Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/G4Pj7M-Tq9nnQdL8OlKHKor0xmU.roa
File: G4Pj7M-Tq9nnQdL8OlKHKor0xmU.roa (raw, json)
Hash identifier: 0PvqwslKpknW2RYc7Fkk2LR4wTZivzkzR80EHAqTh7w=
Subject key identifier: 1B:83:E3:EC:CF:93:AB:D9:E7:41:D2:FC:3A:52:87:2A:8A:F4:C6:65
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 0BF00DCE
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/G4Pj7M-Tq9nnQdL8OlKHKor0xmU.roa
Signing time: Sat 01 Jan 2022 12:55:07 +0000
ROA not before: Sat 01 Jan 2022 12:55:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212983
IP address blocks: 2a0c:9a40:8180::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 200281550 (0xbf00dce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 1 12:55:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b83e3eccf93abd9e741d2fc3a52872a8af4c665
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:92:52:95:49:3c:48:98:11:9c:2a:8a:63:80:
42:07:88:83:7c:49:54:13:fb:05:aa:bd:3f:f4:92:
aa:51:a5:ba:e9:3a:b4:ce:40:c1:69:91:07:e6:36:
9a:49:cc:01:94:4a:f4:ce:03:d1:d5:e7:83:b2:69:
6e:33:8d:ba:4e:15:f9:d1:64:fe:f2:cd:84:c2:fb:
07:46:29:a6:03:a3:e2:e9:75:4a:f9:7b:e6:72:dc:
b6:24:e2:76:2b:c3:55:24:68:f5:3d:c2:f1:96:43:
92:ef:af:63:ce:b2:61:22:90:74:96:72:d0:57:12:
10:84:30:03:c3:b1:3b:05:f7:2c:22:1a:b9:3b:32:
f4:14:51:78:37:b0:02:df:01:b4:7e:78:2d:63:27:
05:9a:8c:f8:63:00:f5:df:5e:65:64:cf:3f:a0:77:
7c:33:28:03:76:fd:26:ae:da:05:25:ae:36:7e:30:
d2:87:71:f2:c9:c7:6f:35:6b:31:ff:1d:13:ca:72:
e9:73:66:b9:e7:09:63:1c:2e:9d:2c:a7:b8:f8:e7:
2e:cf:38:05:22:b0:27:99:43:61:f1:42:c6:a8:03:
88:1a:6c:29:f2:92:8a:2a:27:e6:5e:2c:86:86:68:
d9:9f:63:f3:99:1c:6b:3e:da:0d:51:8c:1d:63:16:
95:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:83:E3:EC:CF:93:AB:D9:E7:41:D2:FC:3A:52:87:2A:8A:F4:C6:65
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/G4Pj7M-Tq9nnQdL8OlKHKor0xmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8180::/48
Signature Algorithm: sha256WithRSAEncryption
2b:1a:8c:0a:1f:27:55:21:46:73:c8:37:5f:ea:b7:9f:c3:50:
c9:71:7d:b7:f9:e0:28:02:2a:5b:c6:0a:44:5e:28:6c:4e:77:
4f:b5:32:24:02:3d:3d:2e:7d:4c:8e:24:69:c9:2d:04:dd:93:
95:b4:d3:05:02:18:56:de:9b:cd:c6:dd:bb:7f:3f:e3:be:db:
32:86:9c:65:1e:ba:07:d5:89:b5:d4:f2:77:0d:cf:9c:fb:2e:
1e:9f:75:9a:2d:45:57:16:1c:85:05:70:31:be:03:f9:bc:8b:
5d:8c:b3:db:84:3a:43:54:d6:2d:ca:72:8b:55:98:0d:ee:17:
06:e0:73:59:61:56:c0:02:e2:01:16:2e:fd:7e:d7:f5:31:e2:
89:c5:33:7f:b1:5a:da:05:60:b4:b4:91:f3:12:9c:0a:0e:ec:
ca:ec:06:62:f4:60:a8:40:4f:e7:95:26:ae:78:f1:97:77:57:
f6:bf:46:6f:fc:be:58:1c:f5:af:78:c0:a1:c0:0a:fe:a2:58:
e5:2c:72:33:a5:05:af:9b:9b:d8:40:7e:46:bd:88:18:27:c1:
9d:81:dd:9a:7d:b9:dd:d1:41:8e:1e:df:ba:17:99:89:17:f0:
95:3f:54:e0:56:50:dc:4e:c6:d9:81:23:c0:78:66:f0:f2:15:
9e:2e:86:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:34 2023 by rpki-client on console-fra.rpki-client.org