Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/vv1xFo2FXS4khesnAjt41xD7UKw.roa
File: vv1xFo2FXS4khesnAjt41xD7UKw.roa (raw, json)
Hash identifier: nGvoircC9EjfYKAP3JqLvVSbxY312aV/qoNjItwr3B8=
Subject key identifier: BE:FD:71:16:8D:85:5D:2E:24:85:EB:27:02:3B:78:D7:10:FB:50:AC
Certificate issuer: /CN=827603a93bca31b018f511f6d4b0b7546e963362
Certificate serial: 087FD733
Authority key identifier: 82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/vv1xFo2FXS4khesnAjt41xD7UKw.roa
Signing time: Wed 23 Feb 2022 09:56:10 +0000
ROA not before: Wed 23 Feb 2022 09:56:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210107
IP address blocks: 2a10:f40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142595891 (0x87fd733)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827603a93bca31b018f511f6d4b0b7546e963362
Validity
Not Before: Feb 23 09:56:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=befd71168d855d2e2485eb27023b78d710fb50ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:bf:06:8d:e5:9e:9f:24:f7:92:a1:84:bb:14:
86:e3:33:f6:4b:9c:7d:e7:4f:ef:62:4a:84:6a:15:
76:2a:14:0a:cc:49:89:02:28:80:2b:9d:50:41:b4:
4d:08:b6:e6:db:0c:68:75:a5:97:ec:76:08:82:4d:
05:ca:d5:32:96:48:99:21:6d:51:6d:14:f2:6c:1b:
48:f7:99:b9:f9:bb:3c:ef:5a:2e:5a:60:42:92:91:
45:81:6a:17:99:ba:e5:ef:93:fa:aa:c8:fd:0b:a2:
50:26:7e:7e:29:f7:7c:09:16:00:ec:71:5c:a3:aa:
a6:1c:66:5e:87:dd:1e:a1:5c:9e:90:d9:84:67:5e:
c2:bb:85:e4:47:a7:4b:d6:20:67:aa:75:c2:88:65:
07:48:a4:ad:c7:3e:98:38:22:52:74:dc:d1:9d:93:
71:02:2f:14:22:e1:1e:01:58:01:f8:51:9d:80:d6:
be:cb:0b:9a:b1:f2:f7:dd:d8:a9:ac:0e:66:0e:02:
e6:f7:83:57:54:c9:98:c9:91:14:30:65:5a:6a:49:
92:b6:a0:02:7a:66:fc:60:f1:9d:b5:c8:dd:cc:a7:
1a:2b:8e:c2:df:10:1c:3a:52:a5:3b:8c:1d:5d:b8:
c5:52:e3:96:02:11:d8:62:29:c5:a6:cf:1c:e5:c8:
9b:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:FD:71:16:8D:85:5D:2E:24:85:EB:27:02:3B:78:D7:10:FB:50:AC
X509v3 Authority Key Identifier:
keyid:82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/vv1xFo2FXS4khesnAjt41xD7UKw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:f40::/29
Signature Algorithm: sha256WithRSAEncryption
4e:53:04:e0:e4:af:f4:5f:8a:06:7e:e1:98:6e:33:12:b2:d0:
fd:10:71:38:ef:fa:ce:73:15:7c:31:c3:44:c8:3d:34:60:1f:
e5:7c:a9:24:2f:c2:23:aa:93:f7:dd:ba:dd:c6:23:12:e5:44:
b6:d0:2d:9e:e9:f3:06:c2:33:3b:3f:73:d9:ec:0c:3c:92:56:
bd:81:8c:08:4e:04:6e:bc:8f:0c:4e:86:05:17:41:c3:7d:b6:
c1:ab:57:e0:d0:28:10:2f:51:db:8e:99:81:66:84:b1:22:32:
03:57:b9:de:7d:75:66:3c:b4:ae:c2:87:0f:93:8b:86:e3:8c:
61:85:cc:b6:57:f9:14:c2:ee:35:56:7d:57:84:5f:43:20:aa:
52:55:6e:b2:5a:12:e4:56:17:8a:ca:91:d7:b0:fd:5f:69:1d:
cc:48:a4:f1:4b:ac:a7:1a:18:de:1b:cb:5b:b8:17:44:1e:9e:
37:32:43:28:46:12:2f:ba:5e:6a:c6:66:54:c6:fa:1b:93:dc:
ca:75:b5:eb:50:40:aa:7f:e8:58:25:ec:b3:5f:a8:6e:eb:ea:
bb:4e:74:23:ec:4b:bd:e3:31:87:d0:42:70:2a:d5:fa:0f:ef:
6c:8d:5c:33:ef:0d:5b:91:d2:5a:07:1a:67:1b:47:31:75:17:
fa:40:c8:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:57 2023 by rpki-client on console-fra.rpki-client.org