Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/985be9-9781-4fda-b7f3-0df07a908fbf/1/iAYkfOuWSxcoGaH4aueMMI_V8X8.roa
File: iAYkfOuWSxcoGaH4aueMMI_V8X8.roa (raw, json)
Hash identifier: tGuPxPaKcqEu3WhnXuwBzg2FP1th1XaBiqKf2Izjip0=
Subject key identifier: 88:06:24:7C:EB:96:4B:17:28:19:A1:F8:6A:E7:8C:30:8F:D5:F1:7F
Certificate issuer: /CN=a76b7b9f7fd66943927c60dcf1212ddc07df0523
Certificate serial: 018354539413F15512CF67A98CE86A9D633F
Authority key identifier: A7:6B:7B:9F:7F:D6:69:43:92:7C:60:DC:F1:21:2D:DC:07:DF:05:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p2t7n3_WaUOSfGDc8SEt3AffBSM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/985be9-9781-4fda-b7f3-0df07a908fbf/1/iAYkfOuWSxcoGaH4aueMMI_V8X8.roa
Signing time: Mon 19 Sep 2022 05:58:27 +0000
ROA not before: Mon 19 Sep 2022 05:58:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59441
IP address blocks: 2a11:1dc0::/29 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:54:53:94:13:f1:55:12:cf:67:a9:8c:e8:6a:9d:63:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a76b7b9f7fd66943927c60dcf1212ddc07df0523
Validity
Not Before: Sep 19 05:58:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8806247ceb964b172819a1f86ae78c308fd5f17f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:10:63:a3:99:be:c9:49:16:1d:07:59:15:1a:
d6:99:3a:54:41:41:16:f6:83:52:93:2c:7f:d9:79:
0e:ef:4a:7b:27:35:18:9c:32:ae:f6:b2:03:d0:41:
ee:85:a2:99:53:6c:e7:8b:83:50:5e:df:13:41:d8:
bd:86:a5:43:40:45:0c:f0:de:65:69:45:e3:1d:b9:
01:aa:a4:32:dc:e7:ef:aa:14:ad:49:56:26:c8:74:
57:e4:78:12:38:e6:07:e6:11:75:1a:b1:12:d0:84:
7d:3c:e7:02:3a:80:c9:ea:db:ed:ec:7e:b3:03:7e:
7e:cd:2d:03:75:53:52:79:2d:bf:90:47:e3:34:9c:
d8:d3:f5:02:d6:5d:9c:ca:17:0b:23:4c:04:45:4f:
6e:74:b0:5e:d1:7b:b0:b5:2e:b6:fc:44:2f:6c:b2:
f3:7b:b3:10:18:3a:24:3f:6c:58:05:bf:f7:90:92:
ed:b4:bc:5b:88:65:f9:95:10:0b:dc:24:fa:48:be:
02:a1:15:60:5d:d9:ca:ed:2f:eb:e6:27:ca:1b:a0:
a0:12:c4:6d:26:4b:1b:2b:14:29:b2:9c:1f:46:5c:
c5:04:44:0d:3b:6e:86:6c:97:ad:35:bd:a1:7f:1a:
8e:2e:6b:89:5c:80:07:ac:60:2c:f0:83:75:f5:f9:
66:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:06:24:7C:EB:96:4B:17:28:19:A1:F8:6A:E7:8C:30:8F:D5:F1:7F
X509v3 Authority Key Identifier:
keyid:A7:6B:7B:9F:7F:D6:69:43:92:7C:60:DC:F1:21:2D:DC:07:DF:05:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p2t7n3_WaUOSfGDc8SEt3AffBSM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/985be9-9781-4fda-b7f3-0df07a908fbf/1/iAYkfOuWSxcoGaH4aueMMI_V8X8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/985be9-9781-4fda-b7f3-0df07a908fbf/1/p2t7n3_WaUOSfGDc8SEt3AffBSM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:1dc0::/29
Signature Algorithm: sha256WithRSAEncryption
6d:1a:4d:06:56:02:b4:25:5c:17:36:54:cf:4b:f4:9d:96:90:
da:fa:5e:8d:7b:c2:87:0c:d2:06:d0:36:75:52:5f:f2:57:a9:
7f:17:f3:66:c1:a3:81:41:7e:cb:7f:04:f7:55:d4:e9:47:7a:
73:86:d9:79:52:cf:ca:d3:c0:0c:e8:48:b8:ae:d4:3f:b0:93:
8c:be:00:3e:27:14:63:71:68:e4:27:a4:b5:f8:3f:6f:aa:e3:
94:e1:7e:7e:79:e4:84:a1:8a:7b:3d:2e:b4:28:97:b0:cf:bb:
86:d9:ad:89:54:84:4d:93:dc:d6:57:72:7d:46:3b:d8:19:64:
3d:a0:4e:5a:75:72:32:94:bd:d1:27:13:67:a4:1f:a2:dc:fb:
d6:18:46:79:b6:0f:f8:f6:b1:09:60:0f:36:9a:09:9a:e2:a0:
e4:6c:5b:20:7b:cb:3a:80:7d:73:b0:2e:fc:af:24:d5:dd:af:
c0:75:dc:2f:16:38:18:41:5c:24:f8:1b:7a:5f:e5:ec:86:34:
30:51:4a:d2:df:37:8a:eb:e6:73:93:9e:56:28:65:66:2b:9a:
dc:79:66:8f:ec:b5:67:14:e8:86:69:29:79:18:2a:40:e5:be:
80:66:11:8b:0f:2a:0f:7b:96:97:fd:0f:4a:2f:68:b1:7b:08:
d9:79:19:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:39 2024 by rpki-client on console-ams.rpki-client.org