Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/1-ddft-tJRw0C4hszw88XxjwfDrU.roa
File: 1-ddft-tJRw0C4hszw88XxjwfDrU.roa (raw, json)
Hash identifier: VJAiSHdXZc9gj1p8/IJXNvpJLlaq2jtXLI1sTopVgtY=
Subject key identifier: F9:D7:5F:B7:EB:49:47:0D:02:E2:1B:33:C3:CF:17:C6:3C:1F:0E:B5
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 0BE0B001
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/1-ddft-tJRw0C4hszw88XxjwfDrU.roa
Signing time: Sat 01 Jan 2022 12:54:59 +0000
ROA not before: Sat 01 Jan 2022 12:54:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51861
IP address blocks: 2a0c:9a40:80a3::/48 maxlen: 48
2a0c:9a40:80ae::/48 maxlen: 48
2a0c:9a40:80a9::/48 maxlen: 48
2a0c:9a40:80a4::/48 maxlen: 48
2a0c:9a40:80a7::/48 maxlen: 48
2a0c:9a40:80a2::/48 maxlen: 48
2a0c:9a40:80ad::/48 maxlen: 48
2a0c:9a40:80a0::/44 maxlen: 48
2a0c:9a40:80a8::/48 maxlen: 48
2a0c:9a40:80ab::/48 maxlen: 48
2a0c:9a40:80a6::/48 maxlen: 48
2a0c:9a40:80a1::/48 maxlen: 48
2a0c:9a40:80ac::/48 maxlen: 48
2a0c:9a40:80af::/48 maxlen: 48
2a0c:9a40:80aa::/48 maxlen: 48
2a0c:9a40:80a5::/48 maxlen: 48
2a0c:9a40:80a0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 199274497 (0xbe0b001)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 1 12:54:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9d75fb7eb49470d02e21b33c3cf17c63c1f0eb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:69:c8:2a:a4:f1:36:39:f1:bb:62:38:e9:05:
92:a4:d1:f7:f4:6e:52:4b:ec:c9:7a:8d:1a:f9:66:
fa:97:c0:f1:70:41:4c:35:5a:f6:79:89:c4:23:06:
01:9c:a8:28:e2:dd:92:3c:6c:46:05:07:2f:a9:2e:
cf:d4:24:e9:ef:66:d3:d2:e6:26:4d:43:08:28:c7:
52:84:ee:06:68:a3:ef:a7:6e:c0:78:e0:b5:19:90:
88:a8:32:f0:91:5f:80:af:18:cb:49:1b:7f:3c:a8:
cb:0d:e6:29:08:ff:a8:bd:99:64:0a:1a:40:0f:40:
27:59:ce:32:1a:72:b4:0a:a4:55:56:c2:5d:ab:4c:
53:d0:19:5b:90:e6:0c:33:e2:04:95:9f:24:aa:70:
bb:06:7a:d1:39:3d:07:d0:80:29:02:b3:91:61:14:
8f:f1:01:b1:c2:36:d5:02:fa:e0:3e:93:98:6b:df:
c2:01:67:fd:4e:d1:61:c1:37:61:e6:fa:fa:35:13:
89:0f:54:82:b4:6d:ad:d7:ce:36:9b:e1:42:71:3c:
84:32:ed:67:ef:c2:05:5e:37:f0:8a:13:26:bb:ca:
8b:d3:be:b5:e1:a7:a1:3f:0f:1f:67:93:6b:06:45:
03:ed:d9:31:7b:5c:11:04:3d:61:12:70:27:5c:eb:
cc:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:D7:5F:B7:EB:49:47:0D:02:E2:1B:33:C3:CF:17:C6:3C:1F:0E:B5
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/1-ddft-tJRw0C4hszw88XxjwfDrU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:80a0::/44
Signature Algorithm: sha256WithRSAEncryption
81:b5:7e:e3:24:55:ea:5e:5c:7c:2b:04:24:b0:44:ec:a8:ea:
fa:4c:9e:13:b9:ab:57:3d:4a:03:3f:12:c4:b6:6b:db:34:30:
37:81:4f:68:8c:27:be:dc:6a:94:63:c3:07:81:d3:75:0d:da:
5e:f7:23:29:f8:36:95:22:78:9c:21:51:b8:49:8c:af:0e:08:
58:93:08:b6:32:37:6b:42:10:f4:d9:fa:32:1d:1e:91:5f:60:
b9:0e:5d:d2:4d:2a:25:b9:83:b1:6b:26:0a:6a:4a:cf:f0:11:
ea:af:ba:3f:3d:a9:1c:ff:9b:71:4d:ec:40:5f:ae:08:48:aa:
3c:72:86:eb:11:13:f8:59:a7:e7:c3:72:fe:80:33:e8:42:e8:
0e:3a:14:9e:85:13:7e:72:d4:b2:4d:04:e3:a3:0d:a9:ee:e5:
12:ce:77:f3:5a:1e:dc:33:83:d3:41:95:a9:10:84:89:23:97:
9a:ed:c8:95:3c:8b:c8:80:03:89:31:d8:21:d1:15:54:9c:f3:
02:fb:9a:62:fc:ac:4a:44:26:f8:9c:04:10:cf:bd:cb:80:c6:
d5:5c:18:7d:38:59:cc:0d:0f:54:5e:e6:23:03:c5:2a:bd:1e:
25:7e:f5:b8:d1:74:03:d9:f9:11:2d:5e:54:c8:11:40:a4:58:
76:fe:cb:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:33 2023 by rpki-client on console-fra.rpki-client.org