Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/vrv5uHvnqQeSd0cNOg76c168_E4.roa
File: vrv5uHvnqQeSd0cNOg76c168_E4.roa (raw, json)
Hash identifier: GqneZOjmP9OWNGIsrZzQ1WMqO/miBef7/HuKgWhrFBE=
Subject key identifier: BE:BB:F9:B8:7B:E7:A9:07:92:77:47:0D:3A:0E:FA:73:5E:BC:FC:4E
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 0603202B
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/vrv5uHvnqQeSd0cNOg76c168_E4.roa
Signing time: Sat 01 Jan 2022 16:01:21 +0000
ROA not before: Sat 01 Jan 2022 16:01:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209291
IP address blocks: 2a0d:f407:1002::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100868139 (0x603202b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jan 1 16:01:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bebbf9b87be7a9079277470d3a0efa735ebcfc4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:6c:b1:b0:78:a3:9b:a0:cb:28:d4:b3:08:d1:
59:28:e5:dd:07:97:bc:35:a1:83:b7:8b:6b:df:58:
c6:d0:ff:46:34:7c:52:ed:6d:87:a5:56:f8:6c:c8:
4e:f0:ea:66:9e:f2:91:df:2f:2e:af:7e:59:70:d2:
e5:01:87:a6:ca:ce:f7:d7:3d:76:51:57:79:bb:39:
b5:fa:95:cb:e8:39:ac:77:12:31:d6:b7:e9:47:ad:
e2:b1:d8:cd:9e:d0:5b:d9:34:3c:95:39:9a:f7:2a:
9e:a9:3b:95:6d:4b:29:6c:16:8d:67:6a:46:82:2b:
d0:5b:cc:83:71:fa:f1:9f:95:47:be:ed:ed:de:96:
ae:84:18:39:4b:01:45:0a:4f:cd:eb:f5:79:74:6d:
2c:87:08:54:26:25:41:b5:30:46:80:1d:50:aa:7f:
46:57:75:c0:27:fb:25:79:07:67:42:19:96:7f:f5:
6f:17:37:b4:0e:40:17:34:d1:25:17:0d:0b:10:5b:
2d:d6:a0:08:05:11:e6:80:7e:52:65:d9:1b:51:1a:
bb:5e:7a:c4:df:97:10:8d:06:0a:5b:0b:2b:ae:91:
e8:b1:90:87:72:93:9d:2a:02:4f:03:2f:83:29:b4:
75:12:5a:3e:d5:84:28:e4:f6:a7:3e:a3:e9:7d:6c:
ef:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:BB:F9:B8:7B:E7:A9:07:92:77:47:0D:3A:0E:FA:73:5E:BC:FC:4E
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/vrv5uHvnqQeSd0cNOg76c168_E4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:f407:1002::/48
Signature Algorithm: sha256WithRSAEncryption
7e:0c:b3:9f:77:d7:08:fb:a3:23:64:89:00:00:28:63:a4:fe:
b5:56:83:2f:6d:08:4e:56:2b:27:c7:b5:d4:d6:89:91:67:c7:
27:89:3c:64:da:7b:b6:6a:44:0d:16:f9:5d:5c:95:9e:4b:66:
2b:d2:61:2b:87:e8:07:47:0b:93:41:42:05:e6:b0:35:c9:0c:
cc:61:44:2e:ea:67:ce:45:af:71:9a:7a:64:3e:50:5c:2c:92:
d9:68:be:b2:8f:a7:af:78:a7:4a:7f:67:c5:95:5e:49:26:7f:
6a:38:69:05:d8:ad:9d:63:cd:dc:57:be:0b:45:8b:42:b8:2d:
10:be:c3:c1:d9:0e:0f:42:e3:c8:61:af:b3:12:81:06:8f:42:
09:67:1a:97:cf:ed:3f:c9:32:76:92:97:7f:6e:74:da:4e:ce:
69:25:28:92:05:e5:74:a9:3a:54:42:2e:7a:ba:11:91:bd:5c:
f5:1c:b3:36:fb:0c:b5:9f:bc:90:95:63:04:48:97:62:50:79:
af:56:dc:f0:37:ac:88:42:22:a4:96:bd:fd:56:eb:b7:52:fb:
7c:39:ad:1a:31:60:fb:01:5a:7d:eb:aa:53:f7:a4:51:9d:02:
5d:a8:45:59:2f:a7:f4:15:c9:55:7b:b3:9a:33:f1:00:47:58:
24:30:ce:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:36 2024 by rpki-client on console-ams.rpki-client.org