Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/7RgV6NC2VU7qI5dhwS8zzExDs0M.roa
File: 7RgV6NC2VU7qI5dhwS8zzExDs0M.roa (raw, json)
Hash identifier: TFx50F/sIRnJoIFZUtW5/mRtHCK6DJ7LZ4VwjbJUJuk=
Subject key identifier: ED:18:15:E8:D0:B6:55:4E:EA:23:97:61:C1:2F:33:CC:4C:43:B3:43
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 018433DECD21CF97AC5BA36DFC7470979D73
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/7RgV6NC2VU7qI5dhwS8zzExDs0M.roa
Signing time: Tue 01 Nov 2022 15:45:50 +0000
ROA not before: Tue 01 Nov 2022 15:45:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213262
IP address blocks: 2a0d:2580::/48 maxlen: 48
2a0d:2580:a000::/37 maxlen: 48
2a0d:2580:1000::/36 maxlen: 48
2a0d:2580::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:33:de:cd:21:cf:97:ac:5b:a3:6d:fc:74:70:97:9d:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Nov 1 15:45:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed1815e8d0b6554eea239761c12f33cc4c43b343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c7:f5:d2:91:b5:05:e5:95:22:80:36:0f:1f:
9e:86:93:82:94:4e:66:a5:88:b2:12:42:7c:0f:dd:
da:12:77:4b:89:b4:38:df:33:38:b1:2c:17:f0:ce:
10:25:3f:31:d0:f3:fc:c5:8a:d4:c6:02:9d:76:ce:
66:aa:9e:c9:60:b9:9e:25:59:79:9d:75:8b:7d:60:
79:88:4d:b1:f5:3a:25:70:c8:55:bb:1b:ec:c3:a8:
cb:cc:fd:68:cc:d1:5d:a2:59:0a:47:a9:ad:55:d6:
ae:46:b9:ba:f7:95:16:bc:43:04:e8:5f:df:6d:bc:
3b:4a:21:33:61:b4:da:f2:76:46:ef:00:30:0c:30:
9d:f6:25:01:d5:7e:c5:4e:da:e0:bf:99:87:69:d6:
84:a9:46:0d:45:4f:87:54:72:25:42:5c:d0:ea:e2:
7a:15:3d:b8:20:7b:d8:c6:82:b9:6a:71:d2:97:7e:
cd:a6:03:06:2e:26:30:8b:61:c4:25:5c:e8:a9:01:
f2:6a:1a:d4:ad:81:88:a1:2e:21:72:63:4d:b5:57:
40:3d:0f:9e:68:f5:fa:0c:11:5e:4f:8f:c2:cd:6c:
55:29:68:06:65:cd:08:35:1b:44:9c:66:2e:39:88:
32:f2:8e:7d:2c:ac:39:a1:b8:8b:be:08:87:53:c9:
0e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:18:15:E8:D0:B6:55:4E:EA:23:97:61:C1:2F:33:CC:4C:43:B3:43
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/7RgV6NC2VU7qI5dhwS8zzExDs0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2580::/40
2a0d:2580:1000::/36
2a0d:2580:a000::/37
Signature Algorithm: sha256WithRSAEncryption
71:93:51:7b:f3:7e:be:bc:56:cd:e0:f7:11:6e:18:60:d8:ea:
97:e8:82:6b:64:be:a5:23:11:1c:38:f6:ab:f6:ac:05:a1:b2:
34:d2:d6:9e:d8:12:bb:91:06:95:ba:2e:bc:29:92:8c:3d:84:
5c:eb:5d:e8:9d:cd:ef:08:be:e5:fd:9a:91:91:69:f3:38:1d:
76:74:b6:32:73:f1:9c:f3:4e:af:ba:4f:dd:b8:7d:71:02:31:
6b:70:94:1d:3b:3c:84:6b:2c:33:ac:c5:c0:6a:22:7e:71:c0:
47:4b:1e:26:bf:29:ef:9b:04:49:85:70:9b:43:93:fa:cc:39:
89:b3:c6:5f:8b:20:f1:4b:eb:8d:46:30:10:66:cd:f7:1f:cb:
05:bc:3b:0d:2b:e2:86:a0:51:cc:3f:f9:98:a7:04:62:e6:63:
40:95:50:90:b3:55:d4:69:af:f1:41:a8:37:b8:3a:bf:e8:8a:
26:1f:ac:cc:95:e0:84:b7:dd:f1:e0:9c:3f:29:32:8b:79:52:
0c:30:70:16:9b:fd:ad:64:95:fc:77:c1:a7:77:8b:bd:00:5b:
47:ce:dd:7e:ed:f7:2a:cd:28:ef:ec:54:c1:5f:20:ca:44:d5:
ae:65:6d:96:c3:82:27:eb:5e:66:cb:07:70:99:56:25:cd:67:
d2:49:ed:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:47 2023 by rpki-client on console-ams.rpki-client.org