Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/1e09a6-695b-402e-9bfc-041312242ff3/1/LKnMwENO0eX0EsKZxY0BvGZZIUw.roa
File: LKnMwENO0eX0EsKZxY0BvGZZIUw.roa (raw, json)
Hash identifier: r+yyy3TzgghgrFHN5e2D3/lpyeiHqpIkyCd6ZZ49T7w=
Subject key identifier: 2C:A9:CC:C0:43:4E:D1:E5:F4:12:C2:99:C5:8D:01:BC:66:59:21:4C
Certificate issuer: /CN=e15136feff3574ef9b2262de59b06a21908fab3e
Certificate serial: 02ACFD66
Authority key identifier: E1:51:36:FE:FF:35:74:EF:9B:22:62:DE:59:B0:6A:21:90:8F:AB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4VE2_v81dO-bImLeWbBqIZCPqz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/1e09a6-695b-402e-9bfc-041312242ff3/1/LKnMwENO0eX0EsKZxY0BvGZZIUw.roa
Signing time: Sat 01 Jan 2022 04:58:55 +0000
ROA not before: Sat 01 Jan 2022 04:58:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49801
IP address blocks: 2a10:a440::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44891494 (0x2acfd66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e15136feff3574ef9b2262de59b06a21908fab3e
Validity
Not Before: Jan 1 04:58:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ca9ccc0434ed1e5f412c299c58d01bc6659214c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1f:54:01:fb:e4:07:8c:e9:39:2d:51:ce:61:
a2:f6:e5:8d:d8:45:1e:35:59:ce:d4:e1:9b:96:23:
a7:ea:2d:2e:38:9a:56:71:0b:42:14:83:f2:c1:ac:
55:12:a2:3b:86:e8:f7:c0:f1:af:9a:94:f1:dd:07:
62:15:41:b6:7a:3b:21:d6:75:11:74:88:2d:19:0e:
54:de:b4:3a:f3:e3:96:32:45:3d:11:52:b1:0f:d5:
f8:7e:d0:79:6a:4a:0a:d1:36:4a:bf:68:be:b0:7b:
a7:77:ae:f8:6c:36:50:70:83:44:c3:cb:d8:b8:41:
e7:32:f6:e7:9d:64:64:ee:5b:44:48:92:b5:4c:25:
fb:e1:c0:aa:35:c1:bf:88:c5:49:49:c4:c9:cd:56:
20:04:ee:94:f1:3d:db:ee:14:b0:03:ed:24:a4:0a:
39:9c:82:39:2d:c7:30:8d:bc:da:40:80:9c:cc:c8:
59:ca:4d:25:6c:3d:57:f0:99:3f:7e:01:f3:e1:4b:
72:2d:0d:ca:b1:6a:2e:5b:b8:5e:51:15:f2:ec:7b:
3a:dc:7d:5f:83:c1:06:de:38:f7:4f:43:9f:d9:ce:
4e:f3:aa:f1:f2:f3:55:6f:4a:0f:6d:90:d1:f3:8e:
9b:e9:5b:1f:3c:1b:24:5f:91:91:aa:6a:c4:4a:09:
b9:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:A9:CC:C0:43:4E:D1:E5:F4:12:C2:99:C5:8D:01:BC:66:59:21:4C
X509v3 Authority Key Identifier:
keyid:E1:51:36:FE:FF:35:74:EF:9B:22:62:DE:59:B0:6A:21:90:8F:AB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4VE2_v81dO-bImLeWbBqIZCPqz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/1e09a6-695b-402e-9bfc-041312242ff3/1/LKnMwENO0eX0EsKZxY0BvGZZIUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/1e09a6-695b-402e-9bfc-041312242ff3/1/4VE2_v81dO-bImLeWbBqIZCPqz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:a440::/29
Signature Algorithm: sha256WithRSAEncryption
65:c7:29:80:90:2d:00:1b:fb:43:f0:77:46:7c:99:74:cc:e2:
44:11:ce:2c:2f:bb:2f:db:1a:1f:b8:41:96:72:da:72:64:df:
c3:4f:57:a2:2c:26:61:0a:0e:48:83:74:17:ca:c9:96:6f:72:
8f:a0:96:93:ab:9f:1b:5b:83:b5:8f:9b:98:62:43:0c:83:a7:
71:3c:51:8d:8f:c8:86:92:01:f7:1b:74:ad:04:af:44:9b:4b:
60:a6:06:14:53:b6:28:42:9d:83:f5:40:c6:e8:e2:ba:53:a8:
dc:3e:64:4a:82:8c:17:70:58:00:b2:e5:bf:30:14:5f:75:cf:
1f:26:84:ac:e0:ea:85:4e:9d:e6:f7:ff:8a:6b:60:b7:70:55:
ac:df:dc:4c:a1:23:2d:c7:60:c1:2a:15:f6:0a:49:8d:7c:97:
59:f3:de:7f:c6:a1:3c:ce:22:1e:34:3e:77:1f:89:32:b4:f4:
54:13:24:3f:48:f4:0b:7f:91:eb:26:43:0b:9a:2f:f4:11:88:
bc:84:3b:4a:f2:52:8d:63:4c:25:bb:28:08:ed:24:fd:a9:af:
ef:ef:61:12:39:91:d0:ae:a3:01:34:ea:32:62:34:0a:a2:83:
80:76:80:a5:d1:ce:e7:91:a1:2a:88:40:e0:e4:46:b9:89:f4:
17:a1:fd:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:49 2023 by rpki-client on console-fra.rpki-client.org