Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/7S4ppIW21aGTdmprSu_YbGeClEU.roa
File: 7S4ppIW21aGTdmprSu_YbGeClEU.roa (raw, json)
Hash identifier: gmF0W3tjWnzgGtFQTXreoZoxIcAl6c/f46WmE6TLxjc=
Subject key identifier: ED:2E:29:A4:85:B6:D5:A1:93:76:6A:6B:4A:EF:D8:6C:67:82:94:45
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018345CCC12A87083A9026A7DA77BD75085D
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/7S4ppIW21aGTdmprSu_YbGeClEU.roa
Signing time: Fri 16 Sep 2022 10:16:30 +0000
ROA not before: Fri 16 Sep 2022 10:16:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61138
IP address blocks: 2a0c:9a40:8082::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:45:cc:c1:2a:87:08:3a:90:26:a7:da:77:bd:75:08:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Sep 16 10:16:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed2e29a485b6d5a193766a6b4aefd86c67829445
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:41:9c:67:6f:60:37:24:40:e2:4d:0c:44:bb:
47:3b:1a:83:9e:06:11:5c:ba:4f:db:5e:53:0f:6b:
5f:ca:24:59:c4:f0:46:e2:49:34:e3:f4:33:31:59:
7a:4f:31:00:ca:0e:ea:3c:30:0f:93:d3:6d:2c:88:
ba:ed:c8:b1:8c:94:a9:43:27:36:5e:80:72:56:1e:
89:8f:ef:e1:3f:f7:ff:b3:d6:1a:4a:9b:1f:ad:b2:
4a:f7:43:90:c5:bb:4f:13:f1:78:9e:99:e4:ac:7d:
c9:d4:ca:78:d4:e4:ed:a9:98:1c:63:12:0c:9d:bd:
34:ad:5b:db:55:58:b8:77:2e:05:02:39:f8:c3:b0:
2b:90:8f:40:a4:12:8b:fb:84:26:21:e7:05:a6:eb:
b1:7d:80:1f:44:02:f4:40:fb:e4:d6:7b:ca:32:39:
f9:b5:d0:47:52:5f:e6:a4:8e:1d:fd:e5:c1:b5:d0:
5c:a2:2a:cf:a1:14:f6:46:ef:4b:79:f4:f0:e3:6b:
89:56:53:cb:8d:0e:41:c7:4e:7e:05:08:9b:32:e0:
e4:7c:8f:2c:c6:72:c5:c7:84:8a:93:ce:e4:85:61:
a2:aa:74:db:85:92:f8:12:4f:ad:6a:0c:22:e7:23:
ad:80:73:79:7a:ef:e8:98:3c:55:47:9a:4f:4d:47:
bb:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:2E:29:A4:85:B6:D5:A1:93:76:6A:6B:4A:EF:D8:6C:67:82:94:45
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/7S4ppIW21aGTdmprSu_YbGeClEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8082::/48
Signature Algorithm: sha256WithRSAEncryption
4f:8c:0d:5c:2d:b3:dc:8c:c1:90:60:0b:64:08:e7:30:56:f9:
22:db:19:6b:10:c2:0e:d5:88:23:36:18:7d:ab:79:c1:6b:f6:
06:be:7f:d1:00:33:2d:5f:d0:f5:46:61:60:ca:9b:09:eb:6d:
92:95:15:de:e8:67:52:80:22:9c:9c:16:9f:ca:c1:54:09:f0:
e9:5f:9f:37:cf:c9:a6:07:52:cc:a5:b2:85:d9:0b:b9:bd:53:
74:9f:72:ce:5e:03:72:fd:78:78:ea:0c:34:91:04:e5:21:65:
0f:83:2d:ee:ef:cf:77:e2:f6:8f:60:3e:9d:e7:65:8e:dd:85:
22:9b:28:23:00:80:7f:4e:7c:b3:cc:57:a4:6e:06:a2:5f:04:
d6:ea:69:1f:81:e5:1b:06:f8:18:bf:a6:99:0c:dd:9d:0c:2a:
e2:b2:f6:39:18:1a:9c:de:74:ee:cf:c3:d5:aa:1b:66:cf:6c:
35:7d:db:17:de:3f:3f:d9:2b:3d:4f:f0:d7:1a:e1:69:58:b0:
1d:16:43:07:ad:d7:6a:42:b7:b5:60:29:f1:89:96:e6:f0:38:
70:a6:46:11:99:a6:81:37:1b:d7:f1:15:19:31:23:df:fc:1c:
f0:9d:10:6c:6b:97:8b:a0:5f:48:5a:11:e9:49:1c:77:2e:9b:
a7:ab:19:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:15 2024 by rpki-client on console-ams.rpki-client.org