Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/vlIt5lKwEhBsGIbTM_Qw4nI2qR8.roa
File: vlIt5lKwEhBsGIbTM_Qw4nI2qR8.roa (raw, json)
Hash identifier: HtSRYm4wUEIaFzKCKd1PW9WdpyCQwz/QEtCtGDUmz4k=
Subject key identifier: BE:52:2D:E6:52:B0:12:10:6C:18:86:D3:33:F4:30:E2:72:36:A9:1F
Certificate issuer: /CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Certificate serial: 02F4B303
Authority key identifier: 37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/vlIt5lKwEhBsGIbTM_Qw4nI2qR8.roa
Signing time: Sat 01 Jan 2022 16:03:36 +0000
ROA not before: Sat 01 Jan 2022 16:03:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136918
IP address blocks: 2a0e:46c4:2200::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49591043 (0x2f4b303)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Validity
Not Before: Jan 1 16:03:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be522de652b012106c1886d333f430e27236a91f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:15:f1:ec:1a:a7:da:07:23:47:4a:96:83:7f:
04:60:7f:f4:0d:05:5a:ef:1e:d0:72:8e:8c:37:42:
47:15:32:ea:e5:de:6c:16:72:aa:b3:1b:5f:f1:a2:
05:b9:ab:6f:d8:46:93:26:6f:df:30:da:37:32:10:
da:4d:b8:56:05:2d:bc:7b:87:80:ed:e1:e5:04:51:
51:85:47:15:66:16:44:28:4f:b0:9a:58:1e:1b:24:
45:3e:f8:81:78:8b:1e:92:bd:cb:4e:b8:e4:71:b0:
ae:31:0a:0a:5f:57:da:38:d7:a1:14:07:97:50:f7:
4b:d1:85:3d:d1:05:f5:0e:96:9c:d4:36:2d:30:4e:
86:0f:1f:cb:5d:72:b5:f1:57:43:36:b7:14:64:5f:
fe:f1:9d:64:3a:22:fe:a9:dc:5b:22:ac:7e:6c:3d:
6b:de:72:da:ef:01:f1:4b:ae:e0:34:f1:27:55:0a:
91:12:99:39:bb:71:1a:d1:37:84:5c:9b:65:d9:b2:
cc:b5:9f:4d:ec:4f:6a:9d:7a:bd:27:42:9f:b0:1e:
f5:c6:f3:f1:07:bf:d6:0d:33:25:c6:b2:52:d8:ff:
d8:10:59:c3:71:77:b4:a2:87:42:bc:41:f0:06:64:
b5:51:70:0b:48:07:1c:0e:60:ab:ba:37:4a:f0:18:
16:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:52:2D:E6:52:B0:12:10:6C:18:86:D3:33:F4:30:E2:72:36:A9:1F
X509v3 Authority Key Identifier:
keyid:37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/vlIt5lKwEhBsGIbTM_Qw4nI2qR8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:46c4:2200::/40
Signature Algorithm: sha256WithRSAEncryption
7b:4f:c0:17:b1:64:38:33:14:a2:2c:1c:dd:e8:53:ee:54:52:
08:a3:3c:20:2a:83:37:97:cd:46:28:c3:07:81:b4:af:e3:d6:
e0:f6:c5:66:34:c2:31:2c:3b:5f:90:16:91:2c:4a:bf:41:dd:
bf:24:75:ca:a5:0f:74:79:6e:98:43:29:a2:2e:12:7b:ee:e7:
84:91:7e:26:e6:97:70:eb:6e:c3:38:81:55:84:08:d8:55:81:
08:3c:e7:21:c0:30:a8:d5:67:cc:40:9a:6a:e5:f3:95:f2:d3:
df:41:86:e0:0f:34:b9:3b:ef:c7:9a:08:2c:ac:8f:f6:23:87:
6f:5f:5f:66:fa:3b:eb:c0:8b:c6:b8:53:1c:cf:87:e5:cd:19:
98:11:1f:79:f7:f5:89:7a:57:4f:e5:72:6b:90:a5:a1:79:f5:
72:3d:34:d1:72:97:a9:c8:fc:b3:45:8d:97:d2:d7:17:f3:43:
2b:bb:dc:3d:f4:28:d2:2a:ce:2e:5f:70:3b:f6:f0:26:64:d5:
5b:51:0a:1f:b9:d1:b4:4a:b3:1c:5f:ca:36:63:7f:9e:43:86:
b3:63:3f:dc:d5:2c:90:79:37:33:66:61:28:2a:3b:68:62:07:
8a:e1:d6:11:f4:ec:27:23:30:b1:c5:cf:d3:78:3e:64:7f:b0:
4e:62:b6:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:40 2024 by rpki-client on console-ams.rpki-client.org