Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/FZfTk5HSIl29UgEj3xJdOKCy7CI.roa
File: FZfTk5HSIl29UgEj3xJdOKCy7CI.roa (raw, json)
Hash identifier: O8pO7BAtY+JVYNW/3XqvwYUKOqvxIk9G3arBILMwi9I=
Subject key identifier: 15:97:D3:93:91:D2:22:5D:BD:52:01:23:DF:12:5D:38:A0:B2:EC:22
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 01840523A2AB49029D03ACA59E384CD16866
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/FZfTk5HSIl29UgEj3xJdOKCy7CI.roa
Signing time: Sun 23 Oct 2022 13:58:52 +0000
ROA not before: Sun 23 Oct 2022 13:58:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203314
IP address blocks: 2a0c:9a40:8c90::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:05:23:a2:ab:49:02:9d:03:ac:a5:9e:38:4c:d1:68:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Oct 23 13:58:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1597d39391d2225dbd520123df125d38a0b2ec22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:47:18:44:1c:9f:a6:72:c6:24:f2:39:f6:cc:
15:94:e7:52:bc:29:51:ab:fa:4b:31:46:e3:0b:0c:
38:89:fc:4d:3c:ac:43:be:de:79:a9:83:19:9d:56:
82:bc:d2:94:a4:2a:6d:01:a6:78:3d:75:ad:34:55:
0c:0a:67:a8:9b:ba:ab:60:50:5c:5f:bf:c9:20:14:
3d:16:12:bc:e4:69:88:07:51:e3:9c:d4:2a:a2:56:
a9:03:ae:1c:61:99:17:5d:7b:13:f7:30:37:75:c1:
26:cf:28:2f:d1:0e:96:ff:a2:61:5a:1a:c0:45:bb:
f9:ad:da:34:10:4b:57:6e:b1:cb:75:b0:4c:92:55:
92:78:7f:b7:ee:83:d6:9e:58:90:53:e0:8b:31:79:
b5:64:91:11:c2:03:12:b1:29:f3:f2:d1:fb:1d:c9:
a5:05:a1:01:e1:b0:0d:8b:d7:80:22:ed:48:5d:d7:
67:c9:a0:de:80:6e:dd:b2:92:14:4f:8f:2b:4b:51:
2f:6d:f1:42:0d:0b:33:65:15:93:a4:2f:5e:cc:59:
64:58:eb:00:dc:43:8a:60:b4:d3:78:25:ff:f1:c0:
8c:b3:dc:55:87:fb:28:b1:b7:17:df:db:9b:e8:b2:
8d:f3:53:ce:39:03:34:f0:92:72:4c:89:80:8c:a0:
29:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:97:D3:93:91:D2:22:5D:BD:52:01:23:DF:12:5D:38:A0:B2:EC:22
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/FZfTk5HSIl29UgEj3xJdOKCy7CI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8c90::/48
Signature Algorithm: sha256WithRSAEncryption
41:9b:64:77:17:00:69:a4:40:c2:e6:fe:61:46:d6:b7:67:24:
71:4a:26:07:4b:cf:7e:ef:55:a1:9c:a9:e8:c1:54:fe:f7:61:
21:79:25:c3:f2:b0:7f:9e:ec:28:97:7e:a1:c4:f3:ab:b6:b3:
5a:ee:00:21:25:fa:b1:da:00:7e:c5:f5:ee:e1:5c:23:ce:d9:
a3:8c:4d:62:76:a4:ae:88:f0:73:6e:99:d5:64:17:12:4e:3d:
69:41:94:f6:4b:53:44:4f:d1:9e:19:80:79:c7:c6:db:8a:e5:
86:58:a6:a2:4b:4e:a5:d9:31:b2:15:fa:5f:24:23:69:21:07:
13:bc:cb:eb:84:94:7e:d5:73:02:88:ad:d2:3c:b3:65:b7:18:
63:5a:32:0d:29:9b:25:1e:bf:18:5f:fd:50:6b:41:c9:d2:be:
f4:d9:12:7d:4c:85:2a:09:99:dc:94:2a:e6:ad:88:a0:d3:48:
db:65:8a:1d:c4:d1:3e:b0:f1:ab:eb:ef:8c:34:af:48:c8:9a:
d3:97:1c:d8:8a:fe:0a:4b:26:e5:8d:f2:28:95:67:e4:a2:c9:
c2:70:fd:cf:a1:08:3f:03:b0:d6:f3:2a:6a:56:6d:73:19:b7:
98:88:50:21:c7:0e:bb:c6:78:de:7a:18:87:9e:c2:7e:99:e6:
ba:2f:ab:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:27 2023 by rpki-client on console-ams.rpki-client.org