Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/fX0liwXSROwv29vv-Or3IEUSkfo.roa
File: fX0liwXSROwv29vv-Or3IEUSkfo.roa (raw, json)
Hash identifier: cDzq2BowAsHwz491OvfCp6RwQ9vOgG/wBI74IYU340s=
Subject key identifier: 7D:7D:25:8B:05:D2:44:EC:2F:DB:DB:EF:F8:EA:F7:20:45:12:91:FA
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 0599BB1A
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/fX0liwXSROwv29vv-Or3IEUSkfo.roa
Signing time: Sat 01 Jan 2022 05:01:33 +0000
ROA not before: Sat 01 Jan 2022 05:01:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212292
IP address blocks: 2a0d:2682::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93960986 (0x599bb1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 05:01:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d7d258b05d244ec2fdbdbeff8eaf720451291fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:40:44:31:01:6b:f2:75:17:b6:14:1a:53:0d:
86:12:37:dd:51:84:ca:ea:f0:cc:c4:7d:94:6c:1d:
b0:2b:b2:c3:1b:b5:f1:dd:88:56:5a:87:a9:33:46:
df:44:61:f4:82:0b:1a:b3:0f:55:d4:71:ae:ad:d6:
7e:59:67:16:8f:da:f2:ec:92:28:c1:8c:07:96:17:
74:a9:63:65:99:cb:00:b8:ce:86:7f:0a:9e:e6:d4:
2f:c7:24:cb:13:b3:1d:8a:bd:ee:f4:72:6b:cc:5e:
98:fc:43:64:e7:58:f3:46:1c:d3:1f:6e:e7:7d:15:
2f:c4:19:d9:f5:f8:cc:10:49:40:23:cb:d6:15:4f:
b8:5f:b2:f4:44:5f:7c:94:53:bc:eb:0b:32:97:48:
5c:c9:f2:53:3c:95:f0:0b:31:96:5d:c6:cc:c0:33:
f3:84:83:e7:90:8f:09:75:73:11:15:8d:f0:ef:85:
47:8e:b3:df:14:94:eb:72:0a:56:1c:41:a4:53:18:
79:af:ec:06:3c:ce:e3:65:6e:95:d1:3a:26:04:a9:
55:10:72:df:39:ae:a1:09:de:0c:4f:07:72:19:0d:
41:75:d9:da:2f:c9:f0:ab:60:08:5f:79:9d:15:e3:
ec:3a:ff:26:a6:9c:b0:40:0f:03:10:9f:c7:39:b3:
ec:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:7D:25:8B:05:D2:44:EC:2F:DB:DB:EF:F8:EA:F7:20:45:12:91:FA
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/fX0liwXSROwv29vv-Or3IEUSkfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2682::/32
Signature Algorithm: sha256WithRSAEncryption
56:a3:eb:f8:5f:9b:20:1a:d9:73:cf:23:72:9b:09:a9:b9:b2:
37:84:5a:55:7c:74:02:0a:35:7b:af:07:bc:db:cb:56:b9:ac:
86:91:f4:ef:d7:62:cb:8c:b9:13:94:4b:98:bb:f5:1e:04:96:
fb:60:b2:27:d6:4a:20:e1:10:c4:88:98:fd:a2:84:1d:7f:47:
b0:81:f9:04:58:64:61:ee:a2:17:bf:70:26:71:a4:fd:3f:41:
0f:e2:eb:9c:9a:35:b2:dc:ae:22:39:13:dc:dd:e8:a8:df:49:
c3:a1:8f:76:ea:7f:d9:42:73:82:75:70:11:f9:ee:fd:64:c1:
3e:c5:f2:a9:05:e4:1c:e0:4b:3f:a7:ab:b6:2d:26:5d:bc:2d:
b2:50:d6:83:df:f5:d9:8c:a5:2f:39:a7:be:32:66:28:6d:56:
5a:6d:46:07:d9:4b:9f:8e:b9:7b:18:c1:a2:3e:ba:46:62:af:
1b:86:57:f9:6f:0f:3e:1d:88:82:39:5b:4b:f0:cb:49:92:cb:
12:6b:cc:09:51:83:b7:9d:e2:10:e5:9d:a0:08:51:f2:1b:65:
ac:02:e1:e4:51:fb:f4:42:a9:08:ab:67:23:dc:32:ea:1f:42:
76:29:e0:f7:1d:e4:5a:87:da:ba:1c:33:04:f9:e5:9c:80:5d:
9a:b8:43:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:47 2023 by rpki-client on console-ams.rpki-client.org