Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/Igf5kLStakLb0SlZnhR2IqfCLhk.roa
File: Igf5kLStakLb0SlZnhR2IqfCLhk.roa (raw, json)
Hash identifier: fWx0Ks+Qmq6JmOEfMpBzwvbgSkTvp+a63dJGuTqv4FE=
Subject key identifier: 22:07:F9:90:B4:AD:6A:42:DB:D1:29:59:9E:14:76:22:A7:C2:2E:19
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 059A81DE
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/Igf5kLStakLb0SlZnhR2IqfCLhk.roa
Signing time: Sat 01 Jan 2022 05:01:34 +0000
ROA not before: Sat 01 Jan 2022 05:01:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213115
IP address blocks: 2a0d:2586::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94011870 (0x59a81de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 05:01:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2207f990b4ad6a42dbd129599e147622a7c22e19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:9e:c3:d3:81:09:ca:b1:66:20:71:11:63:1a:
f6:6d:d4:ba:8a:45:a6:ae:a3:d1:9e:55:85:5e:d1:
4f:26:a0:87:39:0a:1a:f4:f4:3b:04:c6:42:77:0d:
aa:40:95:e1:5d:48:55:b9:be:dc:f3:23:40:d0:b2:
07:15:86:ba:58:2b:21:0f:48:26:06:ed:65:1e:05:
d2:40:f0:cd:20:e3:e6:28:82:f6:4d:5d:5f:9e:41:
42:8b:1a:29:9a:73:11:b9:3f:10:7b:db:9a:51:42:
ce:52:99:5b:87:78:3a:b0:52:f5:f3:8d:ad:aa:0c:
01:ce:87:b9:bb:9f:7b:6f:5b:b9:b4:75:da:64:89:
9d:ae:94:ab:50:88:60:c5:06:92:59:0b:b1:2d:31:
4e:ab:a5:25:4a:39:d3:30:e2:ea:7b:4e:7a:df:bb:
82:0a:7c:ea:0a:bf:79:89:2f:8a:94:30:db:d3:08:
46:84:f2:24:d3:db:05:5d:67:8c:fc:00:90:1b:12:
65:56:19:43:a4:b6:ef:18:62:6b:89:38:02:fc:3f:
60:a5:fd:14:99:18:04:19:c7:c2:80:8f:9c:f4:f2:
b8:ba:aa:2e:93:5b:b2:d9:15:a9:22:e5:73:9f:1f:
e7:f0:47:9e:68:dd:28:c0:26:9a:a5:3b:aa:83:85:
ed:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:07:F9:90:B4:AD:6A:42:DB:D1:29:59:9E:14:76:22:A7:C2:2E:19
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/Igf5kLStakLb0SlZnhR2IqfCLhk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2586::/32
Signature Algorithm: sha256WithRSAEncryption
c4:de:a2:c7:b1:9a:86:18:c0:41:30:b6:a8:a9:56:f5:a1:23:
37:aa:da:63:9c:aa:dd:6c:a8:06:db:5b:5b:d6:02:ab:08:e8:
9e:61:10:78:40:6a:e2:23:3b:9b:84:6e:7b:a4:23:fc:35:a7:
d9:e2:3d:19:80:25:03:61:43:96:97:39:0b:88:7a:17:21:50:
29:45:0f:08:b0:ec:07:d4:04:c5:fe:f4:e5:11:70:7c:ab:1d:
8e:8a:ef:ae:b2:cd:92:ad:58:a8:8a:99:25:a1:81:78:0c:19:
77:da:86:90:8e:4e:28:35:cf:b3:a0:08:81:39:31:29:1a:4a:
47:67:0f:f6:04:60:8c:19:8f:26:44:c1:42:89:bd:32:1f:90:
e6:fb:b9:63:10:8e:11:45:8c:3f:93:13:bf:35:43:0c:43:99:
1c:f1:c9:54:88:3a:70:8d:e0:8f:b6:69:d6:22:d1:59:41:ea:
b2:57:82:0e:75:23:59:2c:8b:11:f7:40:1b:b5:ec:f8:73:bb:
9c:0a:e1:35:e7:54:1f:31:08:de:b8:e4:c5:50:32:a2:44:f5:
22:c6:19:2c:f5:56:fc:8b:32:b3:2a:24:d7:e4:c7:4c:f5:be:
07:5c:a5:ff:c2:ca:e7:ae:75:dd:00:cb:f2:db:1c:47:2f:95:
e4:53:da:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:10 2023 by rpki-client on console-fra.rpki-client.org