Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/yRpkF1qj8vka7xhWuJZzRrR9KWI.roa
File: yRpkF1qj8vka7xhWuJZzRrR9KWI.roa (raw, json)
Hash identifier: 97HPSPXp3ruhuwVdiMChE3UPKaRkpvTPgKy9AJE56Xo=
Subject key identifier: C9:1A:64:17:5A:A3:F2:F9:1A:EF:18:56:B8:96:73:46:B4:7D:29:62
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018320AB0B9A15DDE70AB1DE016CE0D9A09B
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/yRpkF1qj8vka7xhWuJZzRrR9KWI.roa
Signing time: Fri 09 Sep 2022 05:13:43 +0000
ROA not before: Fri 09 Sep 2022 05:13:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208254
IP address blocks: 2a0e:bac0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:20:ab:0b:9a:15:dd:e7:0a:b1:de:01:6c:e0:d9:a0:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Sep 9 05:13:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c91a64175aa3f2f91aef1856b8967346b47d2962
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ca:d1:2b:91:15:f4:71:92:e1:03:c1:6b:b1:
d4:f1:22:a4:10:51:54:80:11:d7:56:d2:87:db:9d:
05:f8:7f:28:6c:b9:e6:00:71:10:11:0a:63:b7:e7:
aa:2b:e2:3a:85:21:52:54:a8:b6:f1:a7:57:43:ba:
cc:49:9e:ae:e8:7c:27:cf:89:0b:19:4d:45:cf:d2:
57:e0:e5:0a:aa:ef:07:e6:5c:b6:39:9a:62:9d:4f:
af:3f:f5:6b:63:bb:61:b7:8f:36:ea:ab:22:e9:24:
7d:87:8d:5c:75:3e:9e:e9:c4:bf:f2:c0:93:f4:7b:
28:1c:88:6e:24:d6:30:de:7a:ac:b6:72:16:61:3b:
55:a2:bb:b8:f5:5e:92:67:0c:96:68:d3:7a:e1:d4:
08:a9:c1:2c:cf:fe:d3:14:ed:a4:87:3c:7c:90:71:
d8:b8:43:6f:a9:58:7a:21:d4:f0:de:48:3e:cd:2f:
13:00:83:b3:03:b4:48:18:93:7e:60:8c:a5:30:b4:
4d:1e:d2:d5:83:2c:25:22:0d:db:57:3e:d4:08:10:
e0:79:72:c3:32:80:f2:37:52:36:0b:2b:20:53:eb:
d0:5d:70:80:28:02:82:c6:36:64:66:0f:d6:34:6c:
2e:65:92:d3:c4:87:8f:58:7f:e0:10:07:91:18:e5:
7e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:1A:64:17:5A:A3:F2:F9:1A:EF:18:56:B8:96:73:46:B4:7D:29:62
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/yRpkF1qj8vka7xhWuJZzRrR9KWI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:bac0::/29
Signature Algorithm: sha256WithRSAEncryption
bf:97:02:82:3d:a3:03:14:dc:9d:7b:17:ff:a5:79:a2:2a:47:
93:90:f1:94:31:11:2a:43:56:fd:70:ba:b8:2e:5c:62:22:77:
b3:c6:1b:73:37:21:d9:b6:74:79:e9:83:b1:54:70:fb:af:59:
ad:60:af:c9:1d:fb:48:4a:6d:38:4d:1d:ac:95:66:4f:7b:6e:
fe:f2:28:31:c8:1c:d2:7c:fb:a0:d8:aa:61:ce:bb:a8:61:6a:
2b:99:66:c9:c4:05:2e:9e:6b:90:e9:0e:30:b1:3c:ca:e1:55:
28:b3:aa:7a:df:80:a2:5e:be:fc:37:f7:be:a8:db:c6:cb:56:
14:0a:7a:13:65:09:fd:00:ba:9c:f2:2b:41:e2:3c:5a:d0:db:
aa:b3:fc:6d:81:c0:fb:c9:94:d9:d8:ca:6d:31:01:1e:d7:70:
6b:f7:4c:1c:4b:e7:e7:b6:15:f2:48:a9:19:b4:f6:6b:e4:9a:
1f:97:48:e5:61:58:1e:94:9a:02:9d:b5:09:e6:2d:aa:f4:b4:
0d:9b:88:fa:72:7d:f5:78:11:46:8e:d7:a8:3a:42:16:28:3a:
66:8f:86:20:28:70:65:0b:b9:fd:5e:b5:a2:1d:a6:41:dd:09:
8b:54:c5:40:18:e2:34:c2:34:2d:02:2b:2c:15:0b:93:e6:d2:
dd:99:ca:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:33 2023 by rpki-client on console-fra.rpki-client.org