Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/PWfAZyPcKRsGDjp6d-bGyQUsVjA.roa
File: PWfAZyPcKRsGDjp6d-bGyQUsVjA.roa (raw, json)
Hash identifier: pzzOmz2ggvUy+r+u5fM9+Ckzm7i+hrVbDZO6xOM5l+c=
Subject key identifier: 3D:67:C0:67:23:DC:29:1B:06:0E:3A:7A:77:E6:C6:C9:05:2C:56:30
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01834A07CAE8BEAB1909243BF32A866EC880
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/PWfAZyPcKRsGDjp6d-bGyQUsVjA.roa
Signing time: Sat 17 Sep 2022 05:59:28 +0000
ROA not before: Sat 17 Sep 2022 05:59:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 45671
IP address blocks: 2a0f:11c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:4a:07:ca:e8:be:ab:19:09:24:3b:f3:2a:86:6e:c8:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Sep 17 05:59:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d67c06723dc291b060e3a7a77e6c6c9052c5630
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:c5:8d:f4:b9:c8:e1:59:1f:62:9f:57:fa:c2:
a6:69:51:f4:16:aa:8e:95:d2:de:10:d3:c5:2b:16:
a1:71:f9:f7:8c:56:fc:8e:3f:ac:84:bc:0f:d4:ce:
17:4b:35:28:ca:d0:5d:c2:8b:80:45:17:0b:3e:36:
ee:4d:1b:1e:a4:7c:a2:e1:2f:1e:6f:d4:c0:a7:f8:
64:36:3f:41:8c:5c:e9:9d:75:75:64:36:ad:e4:6f:
72:e3:de:fc:de:ca:19:f8:54:15:c8:02:ec:af:1b:
7c:16:fc:db:cd:b4:ce:5b:0b:15:ed:7c:7e:80:fb:
f4:80:b1:81:c7:e2:98:ac:9e:47:9b:4a:77:6d:20:
01:79:17:4c:0f:3f:9a:d2:51:7d:a3:96:f7:15:c6:
45:51:1b:c4:1f:51:f4:07:50:3d:dc:5b:30:a1:ce:
6d:77:f9:9e:3c:f9:59:e1:e5:e4:ff:43:5c:c1:2c:
85:a2:4b:1a:80:d6:f1:b2:28:c6:fd:c3:09:ff:03:
04:d8:68:47:84:6f:a1:fb:6e:a5:34:ae:9d:aa:92:
ab:cd:3f:d0:9a:ef:55:43:a2:60:53:04:2b:85:18:
33:34:08:70:a9:1d:b1:20:d6:24:29:b7:fb:48:70:
10:36:63:21:65:8f:90:7c:b4:5a:fd:13:bc:47:c2:
b9:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:67:C0:67:23:DC:29:1B:06:0E:3A:7A:77:E6:C6:C9:05:2C:56:30
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/PWfAZyPcKRsGDjp6d-bGyQUsVjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:11c0::/29
Signature Algorithm: sha256WithRSAEncryption
9a:20:1b:2e:ba:64:ea:b9:a2:a5:fc:c4:45:53:a8:66:d4:36:
1f:09:0d:76:be:d1:29:56:49:35:92:06:cc:ff:94:2a:73:c6:
ea:f2:71:fb:83:c9:3d:fa:0f:04:2c:59:63:db:21:af:c8:13:
da:fd:97:22:72:34:3f:67:6f:22:de:b4:8f:82:c6:54:9e:0d:
59:7b:5d:ad:2f:82:d9:02:31:1b:07:c2:06:3c:d1:9f:e1:c3:
8a:bd:0f:65:47:81:be:51:59:c6:9a:a1:4e:2d:6c:f3:87:1d:
e8:55:4d:66:31:2c:a7:92:a7:d3:43:4b:fa:d6:9e:f5:e4:1a:
f9:45:c9:28:e4:ad:79:c6:99:2f:25:7c:e3:76:64:62:6f:b1:
a2:04:cc:ab:25:75:54:67:89:f9:47:c2:0d:58:05:11:12:23:
eb:33:1a:ec:59:b3:d0:45:3e:91:07:a9:c1:ad:92:77:dc:ff:
27:10:c9:97:55:b0:f4:e6:9b:0d:d1:a5:33:e6:f0:f6:c0:c3:
0d:3d:93:ef:82:e6:e3:af:44:8d:53:f6:e6:6a:51:e7:f8:c2:
b8:c4:fc:51:30:63:01:b3:9e:76:a9:ce:c7:72:8e:bc:19:62:
f9:77:df:50:a8:a1:a7:e0:c1:e4:c9:56:ad:cb:7f:3e:0b:c2:
a2:db:7a:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:24 2023 by rpki-client on console-ams.rpki-client.org