Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/GEtSnDkWBC0Y-3ICZWtgUtcojYE.roa
File: GEtSnDkWBC0Y-3ICZWtgUtcojYE.roa (raw, json)
Hash identifier: oB4qjvEmEUVa4aw4Fj6uMxaGIdYrNEj5w3TL7CncFyU=
Subject key identifier: 18:4B:52:9C:39:16:04:2D:18:FB:72:02:65:6B:60:52:D7:28:8D:81
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 0184D26BA651EDFDBF14F95D3CAC2F2F43DA
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/GEtSnDkWBC0Y-3ICZWtgUtcojYE.roa
Signing time: Fri 02 Dec 2022 10:39:41 +0000
ROA not before: Fri 02 Dec 2022 10:39:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 2a0c:9a40:8060::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d2:6b:a6:51:ed:fd:bf:14:f9:5d:3c:ac:2f:2f:43:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Dec 2 10:39:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=184b529c3916042d18fb7202656b6052d7288d81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:87:10:6c:15:0e:45:81:43:80:34:e9:35:86:
70:08:38:a0:c9:53:e6:36:8d:89:cb:76:dd:59:35:
c0:b9:49:fe:06:0c:30:c2:2b:1e:b1:d9:fc:57:e0:
ad:bf:59:59:17:53:cd:5b:18:a9:b6:ff:c0:e4:e5:
d3:73:38:a4:c6:a1:1f:3d:ec:31:dd:3f:f9:8e:be:
35:d5:9d:81:ab:94:2d:49:3d:16:27:8e:35:cd:04:
66:a4:7c:1c:28:09:8a:fa:24:b4:63:37:53:cc:8f:
99:03:5e:74:d4:b7:98:0f:77:ca:f3:81:b2:fa:7e:
b2:8a:3c:73:b7:fe:3f:57:f5:3b:97:45:f8:c2:3b:
13:8b:5d:5d:ba:a1:1d:8d:05:11:fd:ab:d3:aa:0d:
5c:0e:b6:0c:59:54:d6:c8:cf:19:bd:b2:38:5f:ef:
4e:c4:2b:46:d4:82:9e:6b:4c:6c:c3:d4:d9:37:00:
01:38:b3:5d:ac:ec:a1:97:a1:a8:57:7f:00:73:07:
cb:da:d5:53:8c:fc:3d:0b:d9:53:6d:d4:76:74:ca:
40:a5:8c:ee:d7:c7:74:a8:51:67:3f:b6:e0:0d:64:
db:ca:7c:bc:14:8e:8f:87:84:55:9d:fb:8a:c9:d8:
1e:e3:54:58:47:de:7f:42:84:41:b9:c1:6b:80:a0:
37:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:4B:52:9C:39:16:04:2D:18:FB:72:02:65:6B:60:52:D7:28:8D:81
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/GEtSnDkWBC0Y-3ICZWtgUtcojYE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8060::/44
Signature Algorithm: sha256WithRSAEncryption
18:24:9f:b7:8d:1c:9e:4e:fc:21:a1:34:be:d6:6c:35:8e:fe:
47:5f:37:5f:b4:51:5d:0a:6c:69:7d:9a:25:51:c0:ba:54:a6:
21:ee:a0:07:ac:46:25:bf:e0:fa:4b:97:b7:09:4d:45:fa:19:
91:3b:e4:2f:b2:e8:1d:71:05:3b:cc:16:87:ea:83:78:be:b0:
3e:a1:ec:37:63:b4:df:56:23:34:97:65:49:25:3e:3d:ba:8d:
05:94:7f:66:e8:31:d0:5b:09:ff:5d:78:a4:46:8b:d2:8a:09:
32:81:89:3a:35:e5:4c:93:97:f7:6d:db:94:2a:1a:38:1f:ec:
76:05:90:02:75:cf:40:78:6d:ee:e6:7f:f3:ca:7b:89:a7:f8:
6c:1f:c9:b9:b6:12:05:92:fe:66:41:dd:34:dd:1d:0c:28:11:
50:49:76:c6:f2:54:fb:9a:62:21:2e:57:bd:c9:5b:ab:e3:a6:
53:d5:9b:20:c3:20:86:1b:ab:e5:01:d7:e9:8b:17:ae:42:1a:
01:ef:26:76:b4:4c:c6:8f:a3:64:08:89:28:11:06:c0:2f:70:
56:dd:ed:fa:d2:f7:36:fb:29:55:8e:da:42:a4:57:37:50:b7:
c9:0f:0a:72:61:3f:c9:f8:b1:4e:86:86:c6:2a:ac:53:8f:7a:
50:ef:68:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:15 2024 by rpki-client on console-ams.rpki-client.org