Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/95cqEvgB13ijjUkvNlgjnmDMOd0.roa
File: 95cqEvgB13ijjUkvNlgjnmDMOd0.roa (raw, json)
Hash identifier: HEvJXjtINPg7XcjX5maTM5f0s7b2spm/UY+g1sTS1iY=
Subject key identifier: F7:97:2A:12:F8:01:D7:78:A3:8D:49:2F:36:58:23:9E:60:CC:39:DD
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 0FE45F00
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/95cqEvgB13ijjUkvNlgjnmDMOd0.roa
Signing time: Sat 01 Jan 2022 14:59:43 +0000
ROA not before: Sat 01 Jan 2022 14:59:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204624
IP address blocks: 2a06:e881:3900::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 266624768 (0xfe45f00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 1 14:59:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f7972a12f801d778a38d492f3658239e60cc39dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:24:70:2a:80:1a:fd:cc:ae:38:7c:36:27:1e:
0a:27:c4:6c:73:f3:0f:44:39:9c:3e:94:62:25:ed:
f0:7d:fb:c9:4f:fe:6d:07:e9:fa:08:cc:8f:12:32:
c3:fd:3a:e6:5e:07:53:be:be:44:70:b2:e7:e6:3c:
7a:f4:b1:ea:12:0a:95:50:92:c1:5b:a1:11:0b:84:
25:28:49:e0:93:bf:bb:70:e7:e5:5e:14:2f:fb:6f:
1c:e9:7d:96:df:38:c5:21:a6:39:a6:6e:b9:db:af:
58:13:a0:bc:8a:ae:1e:52:18:4a:82:cc:c6:e6:f9:
9a:37:c9:b0:db:85:1f:f0:4f:85:5a:5b:cb:db:3d:
75:2e:91:9b:c0:cd:bf:cf:d9:de:a8:c8:19:73:5f:
62:74:71:81:ca:8c:10:c3:eb:7f:9a:a5:0f:bb:a5:
2c:ba:05:73:47:f0:70:05:d2:ab:77:41:6a:47:6f:
f7:da:3b:75:6d:96:f6:66:01:82:a4:b6:87:7a:52:
8b:a6:e5:5c:60:a7:89:d2:c2:5a:f2:76:75:8e:71:
54:35:da:41:ee:48:37:f4:c4:3c:44:a1:c9:86:46:
d8:03:9c:e2:7b:9f:48:b9:ce:96:5a:b7:67:86:04:
67:44:39:6a:31:03:34:05:38:ce:b4:4e:22:ca:30:
bd:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:97:2A:12:F8:01:D7:78:A3:8D:49:2F:36:58:23:9E:60:CC:39:DD
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/95cqEvgB13ijjUkvNlgjnmDMOd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:3900::/44
Signature Algorithm: sha256WithRSAEncryption
b2:7f:ec:bd:10:39:4d:c0:d3:57:a3:b9:f8:c1:0b:13:bb:ca:
88:5c:ee:73:0a:1a:05:4c:aa:ec:d6:21:ad:56:58:18:31:8a:
99:11:d4:e0:cf:43:56:2b:57:00:75:4a:69:3c:75:fe:a9:48:
69:b1:e0:2e:41:9f:7b:f0:5c:36:4e:a4:84:21:9f:4f:f7:96:
42:d3:e8:62:2b:a1:a3:1c:f2:76:28:fa:81:33:c0:6b:af:53:
e9:93:3c:b0:e1:2e:e8:18:d9:6b:e1:39:aa:21:d4:ee:95:63:
19:3b:e8:39:22:e6:24:c6:ae:b4:73:16:a6:87:39:57:15:a0:
80:30:f2:bb:80:4f:de:3d:6d:03:6f:85:c6:be:e1:e2:59:70:
bc:c3:0d:76:82:99:ad:03:15:ed:86:4a:20:ec:36:d6:08:9c:
6c:44:04:91:cc:cc:83:ae:91:ed:9f:e6:db:18:bb:36:f5:a2:
bc:c0:5d:ca:3b:34:f3:65:a6:a8:10:a1:25:fe:81:d0:b4:a3:
0e:2f:f2:db:63:3e:19:4e:00:52:7e:24:78:48:2f:ed:b3:41:
25:c2:73:55:ac:85:b5:55:99:57:00:cb:bf:c6:28:dc:c1:fd:
a1:39:01:c7:2e:2b:73:01:de:0e:47:b5:68:31:84:3d:fb:20:
3d:4d:fd:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:42 2023 by rpki-client on console-ams.rpki-client.org