Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/cGKqk0tUF2gGH_ugavyzZK5PzyM.roa
File: cGKqk0tUF2gGH_ugavyzZK5PzyM.roa (raw, json)
Hash identifier: G636KKyWc0710vfFDVKFlffodo6PsrTQ0jwAS7QsxdY=
Subject key identifier: 70:62:AA:93:4B:54:17:68:06:1F:FB:A0:6A:FC:B3:64:AE:4F:CF:23
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 018302F83BE1FCA1D15B496BF5054B8BE532
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/cGKqk0tUF2gGH_ugavyzZK5PzyM.roa
Signing time: Sat 03 Sep 2022 10:49:26 +0000
ROA not before: Sat 03 Sep 2022 10:49:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47692
IP address blocks: 2a06:c3c0:5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:02:f8:3b:e1:fc:a1:d1:5b:49:6b:f5:05:4b:8b:e5:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Sep 3 10:49:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7062aa934b541768061ffba06afcb364ae4fcf23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f2:b0:74:3e:77:51:3b:97:37:7e:8c:03:20:
7f:93:81:c5:fe:af:ef:29:08:ff:c0:29:2a:f9:17:
74:6f:12:80:e0:fd:ef:35:d5:b3:d2:f2:e7:de:33:
ba:2b:39:d2:34:8a:32:f5:b0:e4:24:81:e5:17:65:
aa:c1:69:49:24:6a:e2:b2:4e:cc:9e:54:4b:5c:98:
b8:69:5e:21:75:87:ca:1a:f1:60:93:4b:34:3b:75:
b6:8b:0a:29:2a:46:b2:35:b8:1d:cf:4c:86:11:44:
eb:18:b9:d2:11:40:75:ac:94:9a:96:ae:3f:ad:e7:
36:4a:3e:76:88:79:53:24:77:47:af:dd:8d:66:5f:
02:10:17:54:1d:9b:38:aa:59:69:f2:39:c5:96:a3:
1d:96:db:c3:42:c5:a1:a4:26:9b:8b:47:59:01:e3:
83:e9:09:32:42:ce:68:f9:8a:6f:b7:ac:bc:a7:42:
a3:a9:db:eb:30:93:61:46:82:f8:d3:c1:85:82:33:
fb:37:f6:3d:f5:15:ac:b8:55:58:f4:6d:c6:93:47:
5b:dd:07:1c:c1:2b:ec:ac:79:37:c7:b3:ad:d6:8e:
c6:4e:cc:b0:48:98:09:ad:e8:1c:88:f1:3a:49:91:
21:bf:05:7f:b9:51:64:41:25:da:ec:d2:45:03:48:
3f:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:62:AA:93:4B:54:17:68:06:1F:FB:A0:6A:FC:B3:64:AE:4F:CF:23
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/cGKqk0tUF2gGH_ugavyzZK5PzyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:c3c0:5::/48
Signature Algorithm: sha256WithRSAEncryption
3e:4e:2c:61:84:1e:79:08:f5:73:13:fa:e3:ae:7f:15:81:46:
5c:45:d2:27:16:e4:75:2e:2b:72:d4:58:74:9c:04:a5:6f:3a:
3f:d3:77:34:12:3d:a5:32:d3:66:e0:56:3d:50:5a:71:ed:6b:
85:e2:04:d5:c3:55:19:81:84:94:ab:e0:01:46:92:7d:04:8c:
cb:88:da:09:49:7f:0d:27:b6:54:83:27:ae:da:c8:56:39:88:
aa:7d:30:9b:71:cd:5b:e6:e0:54:df:ec:08:cf:bc:0d:1d:cf:
ea:23:ee:49:90:95:38:68:99:ed:03:f7:a2:10:6d:11:dd:99:
fd:da:b9:f2:9f:75:27:ff:aa:09:a5:6a:bc:42:49:45:9c:cb:
b2:5e:2e:5f:93:21:ac:e4:2a:d6:4b:62:00:1d:04:df:fd:d7:
1f:b3:49:22:02:5b:fe:d8:1a:88:97:3a:20:65:6c:93:57:1f:
49:72:d7:9a:d6:95:38:35:18:bf:1f:d9:e0:df:3e:4c:19:ca:
1e:f1:95:ad:5f:e8:22:70:02:fc:93:f0:65:a1:9b:72:b1:eb:
df:de:7b:f0:43:ef:6e:d9:a2:ec:2b:ae:6f:0d:26:9d:e5:be:
c0:ce:73:7a:35:c4:b7:e1:0e:e9:42:a5:33:96:d8:9c:1c:82:
b1:e8:58:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:02 2023 by rpki-client on console-fra.rpki-client.org