Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/1e09a6-695b-402e-9bfc-041312242ff3/1/IuJr8dgVYHKqiW1JluV_ks8kAn4.roa
File: IuJr8dgVYHKqiW1JluV_ks8kAn4.roa (raw, json)
Hash identifier: TF7O85X/yxB+4Z+Nx278zhcW6wQg8pbGgVQni5PPqaE=
Subject key identifier: 22:E2:6B:F1:D8:15:60:72:AA:89:6D:49:96:E5:7F:92:CF:24:02:7E
Certificate issuer: /CN=e15136feff3574ef9b2262de59b06a21908fab3e
Certificate serial: 043731C2
Authority key identifier: E1:51:36:FE:FF:35:74:EF:9B:22:62:DE:59:B0:6A:21:90:8F:AB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4VE2_v81dO-bImLeWbBqIZCPqz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/1e09a6-695b-402e-9bfc-041312242ff3/1/IuJr8dgVYHKqiW1JluV_ks8kAn4.roa
Signing time: Fri 24 Jun 2022 16:31:16 +0000
ROA not before: Fri 24 Jun 2022 16:31:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49801
IP address blocks: 2a10:a440::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70726082 (0x43731c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e15136feff3574ef9b2262de59b06a21908fab3e
Validity
Not Before: Jun 24 16:31:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=22e26bf1d8156072aa896d4996e57f92cf24027e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:4c:97:07:1b:45:f3:de:68:54:0f:7d:b9:a8:
ac:1b:76:bc:b2:f2:23:83:4f:57:75:1c:ad:73:42:
7b:26:d1:58:10:40:2f:34:ce:31:06:2d:40:e6:ac:
11:da:68:15:d1:1d:e2:3f:31:84:ea:52:d3:08:24:
89:42:bc:54:e3:8c:7b:67:62:bf:d0:60:ec:a2:b7:
12:44:a3:42:6c:9b:52:34:e6:09:cc:3f:fc:f1:a6:
5b:fa:6e:42:2b:b0:24:30:d3:dc:c7:6e:76:54:4f:
5b:79:67:44:46:ec:f1:94:6e:3b:a3:e5:31:90:56:
c4:3a:e5:5e:eb:29:db:52:59:bd:19:60:74:56:0d:
bc:c7:a9:5f:62:0f:a4:84:eb:9a:a0:cf:59:92:32:
8c:6a:17:db:e5:6f:2e:cf:3f:bc:7b:4d:64:2f:cf:
62:cd:4b:56:30:cc:39:ff:44:20:18:71:f2:07:a6:
2b:fc:fd:9c:0e:b6:e0:2f:e2:2d:84:b9:e9:01:2b:
86:86:11:8d:ab:41:66:a2:90:85:85:82:30:26:96:
99:82:80:49:d2:f6:81:6a:f8:c0:e4:b9:10:91:b1:
54:02:9a:6c:e6:02:e1:8d:1a:49:fa:68:00:04:41:
0a:b6:d6:8a:ea:56:3e:fc:a3:37:50:a1:f9:92:fa:
92:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:E2:6B:F1:D8:15:60:72:AA:89:6D:49:96:E5:7F:92:CF:24:02:7E
X509v3 Authority Key Identifier:
keyid:E1:51:36:FE:FF:35:74:EF:9B:22:62:DE:59:B0:6A:21:90:8F:AB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4VE2_v81dO-bImLeWbBqIZCPqz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/1e09a6-695b-402e-9bfc-041312242ff3/1/IuJr8dgVYHKqiW1JluV_ks8kAn4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/1e09a6-695b-402e-9bfc-041312242ff3/1/4VE2_v81dO-bImLeWbBqIZCPqz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:a440::/29
Signature Algorithm: sha256WithRSAEncryption
80:93:19:17:eb:5c:6a:46:87:32:f5:fe:aa:52:0b:1d:fa:64:
ae:64:b7:4c:d1:87:2d:05:64:10:82:6d:70:bc:50:51:0d:46:
9a:8e:64:85:d3:ef:ed:61:e9:e0:1c:76:95:94:f9:06:ab:d9:
5c:28:b4:4b:71:cd:a1:31:0c:d9:41:d2:b9:f6:73:a6:a9:d6:
0b:c7:1a:fb:e5:a2:ba:17:1e:17:48:aa:4d:7e:bb:7f:1a:40:
54:94:22:90:6f:cc:d1:87:2d:02:b2:a6:58:31:8e:4b:22:b4:
1d:24:8d:12:3e:4d:33:e3:b9:50:4b:8e:a5:5a:06:02:0c:99:
e9:fb:95:92:55:c6:cc:da:54:04:af:c7:1c:a2:22:6f:7b:63:
5c:47:3e:fc:1d:a9:17:ae:e7:b1:a1:4a:0c:a1:90:72:6b:39:
5e:1f:37:55:05:20:f3:6e:63:ce:ab:5a:e3:a6:35:4c:8d:fa:
31:5d:28:65:7d:ea:d5:42:a6:be:2c:ed:c7:50:ae:b5:68:78:
e6:a7:f7:ac:cd:de:3a:c2:4c:f1:88:d2:76:58:8d:79:8d:4a:
dd:ed:ae:8f:d3:1f:a3:14:9f:05:6f:b6:16:ca:31:00:44:44:
99:f9:36:1c:90:de:df:b8:aa:5d:e8:8c:ac:85:ba:45:9b:d7:
cb:35:7a:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:42 2023 by rpki-client on console-ams.rpki-client.org