Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/GG03EbloTb9QdqNspt9LCXsG4Jk.roa
File: GG03EbloTb9QdqNspt9LCXsG4Jk.roa (raw, json)
Hash identifier: ZIlfCvZsXvk76WuRkAhW83Sf4/IlXYgDvzoV4i/dJ68=
Subject key identifier: 18:6D:37:11:B9:68:4D:BF:50:76:A3:6C:A6:DF:4B:09:7B:06:E0:99
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 0BEE88C3
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/GG03EbloTb9QdqNspt9LCXsG4Jk.roa
Signing time: Sat 01 Jan 2022 12:55:07 +0000
ROA not before: Sat 01 Jan 2022 12:55:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211758
IP address blocks: 2a0c:9a40:8260::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 200181955 (0xbee88c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 1 12:55:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=186d3711b9684dbf5076a36ca6df4b097b06e099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ad:fa:1e:53:f5:55:41:8a:66:f3:63:1e:a5:
22:b6:08:bf:1a:13:14:07:23:89:13:0b:37:84:87:
03:55:70:ec:ca:b2:56:7a:8e:83:b5:44:a5:5e:c9:
5e:8b:f5:43:ac:ac:db:09:ae:9a:5a:3e:53:35:49:
3d:4d:e8:c8:1c:f7:db:96:50:61:bd:c8:c5:b1:4c:
2b:50:4c:b6:72:af:e0:94:41:16:6f:48:54:3e:41:
af:72:8b:f7:6e:0b:34:ed:69:fb:e2:e7:74:78:2a:
5e:a8:f5:32:a8:22:21:78:65:94:ce:11:f4:37:39:
46:a0:28:62:cf:c0:f7:3b:b9:fb:91:8f:f6:fa:8b:
ae:64:0f:23:04:7d:d5:dc:e9:3b:64:cf:05:8e:08:
64:58:69:76:17:84:42:cb:65:fe:bc:6e:e1:2d:79:
dc:57:22:f4:c9:c6:2a:32:0c:06:72:7a:ac:b7:90:
2f:94:27:01:6c:70:a3:25:e0:53:79:0f:ba:14:09:
e1:65:b7:87:b9:68:c6:1b:71:d4:99:84:c6:c6:81:
3a:5e:06:8d:07:f0:df:53:54:10:1d:07:c8:38:08:
8a:e5:00:d6:ad:d6:4d:2e:a4:f5:45:e6:1c:b5:70:
06:07:ad:0a:00:a1:bc:f5:52:d7:a4:2d:38:17:5e:
ec:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:6D:37:11:B9:68:4D:BF:50:76:A3:6C:A6:DF:4B:09:7B:06:E0:99
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/GG03EbloTb9QdqNspt9LCXsG4Jk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8260::/44
Signature Algorithm: sha256WithRSAEncryption
9a:72:64:7d:6c:67:57:9e:7d:fe:41:88:37:e0:7b:da:94:b6:
1f:de:a2:c6:47:41:eb:aa:18:1d:0d:b2:26:3b:1e:ac:df:6f:
91:47:68:fd:2e:7e:a0:76:4b:66:8d:98:77:0c:e5:5f:6d:6b:
7f:db:01:aa:12:ac:af:33:a3:fe:94:bf:7e:b9:a2:0f:0d:40:
62:78:37:5b:af:42:1d:f1:3e:52:3c:d7:da:2f:27:89:f8:d3:
ee:b0:41:ec:23:ae:d3:7b:bd:b5:b6:95:77:4b:97:05:f3:c0:
54:fa:de:f5:61:50:ca:47:30:ba:aa:b8:88:17:5c:ee:2c:75:
98:6b:79:cc:e9:d6:d3:c1:94:b3:b4:2a:5b:f3:d6:72:e1:c1:
cc:dd:a9:50:17:47:7b:40:29:52:30:21:6f:a3:a2:68:46:14:
38:28:f5:3a:ba:0b:45:82:47:39:50:aa:5c:e0:e3:03:6c:0f:
52:37:77:ae:ec:ec:99:aa:3c:ca:99:9b:af:c3:e5:52:81:ac:
4c:2e:ab:11:f4:a1:68:77:bc:ac:4e:db:d8:c3:06:bc:b1:94:
ac:f6:37:ee:a5:34:e9:85:b1:5b:35:cc:93:17:c6:be:3a:40:
ba:b4:29:8e:b7:ce:9f:39:f1:ac:b1:30:b8:59:e6:c5:f1:4d:
d0:e2:7e:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:34 2023 by rpki-client on console-fra.rpki-client.org