Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/IIpQrOiH8v6x-yITgDg_r-MgkoQ.roa
File: IIpQrOiH8v6x-yITgDg_r-MgkoQ.roa (raw, json)
Hash identifier: JdNbqK6xBdwkMXVZhXH1WUJRKF1GsDGZ41fXBLXUIxU=
Subject key identifier: 20:8A:50:AC:E8:87:F2:FE:B1:FB:22:13:80:38:3F:AF:E3:20:92:84
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018345CCBA2B7A08C131250B4CBD9EA430E7
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/IIpQrOiH8v6x-yITgDg_r-MgkoQ.roa
Signing time: Fri 16 Sep 2022 10:16:28 +0000
ROA not before: Fri 16 Sep 2022 10:16:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 2a0c:9a40:82b0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:45:cc:ba:2b:7a:08:c1:31:25:0b:4c:bd:9e:a4:30:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Sep 16 10:16:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=208a50ace887f2feb1fb221380383fafe3209284
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:f4:b7:a4:2a:bd:6c:03:8b:c0:37:62:69:66:
95:cc:61:6d:1d:3f:60:bf:b3:14:8b:7e:61:38:ce:
ac:8e:f8:45:ec:5e:c1:3a:26:a6:ba:58:e6:c9:ef:
02:61:42:4c:3f:5d:79:6c:ed:da:ab:28:69:b6:03:
d3:7e:5b:d4:1b:ef:72:e2:20:91:e4:af:a2:95:32:
1d:25:d7:17:c0:22:9e:10:3a:d0:39:1b:7e:82:c9:
70:0d:11:b3:c1:1d:d6:74:85:54:7c:29:5a:64:27:
7d:38:ed:ea:aa:18:f4:93:84:5c:77:54:c6:5c:59:
13:10:ff:19:c1:50:c2:60:f6:64:c7:60:48:fd:4c:
16:41:02:13:cb:fa:03:a2:d5:33:8a:c0:ee:7f:98:
1c:cb:cb:18:04:5c:1d:5a:57:cc:7c:df:aa:40:b9:
e6:f9:d9:16:84:5c:68:8e:cb:41:70:45:90:4d:d2:
8d:15:08:06:ea:5a:e9:d6:89:f9:8e:2a:50:1f:3b:
20:92:f7:b2:8f:4c:0e:85:1d:ff:46:12:4e:0d:e0:
c6:83:99:05:18:78:fc:7f:f3:91:bd:d1:5f:60:8d:
3c:17:4b:a1:f1:e2:f8:82:ae:48:0b:8f:fe:d9:d4:
8a:2d:25:74:c2:05:07:21:f6:5a:95:84:8f:ff:2d:
e3:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:8A:50:AC:E8:87:F2:FE:B1:FB:22:13:80:38:3F:AF:E3:20:92:84
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/IIpQrOiH8v6x-yITgDg_r-MgkoQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:82b0::/48
Signature Algorithm: sha256WithRSAEncryption
bc:08:ed:fb:9a:99:8c:06:12:76:ca:d5:13:77:d6:95:44:6a:
b3:33:29:ae:35:a2:94:76:38:86:e0:52:d7:80:2a:16:1c:14:
4f:f0:3c:08:a2:b3:3b:16:fb:89:c3:1f:ae:c1:c3:28:1b:1e:
23:3b:9d:0e:c4:4a:d9:63:39:42:23:17:93:a2:f3:8e:21:fe:
9d:a5:ff:d3:20:4d:fe:1f:81:09:68:a1:d0:f8:e5:8a:94:41:
43:3a:2c:11:54:37:26:f6:84:99:a2:fc:bf:d7:a5:d7:87:57:
f3:d3:eb:29:4d:3f:87:a9:33:30:54:67:1d:35:bb:57:b9:56:
9e:cb:ca:d4:b9:be:d6:60:36:57:08:d6:68:0f:80:05:0f:ad:
97:52:ce:ea:1b:10:1b:f2:dd:cd:fb:88:44:6e:28:6b:7f:86:
2e:d9:8b:94:b4:0a:32:fc:55:41:68:84:ca:0a:0a:34:20:50:
6a:17:cb:42:39:a1:24:7d:9f:69:50:0d:9b:cf:a9:4d:b8:a9:
64:5d:9b:b6:a0:fc:a5:83:dd:10:85:51:8b:86:3d:1a:c6:d9:
d8:4d:80:22:b0:62:ce:b3:9e:e9:56:34:a9:d7:f1:ec:d5:52:
f4:54:92:dd:51:89:a0:74:14:7e:81:f0:7a:7d:e7:a7:5d:c2:
24:23:96:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:34 2023 by rpki-client on console-fra.rpki-client.org