Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/CWBhltE7qFk-ubY8uLEpSUNvJMQ.roa
File: CWBhltE7qFk-ubY8uLEpSUNvJMQ.roa (raw, json)
Hash identifier: vWjo6e4gwjRNv6Jyn5UGyVWHENUfMyJhSSkDUFPgPf4=
Subject key identifier: 09:60:61:96:D1:3B:A8:59:3E:B9:B6:3C:B8:B1:29:49:43:6F:24:C4
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 0183A4442AE1C855795DB7F4CB789454F4D6
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/CWBhltE7qFk-ubY8uLEpSUNvJMQ.roa
Signing time: Tue 04 Oct 2022 18:31:14 +0000
ROA not before: Tue 04 Oct 2022 18:31:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50058
IP address blocks: 2a0c:e644::/30 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a4:44:2a:e1:c8:55:79:5d:b7:f4:cb:78:94:54:f4:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Oct 4 18:31:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09606196d13ba8593eb9b63cb8b12949436f24c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:bc:96:b1:71:0d:ff:cd:5f:da:a9:16:5c:e6:
a7:a1:8c:a6:a3:f4:2f:e9:7a:36:0c:63:62:4b:f8:
e1:d2:b0:78:33:d7:ab:d8:01:ed:85:c9:9e:40:74:
ba:a5:64:3e:91:38:86:74:94:8a:80:f8:a1:53:a4:
3b:9d:4a:18:8f:b9:a7:0c:6c:b0:44:ed:85:57:33:
d3:b2:26:c8:74:a1:27:1c:6d:89:e4:3e:9d:b8:f6:
11:39:44:59:6f:63:fd:c2:68:57:1e:35:b3:96:24:
af:6b:24:c4:20:5b:3d:62:0b:42:23:e5:3a:fe:bc:
28:f1:21:ac:db:89:0d:85:af:3e:fb:d5:55:d3:05:
72:e4:73:4f:b8:d4:15:94:04:08:27:ef:ab:4c:b9:
d5:54:31:1b:ec:44:91:96:ae:6b:7d:3b:47:10:40:
f3:e0:c7:6e:d1:f4:93:5c:5e:74:c1:05:1d:66:a5:
44:af:78:f6:6b:6a:68:43:9a:c7:f1:91:bc:28:ca:
b6:fe:08:af:50:ae:08:86:26:fc:95:6f:91:a6:69:
97:93:73:57:b9:36:61:f2:dd:94:f9:41:dd:1d:f2:
d8:a9:0a:5b:57:ce:b3:8d:5c:5e:63:3d:b5:29:34:
db:3c:46:82:47:e8:03:cc:fe:97:84:c8:9a:0f:00:
d0:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:60:61:96:D1:3B:A8:59:3E:B9:B6:3C:B8:B1:29:49:43:6F:24:C4
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/CWBhltE7qFk-ubY8uLEpSUNvJMQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:e644::/30
Signature Algorithm: sha256WithRSAEncryption
1c:75:94:84:2c:57:9e:8f:ab:ee:f0:4f:cd:3e:81:10:42:63:
83:84:5e:a3:52:51:b2:a3:5d:47:49:1d:5e:53:84:4b:b7:c1:
f7:1d:6a:54:bd:e8:34:1b:e5:3e:46:aa:37:50:fd:5a:87:9a:
16:95:76:f9:15:ae:46:cb:39:92:63:d5:be:43:69:fd:d8:b6:
95:71:a3:e4:6d:b4:39:82:e7:a4:45:9a:2b:8b:4e:55:17:4d:
cf:ba:5f:80:75:b2:cf:56:c3:32:e0:bf:d7:22:f8:23:ee:40:
51:74:cc:87:42:04:38:7f:34:65:df:eb:a5:ed:43:59:ee:74:
3f:25:c4:1e:75:1a:85:89:6c:ce:35:a1:ac:de:42:a9:38:3e:
a2:c2:3d:00:0f:ed:08:bc:43:22:c9:20:78:2f:f7:85:c8:ef:
02:a2:7b:73:88:98:d8:44:75:51:29:96:31:5a:54:2a:7f:7a:
2f:eb:c0:6c:5b:36:52:2a:a5:4c:18:74:8b:23:7f:40:fd:1c:
69:9d:bd:ca:1f:a4:13:47:51:a5:08:23:2b:06:5e:56:3a:aa:
c0:75:0d:41:04:47:a1:b0:d2:06:b7:0d:da:c9:3d:ab:53:7a:
b4:0e:42:ff:71:5a:19:2f:48:d4:cf:60:25:81:24:b3:4b:9b:
81:cf:87:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:47 2023 by rpki-client on console-ams.rpki-client.org