Signing time: Sat 01 Jan 2022 06:01:05 +0000
ROA not before: Sat 01 Jan 2022 06:01:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50324
IP address blocks: 2001:67c:138::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 221935739 (0xd3a787b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93ecccde85c40b154f919baf64ef032ec70d751e
Validity
Not Before: Jan 1 06:01:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56d5863d22d89a79a99751fd3a4cc95eb48a2051
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:77:fd:0b:d1:ca:d4:76:76:f4:e7:94:ab:a5:
23:aa:96:5b:38:c2:3a:4e:2e:75:77:c3:05:b4:f0:
ec:27:d5:36:66:3a:5e:41:53:ee:43:2b:3a:85:da:
a4:23:19:96:da:a7:69:fb:02:fe:92:dd:a5:72:fe:
17:36:5d:0a:33:12:2e:40:54:dc:4e:7e:10:13:94:
ec:a4:b2:92:70:38:73:57:c0:ee:15:47:0b:5a:5a:
89:75:ac:0e:e9:d8:15:81:ab:a8:34:d5:1c:75:2d:
2c:40:8d:18:3a:25:46:ae:4d:1b:b4:c6:18:4f:ba:
6e:f3:97:5e:10:e4:5e:7e:f2:e8:75:31:fe:c0:43:
6c:eb:5a:72:13:63:a6:e8:5f:2b:1a:55:54:dc:e1:
d9:e8:ef:c9:3a:cf:d2:80:72:82:3b:da:01:d7:c8:
78:b0:be:f0:de:9e:c9:cc:b5:2e:ce:ec:02:57:e8:
1c:ba:4b:de:e2:f3:e2:4f:16:57:f8:71:49:49:b9:
05:ad:7a:25:f5:4e:43:b0:8f:49:cb:86:6b:c4:4c:
a7:54:9c:78:cc:7d:c5:48:92:e0:ef:d5:4d:d3:ae:
2a:89:0a:a1:4e:12:2a:cb:09:20:81:0a:11:0a:47:
da:3b:4c:00:6b:a8:06:39:75:f5:74:1d:53:08:6b:
fa:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:D5:86:3D:22:D8:9A:79:A9:97:51:FD:3A:4C:C9:5E:B4:8A:20:51
X509v3 Authority Key Identifier:
keyid:93:EC:CC:DE:85:C4:0B:15:4F:91:9B:AF:64:EF:03:2E:C7:0D:75:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-zM3oXECxVPkZuvZO8DLscNdR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/965580-8736-4173-bde3-2c3028fcece9/1/VtWGPSLYmnmpl1H9OkzJXrSKIFE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/965580-8736-4173-bde3-2c3028fcece9/1/k-zM3oXECxVPkZuvZO8DLscNdR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:138::/48
Signature Algorithm: sha256WithRSAEncryption
39:34:ce:77:dd:52:1e:69:4f:a7:f7:eb:25:38:7b:0d:30:23:
18:cd:66:9e:35:67:27:ad:a7:aa:b8:05:2d:fe:a8:b5:7b:96:
3a:5a:9b:67:3a:a7:fc:c0:7a:af:73:7e:c8:06:19:45:59:68:
52:ba:6c:ed:65:64:dd:c2:20:d7:d6:67:0b:86:6f:ff:44:c7:
e8:69:3e:5f:37:c9:dd:0d:db:2a:6b:c7:81:27:15:c0:6e:1e:
a9:f3:67:14:b5:97:60:49:6e:2c:ca:7a:92:83:29:f7:50:72:
dc:65:66:98:fd:af:d2:75:08:8b:1a:f7:b2:4a:14:0d:20:e0:
36:0a:fa:2e:be:31:19:b2:1d:b3:7d:1f:4d:92:15:8e:9c:9a:
9d:c6:25:83:48:67:f6:a2:7f:63:37:a4:31:07:0d:b0:e5:bc:
91:5e:f2:82:6e:8e:51:a2:6e:77:21:3d:c7:48:ac:3f:26:06:
1d:39:a5:70:c7:b0:45:2a:68:af:8e:5e:ad:27:85:9d:85:3e:
9e:54:c6:ba:fe:1a:16:c8:03:a9:39:e9:aa:81:c4:87:2f:a7:
19:03:ae:58:f6:80:03:01:77:4f:69:a2:69:7c:0b:da:6f:b4:
01:4f:89:97:89:00:a8:5a:21:3c:57:1d:6b:ef:12:5a:20:f4:
5e:31:0c:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:26 2024 by rpki-client on console-ams.rpki-client.org