Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/a1d2fd-4dbd-4362-ac7b-7a3ffb00b716/1/jgBSNaOU3cawJoJWtZ2CneogPXE.roa
File: jgBSNaOU3cawJoJWtZ2CneogPXE.roa (raw, json)
Hash identifier: 7lu8+eY+NsPxN1ovObF1CnBa/t3AMcOt9Ux7XNWfARg=
Subject key identifier: 8E:00:52:35:A3:94:DD:C6:B0:26:82:56:B5:9D:82:9D:EA:20:3D:71
Certificate issuer: /CN=f56769a42e44266f037ecb390d4115febe3861a4
Certificate serial: 0BF807F2
Authority key identifier: F5:67:69:A4:2E:44:26:6F:03:7E:CB:39:0D:41:15:FE:BE:38:61:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9WdppC5EJm8Dfss5DUEV_r44YaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/a1d2fd-4dbd-4362-ac7b-7a3ffb00b716/1/jgBSNaOU3cawJoJWtZ2CneogPXE.roa
Signing time: Sat 01 Jan 2022 14:05:24 +0000
ROA not before: Sat 01 Jan 2022 14:05:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8283
IP address blocks: 2001:678:688::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 200804338 (0xbf807f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f56769a42e44266f037ecb390d4115febe3861a4
Validity
Not Before: Jan 1 14:05:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e005235a394ddc6b0268256b59d829dea203d71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ab:7c:5f:77:7e:d6:bf:80:f9:3f:91:68:40:
3b:96:cb:47:46:02:7a:1e:99:10:9a:dc:16:bf:d1:
ed:bc:2c:84:8c:f6:47:d0:2a:5a:75:27:cf:70:0f:
84:c6:b2:8f:62:9b:3a:01:ca:76:2d:ae:49:2b:d9:
e7:a0:f5:ab:63:f0:20:1d:6e:7a:8a:33:1d:c1:0a:
d8:d9:06:52:c6:12:89:f9:64:5e:58:d2:b3:de:f0:
e9:1b:1a:5c:fe:81:e7:60:2b:11:37:a0:1e:48:15:
89:77:fe:98:83:74:d8:e0:0a:40:77:6d:cc:2f:4b:
48:a2:b8:0c:cf:4e:e8:67:e9:b2:97:d6:37:27:c7:
bb:64:c0:4d:8f:01:eb:76:b0:13:31:d5:8d:4f:6c:
a0:92:54:08:47:54:32:8f:66:1c:ae:16:9c:1f:69:
8e:ce:a9:2e:94:2d:fe:91:bc:26:13:ef:3f:b0:dd:
f7:a5:04:ce:e4:a6:55:7b:07:f7:6d:d9:2b:d9:97:
3c:00:87:23:a3:e6:58:fa:bb:c6:67:c7:cb:8f:9f:
3f:87:66:1f:20:86:3f:8f:09:f4:5e:b4:94:68:0d:
1e:6a:b6:a2:a1:45:9b:14:24:69:86:b5:0f:3b:af:
71:20:c6:73:f6:68:e7:ff:9f:56:fa:37:f5:ff:21:
1f:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:00:52:35:A3:94:DD:C6:B0:26:82:56:B5:9D:82:9D:EA:20:3D:71
X509v3 Authority Key Identifier:
keyid:F5:67:69:A4:2E:44:26:6F:03:7E:CB:39:0D:41:15:FE:BE:38:61:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9WdppC5EJm8Dfss5DUEV_r44YaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a1d2fd-4dbd-4362-ac7b-7a3ffb00b716/1/jgBSNaOU3cawJoJWtZ2CneogPXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a1d2fd-4dbd-4362-ac7b-7a3ffb00b716/1/9WdppC5EJm8Dfss5DUEV_r44YaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:688::/48
Signature Algorithm: sha256WithRSAEncryption
43:f1:02:1f:bc:7f:b3:b5:61:4c:ad:f5:64:c8:ab:b0:f7:26:
27:c0:f1:e7:16:da:f4:4c:9c:4d:cd:94:0a:64:8d:63:a7:2d:
ac:29:6c:8f:b0:e4:e7:4d:58:69:bc:c3:e1:78:b8:a0:d9:ca:
f6:1d:40:8b:73:7b:33:e3:a4:5e:4d:f5:a5:8d:b9:4d:aa:00:
59:c5:fe:13:9d:2e:32:4b:bc:8c:32:c8:fc:b8:7e:4e:7c:1c:
2d:33:a1:dd:0e:c2:46:83:5d:0b:5f:e5:fd:de:b4:4a:d0:da:
03:d0:09:fd:4e:c3:5c:fa:af:02:02:66:2c:18:a4:ec:50:84:
da:e1:7b:f7:3a:f9:64:9e:6e:3f:26:ef:d9:fe:c8:e6:b0:7a:
fe:c7:92:7b:0b:3e:9a:6e:4e:69:ea:b1:25:98:44:2c:61:a1:
13:dd:bf:20:ad:ec:fd:4d:cd:2e:0f:d4:57:d7:bd:fa:5b:8d:
17:ac:e1:2f:40:bc:b1:ec:65:94:bd:19:51:b3:a4:d7:75:5d:
9f:cf:cb:02:3a:79:5e:22:ae:da:bc:1f:19:6e:e5:66:fc:97:
9b:d6:6a:49:24:b4:9d:2c:b5:c1:a6:0c:bf:98:a9:13:65:f0:
c7:a5:65:8a:7d:5e:12:e8:90:2c:21:88:ca:3a:02:b0:ec:3b:
c3:9c:2d:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:50 2023 by rpki-client on console-ams.rpki-client.org