Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/58gAmQozzJOjfHscf1ZCwXf0D-M.roa
File: 58gAmQozzJOjfHscf1ZCwXf0D-M.roa (raw, json)
Hash identifier: OwNgjhk9TnUqJR3km3RMWfcVsm3KAlgJJtRtlg9z3ns=
Subject key identifier: E7:C8:00:99:0A:33:CC:93:A3:7C:7B:1C:7F:56:42:C1:77:F4:0F:E3
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 118E186E
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/58gAmQozzJOjfHscf1ZCwXf0D-M.roa
Signing time: Fri 10 Jun 2022 17:44:02 +0000
ROA not before: Fri 10 Jun 2022 17:44:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209864
IP address blocks: 2a06:e881:5500::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 294525038 (0x118e186e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jun 10 17:44:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7c800990a33cc93a37c7b1c7f5642c177f40fe3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b1:65:21:70:0a:37:ed:c5:4b:46:52:03:c5:
30:1a:be:18:15:50:f6:ec:ef:09:58:3b:e1:4d:a8:
a0:17:45:87:63:8e:16:ec:38:5d:85:99:17:b9:28:
96:96:e4:3e:0a:9f:c3:e7:ff:78:2d:07:73:6d:ea:
c5:0e:c7:7d:fd:45:b4:b9:69:f2:ed:a4:3e:64:47:
01:f5:cb:13:a3:aa:eb:44:55:af:66:fd:a3:05:19:
9d:e8:31:0d:b7:95:8c:d6:67:b7:29:10:08:f2:a8:
40:22:70:10:e7:df:06:cb:d6:b8:bd:7e:25:8b:e2:
de:4b:de:22:00:7f:72:4f:da:8f:71:8c:db:fc:27:
a6:72:ee:33:2a:5d:3d:d8:3d:80:77:d2:c3:79:3d:
bf:52:90:63:16:3a:cd:4b:03:5f:22:09:58:b2:1e:
91:db:e8:81:9e:02:a6:74:7d:fc:8f:2d:bf:1c:3c:
13:3f:84:fb:b9:23:54:f9:dd:68:c8:e1:85:6c:8d:
f3:80:1a:24:94:31:0d:26:44:1b:c2:5a:65:48:b3:
88:dc:42:a5:57:38:24:61:bd:1e:56:5b:b4:3d:6a:
6f:12:31:db:ed:52:ec:a4:78:84:e1:17:21:6a:af:
61:9f:6c:52:c3:cc:bc:f2:79:41:bc:57:55:70:32:
5b:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:C8:00:99:0A:33:CC:93:A3:7C:7B:1C:7F:56:42:C1:77:F4:0F:E3
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/58gAmQozzJOjfHscf1ZCwXf0D-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:5500::/44
Signature Algorithm: sha256WithRSAEncryption
2c:fa:74:6a:c8:09:48:dd:61:38:4b:f9:5f:6d:85:c1:3a:71:
c9:17:66:9d:ee:6e:05:cb:7e:20:91:ef:c1:b5:7e:82:ea:1d:
d2:4c:5f:90:45:c2:0a:c7:5b:46:41:9e:c5:32:4a:d4:62:00:
32:c4:2e:8f:9f:74:6f:ca:97:b6:8a:fe:21:6b:ba:81:77:83:
8f:4e:07:ac:7c:93:de:71:21:6b:cc:d6:49:04:73:5f:58:5a:
bd:4d:70:e1:e4:72:09:4c:0f:f2:66:04:0e:8e:82:79:b2:3d:
c9:44:8c:be:dd:e9:0f:64:ec:6b:6e:db:3c:43:63:48:a4:ae:
07:4a:f8:05:dc:3b:6b:0e:d7:cb:f7:32:90:89:76:40:87:78:
d3:8d:36:d8:8c:c4:ef:3a:4c:a2:7a:c8:39:03:af:46:e1:f3:
96:66:50:3f:5e:1c:d5:00:e4:ce:6b:1a:ec:b8:80:7b:95:89:
08:63:96:69:0a:45:cd:9e:51:4c:a0:3e:e9:db:58:82:aa:f4:
be:77:1f:8f:d8:36:50:38:fd:b6:51:92:d8:8d:ab:cc:39:85:
33:91:f1:fd:a3:6d:e8:2a:11:20:a8:73:37:2e:79:e9:a1:c5:
03:e4:c6:d6:39:7c:a5:92:73:75:a0:dd:25:4d:0f:8d:c6:15:
8d:7e:ab:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:42 2023 by rpki-client on console-ams.rpki-client.org