Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/f33dff-8270-4894-ba8a-bbf2e37438d5/1/VzolMaLeSq2QUmyHFi1k7PdzvOE.roa
File: VzolMaLeSq2QUmyHFi1k7PdzvOE.roa (raw, json)
Hash identifier: KNW8pJqyeXDXAqVpXLB5AAwXheRKm2kQR3dRlOH1MvI=
Subject key identifier: 57:3A:25:31:A2:DE:4A:AD:90:52:6C:87:16:2D:64:EC:F7:73:BC:E1
Certificate issuer: /CN=d7475ecb0f680a56d20f581bbdce521cfb7eb46d
Certificate serial: E9E4B9
Authority key identifier: D7:47:5E:CB:0F:68:0A:56:D2:0F:58:1B:BD:CE:52:1C:FB:7E:B4:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10deyw9oClbSD1gbvc5SHPt-tG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/f33dff-8270-4894-ba8a-bbf2e37438d5/1/VzolMaLeSq2QUmyHFi1k7PdzvOE.roa
Signing time: Sat 01 Jan 2022 09:56:12 +0000
ROA not before: Sat 01 Jan 2022 09:56:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210905
IP address blocks: 2001:67c:81c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15328441 (0xe9e4b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7475ecb0f680a56d20f581bbdce521cfb7eb46d
Validity
Not Before: Jan 1 09:56:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=573a2531a2de4aad90526c87162d64ecf773bce1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:60:0a:2b:cc:7d:cf:cc:0a:d2:ee:f8:a9:38:
13:21:6a:a7:09:45:ac:e1:41:41:3e:aa:ed:fd:49:
1a:7a:9b:ae:8e:a1:83:18:72:88:d6:2b:26:97:a7:
f5:64:8c:4c:63:45:87:cc:25:08:85:26:2a:53:0f:
33:4f:9a:47:58:24:1f:73:a2:6c:88:75:1c:24:5b:
03:43:a5:9d:ae:d9:2e:75:21:62:d3:79:b5:72:04:
2e:6e:e3:54:61:24:c0:81:50:5f:f0:7e:17:c5:10:
48:78:9c:32:2b:c0:02:12:ff:5e:cb:0e:f9:d4:77:
33:7e:7d:5d:92:52:12:f0:a4:fd:27:21:da:5c:c2:
0d:d9:bf:da:22:23:44:9e:08:a6:94:05:90:08:b0:
62:2b:e5:1b:16:d6:4c:ed:85:a1:25:a7:9a:91:e5:
aa:8a:35:ec:61:29:d6:c6:48:64:3d:51:ac:e8:64:
46:0a:81:14:f0:0f:2c:95:17:cf:da:0c:a0:d1:c7:
41:b0:4d:50:0d:d0:9b:84:50:03:ec:db:6a:5f:01:
2d:e9:71:26:0d:79:c1:29:ac:5a:a4:ab:f9:45:32:
8c:a1:3c:3f:58:27:64:0c:07:f7:fc:f8:c8:99:76:
f8:05:59:b8:e9:91:49:12:1d:d1:47:7e:87:fa:04:
11:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:3A:25:31:A2:DE:4A:AD:90:52:6C:87:16:2D:64:EC:F7:73:BC:E1
X509v3 Authority Key Identifier:
keyid:D7:47:5E:CB:0F:68:0A:56:D2:0F:58:1B:BD:CE:52:1C:FB:7E:B4:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10deyw9oClbSD1gbvc5SHPt-tG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/f33dff-8270-4894-ba8a-bbf2e37438d5/1/VzolMaLeSq2QUmyHFi1k7PdzvOE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/f33dff-8270-4894-ba8a-bbf2e37438d5/1/10deyw9oClbSD1gbvc5SHPt-tG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:81c::/48
Signature Algorithm: sha256WithRSAEncryption
3c:ef:3c:ba:a2:cb:a1:4f:d8:55:2e:8f:b9:c6:36:24:4f:cc:
fb:cb:31:c1:da:d2:11:57:e9:4e:87:20:31:26:dc:c6:3b:8e:
b0:a4:87:7f:81:ba:cc:51:c5:95:50:e5:ea:cd:51:dc:f8:15:
8a:26:f5:19:e2:fe:90:ca:c1:fc:ed:47:f5:f7:d7:42:cb:74:
78:cf:59:14:21:bd:1d:c7:0f:98:01:3c:7b:83:9b:8d:8c:b4:
1e:81:2d:91:86:f8:ed:ad:c7:10:87:23:2a:e0:e3:8e:7c:ad:
fb:52:0c:fa:8e:a7:8b:0d:e7:a8:dd:7a:c3:d0:6e:ef:ee:ac:
4b:97:97:0d:6a:07:d4:13:c5:c6:23:b8:9c:87:71:6b:81:bc:
c9:6b:8e:86:a6:e0:85:7e:36:dd:85:3b:87:32:2d:e3:80:8f:
c1:21:5b:a2:30:09:2c:c1:c4:42:0a:a3:6a:5a:d7:b1:d6:b7:
cc:6a:07:ba:2a:85:0b:41:a2:fb:fa:98:67:f5:63:11:bf:9a:
a1:bf:f2:f7:9a:9d:59:2c:21:32:92:c5:42:e5:f1:17:25:98:
18:40:bc:9e:32:0f:a7:bf:94:27:30:36:84:e2:fc:09:dc:4d:
5c:82:f3:dc:fd:4f:03:5c:cf:f5:74:91:1e:6a:14:00:90:2f:
a6:cd:99:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:42 2023 by rpki-client on console-ams.rpki-client.org