Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/685b5a-fa27-41ec-adf9-9df2f79bef10/1/Vex0toTIQeKOs_Dl3O57dv45VHY.roa
File: Vex0toTIQeKOs_Dl3O57dv45VHY.roa (raw, json)
Hash identifier: LwcTFoV2NgFi4ZTRM1RIRVG8La0fF+3XG9PbQhr+Xxc=
Subject key identifier: 55:EC:74:B6:84:C8:41:E2:8E:B3:F0:E5:DC:EE:7B:76:FE:39:54:76
Certificate issuer: /CN=b249ae69b3a72ec2e6e9adb99090d812a1d29951
Certificate serial: 0F192F31
Authority key identifier: B2:49:AE:69:B3:A7:2E:C2:E6:E9:AD:B9:90:90:D8:12:A1:D2:99:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/skmuabOnLsLm6a25kJDYEqHSmVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/685b5a-fa27-41ec-adf9-9df2f79bef10/1/Vex0toTIQeKOs_Dl3O57dv45VHY.roa
Signing time: Sat 01 Jan 2022 10:58:47 +0000
ROA not before: Sat 01 Jan 2022 10:58:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51531
IP address blocks: 2001:67c:4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 253308721 (0xf192f31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b249ae69b3a72ec2e6e9adb99090d812a1d29951
Validity
Not Before: Jan 1 10:58:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55ec74b684c841e28eb3f0e5dcee7b76fe395476
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c1:36:50:11:61:9d:5e:90:96:00:3c:5b:1c:
9b:ce:1b:ee:94:94:c2:92:79:57:56:f2:d4:59:94:
06:1d:75:9c:ce:ed:98:f8:3d:b4:0d:b8:e2:b2:e1:
fc:e7:e8:eb:88:54:94:85:6c:d9:dc:08:45:df:2a:
ef:b4:40:5e:44:04:17:d2:1c:d9:59:7b:bf:1e:e7:
08:40:b5:04:28:b1:b9:14:e5:75:a9:14:29:9a:4a:
23:0a:c1:00:21:cc:8a:5c:a6:b5:9c:6c:5a:3e:9c:
52:7f:86:ea:96:04:d6:5f:e3:0a:e1:da:8e:d0:ec:
ee:e8:ee:9d:e6:ee:17:cd:b2:ce:49:30:72:7a:b2:
e3:f5:b1:51:a0:6f:da:e0:d3:6d:39:0f:5c:0a:06:
ff:2c:23:22:be:33:8b:de:c0:d8:b7:f5:ff:3a:dd:
9e:ca:71:39:67:ac:9d:27:f8:f0:dc:a0:f2:83:46:
ff:b2:b9:6f:7c:62:eb:94:3a:06:2f:88:8f:a9:74:
0d:2b:64:a0:c8:2f:5b:64:3f:39:05:49:f0:a5:3d:
8b:ff:f2:14:19:47:2e:c0:4a:5c:85:37:c7:79:e6:
2e:31:55:47:a0:55:ee:a9:46:60:19:73:af:f5:30:
0d:83:d2:7b:da:27:c5:7b:25:0c:d3:c1:73:7a:42:
c0:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:EC:74:B6:84:C8:41:E2:8E:B3:F0:E5:DC:EE:7B:76:FE:39:54:76
X509v3 Authority Key Identifier:
keyid:B2:49:AE:69:B3:A7:2E:C2:E6:E9:AD:B9:90:90:D8:12:A1:D2:99:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/skmuabOnLsLm6a25kJDYEqHSmVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/685b5a-fa27-41ec-adf9-9df2f79bef10/1/Vex0toTIQeKOs_Dl3O57dv45VHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/685b5a-fa27-41ec-adf9-9df2f79bef10/1/skmuabOnLsLm6a25kJDYEqHSmVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:4::/48
Signature Algorithm: sha256WithRSAEncryption
02:93:44:5f:10:e6:7e:eb:5d:8b:b5:41:e9:65:a6:f1:ea:d9:
e5:e7:80:bc:d2:9d:1b:13:62:28:04:f5:3a:92:9e:7e:3c:19:
8b:67:ba:c8:da:a3:e8:7f:83:16:4e:a2:47:a2:89:d4:6a:43:
a1:45:68:f1:5b:4c:e2:5f:ac:f1:f2:a5:4f:55:00:cb:92:4e:
e4:db:2f:40:d6:b6:90:e0:9f:1d:cc:30:be:41:36:f6:a7:50:
16:d5:75:5d:b6:9c:fc:ef:1e:5d:70:dc:b3:20:bf:c0:cd:6c:
f0:18:a2:34:f3:e4:99:36:0a:a6:e0:4e:86:31:63:09:12:3d:
b8:4e:f0:14:ff:42:e1:51:37:a3:ca:7d:67:3f:9a:7e:34:01:
a3:12:02:de:5d:e1:98:ab:52:d1:1e:01:3c:63:bd:3f:c9:3c:
91:dd:1e:cb:4e:a5:bc:30:1f:e8:0b:21:f9:f8:76:97:39:fb:
e0:6c:a8:cf:de:af:3f:7d:84:a4:7d:a2:5a:1c:c4:07:eb:ed:
18:c5:36:1e:d4:7a:71:de:0c:c2:8e:70:2b:96:1a:fd:9c:84:
2f:34:fc:dc:76:ef:f9:43:89:a1:1f:53:bd:09:9e:a5:4d:cf:
8c:eb:a9:76:b0:c6:a7:8e:00:ca:e9:dc:46:11:91:0a:0d:5f:
db:4a:a4:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:48 2023 by rpki-client on console-ams.rpki-client.org