Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/AydniTqy_8UvUd-9A2pcOIiL2RA.roa
File: AydniTqy_8UvUd-9A2pcOIiL2RA.roa (raw, json)
Hash identifier: zszrHhj+kyp7wYpWxEDMnVhUs0jnfT3GRhWafLQ4loA=
Subject key identifier: 03:27:67:89:3A:B2:FF:C5:2F:51:DF:BD:03:6A:5C:38:88:8B:D9:10
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 19C98303
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/AydniTqy_8UvUd-9A2pcOIiL2RA.roa
Signing time: Sat 01 Jan 2022 15:56:36 +0000
ROA not before: Sat 01 Jan 2022 15:56:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5511
IP address blocks: 2a07:e343::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 432636675 (0x19c98303)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 15:56:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=032767893ab2ffc52f51dfbd036a5c38888bd910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:7e:26:94:b5:4e:8e:29:5a:2f:6d:21:a8:72:
cd:ee:0b:fc:5d:97:d2:7a:91:32:f0:4f:ff:26:9f:
70:83:0b:8d:24:11:4c:cc:51:0a:5d:97:5d:50:75:
6a:70:3f:40:ab:05:2b:36:3e:2c:18:8c:d6:b0:de:
9a:3e:a8:4e:f4:a6:ae:ac:18:36:9b:5b:be:c4:8f:
f9:c9:6a:48:b9:cd:f8:20:c6:89:c8:58:cb:0a:46:
56:90:12:35:c3:0c:13:8f:29:8f:30:8d:e4:d1:43:
3e:19:a4:c8:8f:ec:fd:90:10:29:1b:bd:cb:c1:7a:
f7:d4:78:8b:0c:2e:a0:72:ea:f1:65:0b:e6:78:e8:
0b:87:c0:fb:d2:ba:e0:4f:34:a1:b3:a2:27:f6:96:
50:05:e8:10:06:cb:60:c2:23:7c:9c:51:86:b9:be:
f4:e2:31:b8:aa:fb:e7:3e:d1:08:7c:0c:c3:87:33:
a6:19:0b:ec:db:21:d8:84:e0:f4:b6:18:f1:3d:ef:
2b:dd:59:b7:df:0b:ef:3e:1b:4b:86:1f:2f:9a:d4:
49:44:70:a5:10:a6:4c:b9:bc:47:54:01:d2:51:5d:
52:41:9e:d5:d3:08:b4:ed:bb:2c:b9:1e:04:20:1c:
59:ce:97:ec:5b:da:1e:37:7f:5f:ad:78:e5:d0:b4:
ac:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:27:67:89:3A:B2:FF:C5:2F:51:DF:BD:03:6A:5C:38:88:8B:D9:10
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/AydniTqy_8UvUd-9A2pcOIiL2RA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:e343::/32
Signature Algorithm: sha256WithRSAEncryption
b5:79:f8:05:22:53:e4:96:3e:4d:b4:4a:18:08:90:18:f1:61:
f6:cb:e8:70:74:f4:49:6b:2f:74:5f:51:4d:70:01:cb:10:37:
f0:b0:80:62:3d:59:44:fd:55:7a:10:3a:00:c3:19:e4:14:db:
52:40:32:c0:83:0b:4b:fa:1d:6b:fa:c8:0c:d5:b0:85:95:b5:
50:cf:be:e1:89:97:5e:90:98:20:4b:dd:b3:8a:cb:0c:73:e1:
7f:13:10:d0:d5:7e:51:68:6b:06:60:7d:15:db:f9:0a:2d:00:
45:40:1a:dc:db:c5:c7:2b:20:1b:1f:19:47:58:32:49:d5:fa:
03:0c:08:ad:6b:3b:43:b8:c0:f5:cb:6d:d7:0e:1f:76:0a:ad:
a6:65:12:26:f0:b3:23:90:af:04:02:bc:16:67:16:c1:b3:46:
a3:f6:b3:1d:ce:80:a5:a4:e8:ae:ef:5b:33:45:0f:0e:71:d3:
bf:c7:43:33:22:95:fb:d0:92:7b:8d:7c:0f:4e:cc:4d:63:56:
da:32:72:cd:a4:28:68:d2:de:e5:c4:82:a5:98:47:77:b7:73:
d6:36:21:c9:bf:ef:0e:8c:b7:6a:50:52:04:03:62:73:a1:38:
d5:b9:f7:c7:13:ca:4b:86:bc:06:73:6e:12:96:48:64:6b:90:
de:ba:8e:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:32 2023 by rpki-client on console-fra.rpki-client.org