Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/hLDDWskcEgEj8fF4Auac9ZS0Wc0.roa
File: hLDDWskcEgEj8fF4Auac9ZS0Wc0.roa (raw, json)
Hash identifier: +rGat9CLh+c6w03ia+DXZCd5a2HJN7tgerL7XewTxjQ=
Subject key identifier: 84:B0:C3:5A:C9:1C:12:01:23:F1:F1:78:02:E6:9C:F5:94:B4:59:CD
Certificate issuer: /CN=5659b0ba8407be11cfc911bd31ed140cd1c6046c
Certificate serial: 09FDD4C4
Authority key identifier: 56:59:B0:BA:84:07:BE:11:CF:C9:11:BD:31:ED:14:0C:D1:C6:04:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VlmwuoQHvhHPyRG9Me0UDNHGBGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/hLDDWskcEgEj8fF4Auac9ZS0Wc0.roa
Signing time: Sat 01 Jan 2022 14:02:49 +0000
ROA not before: Sat 01 Jan 2022 14:02:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48878
IP address blocks: 2a10:fa81:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167630020 (0x9fdd4c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5659b0ba8407be11cfc911bd31ed140cd1c6046c
Validity
Not Before: Jan 1 14:02:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=84b0c35ac91c120123f1f17802e69cf594b459cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:b6:6a:32:9b:00:b5:41:66:c8:a2:51:de:3c:
5d:f9:41:28:34:12:78:2c:2f:8e:14:6a:ae:d7:09:
84:25:60:b2:42:2d:19:8f:c2:30:8a:be:91:b7:39:
ad:25:88:a8:a9:83:1c:34:68:d6:e5:49:b1:7d:2a:
10:a7:60:44:62:2c:22:81:fd:bc:f9:35:2e:25:d6:
63:48:37:04:82:ef:e3:27:44:8f:fc:f4:e9:83:d7:
9e:7e:d5:b5:37:3a:92:e5:52:bc:38:1a:97:d5:48:
c3:63:56:39:bb:61:5a:af:8e:4b:f8:1d:04:8a:db:
e5:a6:b7:48:03:53:e1:a8:0c:8f:73:4c:dc:bb:49:
40:d2:26:b5:86:1b:2f:47:1e:c8:05:8f:f7:2e:64:
bd:8f:1f:b5:0b:37:d4:9b:9e:02:08:ac:44:8d:34:
dd:76:d7:bd:68:aa:0b:b9:78:6b:2d:2a:d5:cb:9d:
80:1d:fc:4b:c8:02:f3:51:46:ce:83:59:ee:52:e5:
e2:f9:11:4e:a1:1d:c8:e2:fb:f5:c0:1e:4f:af:18:
40:15:3c:5d:51:65:4e:ad:bb:a4:97:5c:26:32:b4:
bf:77:de:e9:87:e8:1b:ce:f4:8a:5d:e9:9c:78:99:
59:15:3d:65:66:25:de:db:8e:3e:7c:04:78:33:81:
0f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:B0:C3:5A:C9:1C:12:01:23:F1:F1:78:02:E6:9C:F5:94:B4:59:CD
X509v3 Authority Key Identifier:
keyid:56:59:B0:BA:84:07:BE:11:CF:C9:11:BD:31:ED:14:0C:D1:C6:04:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VlmwuoQHvhHPyRG9Me0UDNHGBGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/hLDDWskcEgEj8fF4Auac9ZS0Wc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/VlmwuoQHvhHPyRG9Me0UDNHGBGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:fa81:1::/48
Signature Algorithm: sha256WithRSAEncryption
1d:a6:58:b6:eb:5e:fe:b2:0b:22:c7:f2:be:56:11:68:bd:e4:
bc:0a:f3:3a:a6:9a:48:1a:0e:9f:05:50:f2:c1:e3:6a:d3:cb:
8d:81:42:17:0c:86:56:86:88:8f:2c:8e:a9:a1:62:ef:4f:bd:
11:a1:76:2b:bf:e0:0c:14:e6:10:38:f1:8f:eb:f8:3f:71:46:
9b:c7:28:8a:55:4d:b8:dc:ba:c2:10:ca:fd:53:0a:86:fe:6c:
5e:56:09:af:52:cb:de:9a:34:07:87:d1:82:4c:01:8c:fe:29:
76:29:80:cb:aa:34:dc:39:09:c1:8a:fe:b3:d1:d1:b0:f0:3e:
94:0e:d9:b8:6b:94:28:43:6d:8d:f6:4e:0f:51:07:6d:ea:87:
5e:42:c9:dd:a2:a6:fe:aa:65:66:2b:50:15:f4:f1:3c:d3:e6:
a4:09:82:75:4b:9f:98:8b:4f:7e:39:81:ec:83:86:cb:48:49:
f5:33:ec:e6:7a:d3:e2:5a:aa:a7:25:a3:e4:91:95:d5:29:1e:
28:85:d6:4b:91:f0:0f:b5:a8:64:42:4f:c5:7f:a9:8e:ad:12:
0c:10:31:ef:ef:cf:19:d0:f5:b2:1e:bf:cb:5d:91:8f:1c:78:
42:88:6b:80:e3:a1:0b:ff:21:0f:99:33:21:f6:1e:03:e4:fb:
da:f1:f9:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:00 2024 by rpki-client on console-ams.rpki-client.org