Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/b13b55-1288-45e6-8876-a70db58280fc/1/N10qNum0qiZlnpu1fn2r9qCjHfo.roa
File: N10qNum0qiZlnpu1fn2r9qCjHfo.roa (raw, json)
Hash identifier: izzgL5m35yKhfcV+Hgr1QhusvcGYEQ4hLZlLTHWox1c=
Subject key identifier: 37:5D:2A:36:E9:B4:AA:26:65:9E:9B:B5:7E:7D:AB:F6:A0:A3:1D:FA
Certificate issuer: /CN=2672b9fb546b365e323230dcea9ba8c9fbedfeb8
Certificate serial: 0184CEAE00F27C23FA003845621EF5E5C0DF
Authority key identifier: 26:72:B9:FB:54:6B:36:5E:32:32:30:DC:EA:9B:A8:C9:FB:ED:FE:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JnK5-1RrNl4yMjDc6puoyfvt_rg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/b13b55-1288-45e6-8876-a70db58280fc/1/N10qNum0qiZlnpu1fn2r9qCjHfo.roa
Signing time: Thu 01 Dec 2022 17:13:40 +0000
ROA not before: Thu 01 Dec 2022 17:13:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56971
IP address blocks: 2a13:7c00::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ce:ae:00:f2:7c:23:fa:00:38:45:62:1e:f5:e5:c0:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2672b9fb546b365e323230dcea9ba8c9fbedfeb8
Validity
Not Before: Dec 1 17:13:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=375d2a36e9b4aa26659e9bb57e7dabf6a0a31dfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:c4:94:b9:af:f0:53:95:5a:cf:0a:86:ee:b0:
72:41:ab:32:94:ba:b6:24:b7:bf:0b:38:fd:dc:f9:
43:48:a5:31:a0:7b:f0:a4:82:43:e6:10:5d:f5:c8:
5a:b2:b1:74:8d:1f:85:fa:6a:e4:d5:86:e7:77:21:
95:cb:ed:61:7e:c1:e4:a2:a5:cf:a7:1c:48:ca:f5:
45:87:16:07:fa:d0:df:e1:eb:cf:eb:4c:db:f0:78:
28:27:d7:30:85:35:33:7b:86:13:61:05:e5:86:31:
80:44:48:ff:30:aa:54:54:1d:a8:5a:18:e6:be:53:
86:8c:9e:46:f7:86:58:a4:7a:1e:fc:ae:13:68:2a:
83:19:67:fc:ab:2c:ec:55:e6:a7:54:98:a5:e4:46:
7e:aa:fd:ab:25:16:55:b8:a7:dd:6d:ab:07:6b:5a:
e3:96:8c:5f:e4:d8:af:5f:54:25:f3:ac:81:8e:64:
8c:c5:49:c9:60:19:c7:98:fb:df:37:83:f7:2b:5c:
ba:ae:c2:94:70:83:f1:46:3a:59:ef:fc:86:5f:59:
8f:56:13:99:55:3d:bb:96:f8:7b:a6:bc:e6:ed:8b:
72:7f:bf:19:d6:83:67:ed:8c:ca:6c:56:21:a4:71:
61:f0:e1:7a:fd:c0:dc:21:35:85:3b:40:a7:2a:f3:
91:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:5D:2A:36:E9:B4:AA:26:65:9E:9B:B5:7E:7D:AB:F6:A0:A3:1D:FA
X509v3 Authority Key Identifier:
keyid:26:72:B9:FB:54:6B:36:5E:32:32:30:DC:EA:9B:A8:C9:FB:ED:FE:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JnK5-1RrNl4yMjDc6puoyfvt_rg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/b13b55-1288-45e6-8876-a70db58280fc/1/N10qNum0qiZlnpu1fn2r9qCjHfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/b13b55-1288-45e6-8876-a70db58280fc/1/JnK5-1RrNl4yMjDc6puoyfvt_rg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:7c00::/32
Signature Algorithm: sha256WithRSAEncryption
15:5f:d5:be:f2:e2:4e:23:c4:43:87:2a:67:be:ac:10:79:a9:
be:90:43:db:49:9d:2d:67:2d:53:bc:28:14:93:66:82:73:c8:
5a:ff:db:7d:d5:f8:a9:c8:11:38:94:d2:80:80:23:8e:0f:23:
7b:24:d9:26:82:9a:85:e8:6c:85:ed:2f:fe:7e:de:34:05:be:
2f:e2:81:ef:13:c5:6c:6b:0c:05:c3:35:d1:5f:20:d0:f9:92:
09:fc:6a:bf:f9:54:a1:4f:77:2e:0d:c2:1b:70:93:3c:1c:5a:
86:e6:3f:ad:53:82:53:3c:c1:02:f0:ed:04:cf:d5:04:c0:63:
65:ee:ad:d1:64:17:57:f8:d8:55:97:33:02:d8:8c:a2:14:38:
b6:db:93:69:a2:ff:39:8e:e6:bf:56:38:b5:12:4a:5b:54:74:
bc:8c:e1:43:0c:b6:45:b7:12:71:47:34:4f:d2:59:21:b5:34:
93:4d:db:06:8d:e1:e1:9f:68:15:10:55:33:9a:bc:bd:8b:89:
be:cb:55:30:a6:7e:63:25:00:3e:c3:f9:5b:be:be:b1:be:82:
b6:c2:2b:65:56:66:ac:eb:3a:75:6e:d8:0a:ee:ee:40:63:14:
97:d7:af:36:f8:01:3f:88:ce:c1:3a:2a:f9:a8:19:43:56:34:
ad:67:1b:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:57 2023 by rpki-client on console.sobornost.net