Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/16FiHmg9B9fJjnxz2vTtnXjTlCY.roa
File: 16FiHmg9B9fJjnxz2vTtnXjTlCY.roa (raw, json)
Hash identifier: zyAINLt+/fvxXB/mNn4pM8NPbJBzfbs2md9lBtjACiU=
Subject key identifier: D7:A1:62:1E:68:3D:07:D7:C9:8E:7C:73:DA:F4:ED:9D:78:D3:94:26
Certificate issuer: /CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Certificate serial: DFE4A0
Authority key identifier: B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/16FiHmg9B9fJjnxz2vTtnXjTlCY.roa
Signing time: Sat 01 Jan 2022 07:00:34 +0000
ROA not before: Sat 01 Jan 2022 07:00:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 2a10:9f80::/32 maxlen: 32
2a10:9f81::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14673056 (0xdfe4a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Validity
Not Before: Jan 1 07:00:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7a1621e683d07d7c98e7c73daf4ed9d78d39426
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a1:97:26:62:eb:4e:d9:6b:a0:20:73:85:3c:
b7:04:03:2b:a2:18:42:4d:b5:9a:e8:09:b4:32:70:
2c:ee:75:cf:d8:19:a1:7f:de:67:65:24:fb:98:9a:
cd:c7:3c:35:74:00:f5:68:32:5d:f7:45:83:e4:3d:
4c:8b:66:c1:1e:bc:fa:0a:67:0d:d0:58:64:32:1b:
55:48:a4:aa:af:ef:80:ae:66:be:cc:2e:c1:52:d7:
c2:5d:7d:bf:71:cc:18:dc:d8:ae:86:e7:eb:0e:d9:
07:03:1d:f9:a9:d4:be:61:f9:01:35:83:cc:8c:b3:
e7:6e:ff:97:9a:22:fd:fe:35:0f:58:32:76:74:0f:
6f:09:50:c1:6a:50:71:05:14:78:cf:f5:f5:e0:b0:
46:62:a2:d6:5b:89:c2:6b:72:e5:3f:ff:de:2e:9f:
46:4b:89:f6:93:ac:b6:4c:6f:f2:94:03:19:b7:3a:
4e:a6:2a:5c:0c:5f:c5:fa:9d:c9:89:66:4f:e3:ba:
9f:f8:dd:0a:01:a6:c8:d9:a6:08:17:4f:ee:22:18:
5d:cf:90:ca:0a:c3:89:41:1d:05:2e:00:3a:5c:61:
97:12:2d:99:b4:75:c0:e2:d2:8a:55:1e:9b:a0:a7:
30:16:bc:55:e4:76:e5:7c:15:b7:d5:82:4d:16:02:
3f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:A1:62:1E:68:3D:07:D7:C9:8E:7C:73:DA:F4:ED:9D:78:D3:94:26
X509v3 Authority Key Identifier:
keyid:B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/16FiHmg9B9fJjnxz2vTtnXjTlCY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/ssC9r63qeNzjEvhi3fQrG9TE9kU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:9f80::/31
Signature Algorithm: sha256WithRSAEncryption
c7:50:73:46:ea:1a:c8:42:53:49:5c:b8:21:b1:25:65:27:7f:
18:82:b8:40:bd:80:1d:65:e5:9c:ee:54:ba:cd:b2:40:19:90:
0f:b6:96:ff:ec:6c:6c:be:58:75:24:c3:3f:74:38:3d:37:3e:
6f:2f:93:10:28:30:ad:0b:e1:51:b0:c1:93:75:5d:8f:20:58:
72:1b:63:bc:d4:c4:0a:c5:bb:e3:5b:79:39:dd:db:e9:21:02:
52:00:5d:e8:c3:0c:30:bc:15:38:d1:12:ac:25:83:8e:70:8f:
70:e9:67:67:26:cc:7b:2e:36:bf:3e:78:41:0b:16:c1:61:7c:
ad:ac:3a:5b:02:25:e3:7e:fc:ec:10:f8:ae:17:30:da:c9:e4:
17:e3:70:ee:07:5a:f9:28:1c:82:fc:9a:87:28:bb:80:02:fe:
1d:c2:6f:c9:ac:ef:00:ea:61:8d:a5:93:f0:0a:8b:10:93:49:
6a:59:18:af:af:6c:e4:1b:64:69:a6:48:f9:75:f4:8f:26:04:
b2:19:6e:44:b9:fe:8b:7c:b4:55:4f:16:60:26:26:ce:b6:a2:
52:6e:aa:6a:1a:33:99:c0:a3:53:fc:4f:38:66:63:50:90:65:
95:c5:06:a6:2b:13:1e:b7:88:ba:28:0e:be:0e:d6:88:54:3b:
52:b5:72:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:55 2024 by rpki-client on console-fra.rpki-client.org