Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/fdffe3-010f-4c6a-bd96-718b8c7c9335/1/t520sGjdft4mm0h8Bf1Vr5LtxCM.roa
File: t520sGjdft4mm0h8Bf1Vr5LtxCM.roa (raw, json)
Hash identifier: fKWuj8XJqi+XTWxKUKfKPr3Lk/LQVW5KEx5sflQSjTw=
Subject key identifier: B7:9D:B4:B0:68:DD:7E:DE:26:9B:48:7C:05:FD:55:AF:92:ED:C4:23
Certificate issuer: /CN=56ad9b2c227b413c505813294faadb6dbbc2dd66
Certificate serial: 018438DA1FD6F0A597E19F5E553D35443611
Authority key identifier: 56:AD:9B:2C:22:7B:41:3C:50:58:13:29:4F:AA:DB:6D:BB:C2:DD:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vq2bLCJ7QTxQWBMpT6rbbbvC3WY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/fdffe3-010f-4c6a-bd96-718b8c7c9335/1/t520sGjdft4mm0h8Bf1Vr5LtxCM.roa
Signing time: Wed 02 Nov 2022 14:58:49 +0000
ROA not before: Wed 02 Nov 2022 14:58:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 2a13:14c0::/32 maxlen: 48
2a13:14c1::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:38:da:1f:d6:f0:a5:97:e1:9f:5e:55:3d:35:44:36:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56ad9b2c227b413c505813294faadb6dbbc2dd66
Validity
Not Before: Nov 2 14:58:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b79db4b068dd7ede269b487c05fd55af92edc423
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:f9:77:6f:3d:c1:07:03:a3:05:60:2c:47:82:
25:12:6f:8d:e6:17:f2:9c:59:0d:f8:9f:8b:49:77:
4d:c3:65:0a:7a:5b:00:24:bb:d2:93:25:0d:b8:8d:
49:f4:3c:29:7f:80:4f:41:fd:90:9b:d6:4b:e8:e2:
55:18:89:82:53:74:6f:f3:78:41:61:cd:33:1f:06:
0c:2c:b5:66:4f:83:b2:d3:ea:91:c9:9c:8b:5b:4b:
13:50:93:c2:39:f8:4c:b2:32:48:a4:24:b8:70:01:
2e:9f:f2:c9:e5:49:e1:4e:31:af:60:db:fb:76:3b:
02:71:c2:4d:0d:1f:54:e3:cb:f1:3a:ba:84:9d:11:
ea:66:c2:d8:b6:aa:8f:9b:4e:6b:b8:5b:79:e0:a8:
32:6b:65:15:43:ef:8b:26:a2:e5:e7:14:f4:de:f3:
5f:7d:d7:2d:f5:de:8e:4e:1f:0f:c6:a4:e5:74:37:
d1:08:a5:4f:e0:0f:18:91:93:45:fe:03:62:54:8c:
5f:ad:01:73:94:f1:f4:49:89:4c:a0:ee:ec:2e:42:
59:f0:48:f9:67:bc:f5:c3:ec:b2:2d:cf:e1:4c:a5:
c5:29:7f:f3:5e:de:aa:ca:08:24:c7:ca:d8:52:87:
18:4a:fd:c9:90:e6:36:70:86:51:df:a8:81:d3:23:
8e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:9D:B4:B0:68:DD:7E:DE:26:9B:48:7C:05:FD:55:AF:92:ED:C4:23
X509v3 Authority Key Identifier:
keyid:56:AD:9B:2C:22:7B:41:3C:50:58:13:29:4F:AA:DB:6D:BB:C2:DD:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vq2bLCJ7QTxQWBMpT6rbbbvC3WY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/fdffe3-010f-4c6a-bd96-718b8c7c9335/1/t520sGjdft4mm0h8Bf1Vr5LtxCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/fdffe3-010f-4c6a-bd96-718b8c7c9335/1/Vq2bLCJ7QTxQWBMpT6rbbbvC3WY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:14c0::/31
Signature Algorithm: sha256WithRSAEncryption
a2:af:59:be:e4:ce:9f:be:28:94:e0:77:cd:33:f6:d9:12:91:
d6:81:dd:3e:a5:5b:2d:4b:b3:3a:5d:c8:20:5d:0e:7b:fc:88:
56:af:68:c9:22:3b:bd:96:4c:d8:39:ab:cd:2a:29:a3:e0:9f:
b2:53:e7:40:e1:b7:8b:ab:f6:9f:3d:39:4f:e1:d5:68:0e:c2:
24:c4:76:3f:22:99:47:4e:91:19:60:2c:87:23:40:96:c0:73:
9d:c4:6d:12:4e:bf:69:69:74:48:a9:74:b9:eb:6b:24:b4:46:
35:94:60:54:ef:01:2a:27:6b:52:d3:3e:f1:1e:ce:95:17:48:
96:33:e9:f9:88:ca:2a:e8:e7:a1:6b:65:87:c9:ad:2f:56:2a:
e9:0c:07:4d:a3:db:4c:6f:14:99:f3:39:59:45:3d:64:a4:45:
bc:98:90:12:2a:eb:fc:ce:c7:42:97:ac:ca:d2:e7:e4:e6:14:
07:17:31:3b:73:c9:bd:2b:3d:25:a8:df:9f:49:02:64:c6:97:
f6:a3:19:d1:04:36:0b:bc:c9:50:63:24:6c:c6:53:4a:c2:cd:
c9:10:6b:bc:d9:13:ae:7d:e5:4b:e0:0d:0c:ee:5b:13:05:0c:
54:96:07:6c:de:03:9c:db:18:a0:25:6a:5c:71:55:8a:b0:95:
2a:0f:22:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:09 2023 by rpki-client on console-fra.rpki-client.org