Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/fG1FiT0DdUGMFRys4QjIq29oQ3E.roa
File: fG1FiT0DdUGMFRys4QjIq29oQ3E.roa (raw, json)
Hash identifier: 87Cu0NOw6EBx37bmpeCOcZ94gPtYnC+ldWk2cx+i4gE=
Subject key identifier: 7C:6D:45:89:3D:03:75:41:8C:15:1C:AC:E1:08:C8:AB:6F:68:43:71
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 1AA54248
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/fG1FiT0DdUGMFRys4QjIq29oQ3E.roa
Signing time: Sat 01 Jan 2022 12:02:38 +0000
ROA not before: Sat 01 Jan 2022 12:02:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8100
IP address blocks: 2a07:9944:1a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 447038024 (0x1aa54248)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Jan 1 12:02:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7c6d45893d0375418c151cace108c8ab6f684371
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9c:b1:5b:b6:61:e5:f7:65:84:6b:a6:73:ee:
27:a9:73:d6:75:7e:29:9f:8d:71:d1:4c:c8:6c:a7:
c7:58:90:b4:cb:48:1a:1d:f6:07:b5:f2:01:6f:54:
4d:e9:86:66:ef:0a:56:78:2e:43:cc:9c:22:b1:b5:
ff:b5:f8:be:fa:a0:86:19:0e:52:a2:b8:dc:f2:c2:
95:60:3e:3b:3d:2f:b1:41:60:6b:97:5e:5b:67:fb:
6f:7b:59:f8:db:65:9a:ab:90:ae:ea:4f:57:85:53:
17:6e:ec:cf:99:b6:fa:43:36:b3:f7:4d:88:4f:7c:
38:bd:3f:48:ba:a8:a1:db:3e:9e:e4:d2:73:18:ed:
8e:0d:c7:60:7b:8d:cd:76:29:99:48:2d:2f:c7:9a:
a2:fa:c8:da:a8:33:05:f5:24:9f:4b:7d:e0:49:7a:
09:ad:c9:c7:27:8b:10:5d:38:87:f4:a4:6d:1d:f8:
73:73:b4:15:29:f8:6a:64:25:7d:b5:8f:75:d2:2d:
6c:4b:b7:65:aa:46:9d:a1:29:30:19:27:2b:f6:98:
dd:46:f1:d6:ed:fd:d6:ce:07:ec:b6:08:0f:85:17:
11:48:63:e4:6b:84:e4:f4:18:1a:fd:0e:10:08:87:
fc:d3:81:4b:3f:64:3a:d1:2e:c7:b4:dd:d5:f4:e9:
73:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:6D:45:89:3D:03:75:41:8C:15:1C:AC:E1:08:C8:AB:6F:68:43:71
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/fG1FiT0DdUGMFRys4QjIq29oQ3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:9944:1a::/48
Signature Algorithm: sha256WithRSAEncryption
8f:9f:87:05:fe:4e:5e:c9:bb:13:b9:14:cd:cf:f8:2b:3c:27:
e3:a8:ec:d5:55:3f:41:46:d1:a7:c6:3e:7d:2f:3e:23:30:09:
75:fb:3d:9e:e7:a4:7a:02:aa:94:c4:43:9f:df:0e:a6:c3:ef:
0f:8a:45:2c:27:7b:1f:a2:7e:b9:fc:39:61:1c:78:69:15:6b:
75:a8:29:3b:06:7d:94:50:54:45:75:bc:02:dc:a3:e4:a6:82:
2e:99:2f:b3:3c:62:b2:fa:4e:44:5e:53:f3:76:83:78:80:b5:
74:c6:04:f3:fd:c8:69:1d:3a:90:87:3a:bb:02:f5:34:37:42:
70:ea:1b:0a:89:77:ba:17:92:c6:61:d0:98:e5:1d:0c:d6:2d:
e6:2a:be:41:ba:cb:1e:87:f3:4e:83:ea:79:ff:19:2d:7b:ae:
9c:30:5c:69:e2:91:e6:32:9d:51:36:3b:4f:bd:51:46:0a:85:
df:f8:10:76:a1:ae:79:6d:cf:64:26:73:d8:5f:88:b8:a8:51:
04:db:b4:32:45:2e:d9:6e:66:fd:c9:b0:71:3a:62:88:66:89:
8f:76:51:50:da:f0:e2:56:f0:d1:ce:5f:b8:b7:a7:57:c8:34:
ec:61:0c:d0:79:c1:63:13:ce:3b:57:9b:6f:5b:3c:55:d6:04:
76:5d:c0:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:20 2023 by rpki-client on console-fra.rpki-client.org