Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/8ad2e0-e3f0-4abe-bcb6-2f5c74c69ae1/1/tdT5lGsGEgHO0tEzGZ9y024DXWc.roa
File: tdT5lGsGEgHO0tEzGZ9y024DXWc.roa (raw, json)
Hash identifier: E6AYQUoWWGZY7rUUPmCmXLLcnVfhDhhrAz8+WWR2hc4=
Subject key identifier: B5:D4:F9:94:6B:06:12:01:CE:D2:D1:33:19:9F:72:D3:6E:03:5D:67
Certificate issuer: /CN=abd87bbef5943546b2a83d31ec2b99ad883d51d7
Certificate serial: 0185318D061B4BA90A7FD30CD651E7191564
Authority key identifier: AB:D8:7B:BE:F5:94:35:46:B2:A8:3D:31:EC:2B:99:AD:88:3D:51:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q9h7vvWUNUayqD0x7CuZrYg9Udc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/8ad2e0-e3f0-4abe-bcb6-2f5c74c69ae1/1/tdT5lGsGEgHO0tEzGZ9y024DXWc.roa
Signing time: Tue 20 Dec 2022 22:00:03 +0000
ROA not before: Tue 20 Dec 2022 22:00:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204333
IP address blocks: 2a13:5681::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:31:8d:06:1b:4b:a9:0a:7f:d3:0c:d6:51:e7:19:15:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abd87bbef5943546b2a83d31ec2b99ad883d51d7
Validity
Not Before: Dec 20 22:00:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5d4f9946b061201ced2d133199f72d36e035d67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:13:93:5f:43:4d:7e:e8:37:8c:fa:33:bd:ca:
fb:6e:bb:88:e5:69:ee:9c:af:08:05:d3:69:5f:c8:
dc:6e:39:14:dc:e6:40:a3:e4:58:04:91:b8:ba:a3:
54:f8:90:69:f9:00:00:e2:f3:38:de:81:76:a2:98:
6a:df:ef:c9:54:ac:b1:8e:ec:bb:c5:72:12:7c:1d:
49:5a:fc:91:46:1d:14:23:e0:1c:d8:38:f7:ef:65:
a6:ee:5a:ce:5b:77:88:25:9e:83:ac:df:7e:00:30:
c7:e2:c8:e7:27:86:c2:6e:cb:45:96:07:cb:94:71:
7c:6d:58:7a:6a:d0:e6:08:0c:f1:81:68:5b:c8:6a:
d8:56:09:72:73:01:82:02:e1:33:2d:20:92:82:5e:
54:8e:59:67:3f:81:f8:e3:ee:bf:b4:71:38:18:50:
f7:c4:9c:c7:2d:18:94:bd:97:b7:f3:b1:18:54:a1:
3b:dc:9e:28:26:29:54:26:c9:c0:ac:25:df:ad:93:
c8:57:7e:18:6d:3f:37:df:91:39:e0:e5:9f:4b:ba:
03:e3:3a:a8:17:c8:40:12:40:d7:2c:97:4f:c9:a0:
2f:3c:71:5a:d0:96:b6:17:8d:3f:90:47:ae:4f:61:
b5:a2:c7:36:b7:02:a0:13:59:e3:8f:3b:1c:e6:c1:
bc:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:D4:F9:94:6B:06:12:01:CE:D2:D1:33:19:9F:72:D3:6E:03:5D:67
X509v3 Authority Key Identifier:
keyid:AB:D8:7B:BE:F5:94:35:46:B2:A8:3D:31:EC:2B:99:AD:88:3D:51:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q9h7vvWUNUayqD0x7CuZrYg9Udc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8ad2e0-e3f0-4abe-bcb6-2f5c74c69ae1/1/tdT5lGsGEgHO0tEzGZ9y024DXWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8ad2e0-e3f0-4abe-bcb6-2f5c74c69ae1/1/q9h7vvWUNUayqD0x7CuZrYg9Udc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:5681::/40
Signature Algorithm: sha256WithRSAEncryption
2b:10:59:77:bc:50:0b:9f:42:33:0e:a5:a5:3d:3a:d5:c0:79:
bc:88:40:da:28:74:bc:dd:5f:52:9f:6a:ef:70:13:2f:f4:fa:
ed:d2:6e:61:f9:cb:fd:43:20:b2:a2:54:eb:eb:77:2f:ce:15:
c7:1c:35:a5:b1:b0:cd:50:1f:66:fc:9e:0c:d2:39:32:30:e8:
3b:8d:9e:02:7a:2c:87:f6:3c:32:6e:68:a3:6b:44:b2:f8:64:
ef:4a:a8:c7:7a:59:5e:23:c2:d2:8e:92:5b:6a:62:7b:ee:fa:
09:fc:66:e5:43:00:4e:aa:14:23:00:16:51:06:62:db:6a:87:
7f:cd:30:d8:eb:19:b0:13:98:83:2a:bc:9e:91:4d:50:d2:3a:
32:1a:3c:30:0b:4c:52:88:64:be:00:78:8c:aa:3d:f5:40:eb:
7c:ef:57:80:ce:45:0f:57:32:cc:b1:7f:7d:4b:ab:b3:a7:b9:
3f:1a:46:5f:50:79:a3:13:e8:55:02:79:7c:b1:67:54:02:65:
01:05:90:99:0a:7c:24:2c:aa:32:ce:b2:2b:22:74:4e:35:cd:
37:74:f0:f8:4a:63:d8:70:a2:0e:a2:9d:58:26:ee:c1:79:ca:
fb:b1:a3:55:d1:bb:9a:ef:40:15:8e:07:2c:e3:9f:80:87:18:
51:3e:35:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:49 2024 by rpki-client on console-ams.rpki-client.org