Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/JwEsB4U15W9aff_I0nY2tStHJZ4.roa
File: JwEsB4U15W9aff_I0nY2tStHJZ4.roa (raw, json)
Hash identifier: x32B1V9Vu/F34ToXy147dbbgqO/5RzSeqIJrVwo1XDQ=
Subject key identifier: 27:01:2C:07:85:35:E5:6F:5A:7D:FF:C8:D2:76:36:B5:2B:47:25:9E
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018345CCBFC13C28C9128B64F76BE70CD7FA
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/JwEsB4U15W9aff_I0nY2tStHJZ4.roa
Signing time: Fri 16 Sep 2022 10:16:29 +0000
ROA not before: Fri 16 Sep 2022 10:16:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50131
IP address blocks: 2a0c:9a40:808d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:45:cc:bf:c1:3c:28:c9:12:8b:64:f7:6b:e7:0c:d7:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Sep 16 10:16:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27012c078535e56f5a7dffc8d27636b52b47259e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:f3:1c:ab:ef:45:86:e1:17:47:87:69:ab:3c:
87:58:6e:17:bf:80:3e:83:08:64:2d:9c:59:c2:2e:
af:49:94:ac:81:c7:e1:8c:d5:48:1f:f5:69:16:c0:
27:85:dd:e5:b7:c8:23:90:97:5e:26:5d:fe:df:e3:
b7:49:91:96:52:c0:03:18:65:f8:ef:d5:a3:df:f5:
96:ed:aa:2c:84:fe:b1:ea:5b:78:3a:fb:7f:98:48:
1a:6b:3d:81:e1:ff:4b:ce:5c:68:68:9b:c5:b0:d3:
0c:5d:78:ab:76:72:49:c6:8e:ca:95:b7:53:32:e0:
91:9d:e8:95:6a:f6:08:c3:15:ca:8c:42:ba:cc:dc:
a5:2d:f0:53:0a:37:c5:bc:15:0f:1f:2b:cd:b9:11:
53:30:63:67:62:58:eb:8a:e2:c1:6e:5b:ff:8e:e0:
89:bd:0b:cc:e8:fa:06:0c:4f:44:47:6b:cc:d1:75:
da:17:41:3d:fc:29:4b:b6:bb:03:38:36:33:fc:c0:
b0:17:08:11:b7:87:71:21:62:3a:2c:53:0e:84:f1:
c0:bd:7e:b8:2e:c3:b5:7f:60:e7:0c:47:96:6b:b5:
47:88:e9:5c:8c:a1:05:06:17:ab:26:d8:ed:f2:74:
a2:57:8c:27:1e:99:bd:29:e0:28:36:ce:64:38:71:
29:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:01:2C:07:85:35:E5:6F:5A:7D:FF:C8:D2:76:36:B5:2B:47:25:9E
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/JwEsB4U15W9aff_I0nY2tStHJZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:808d::/48
Signature Algorithm: sha256WithRSAEncryption
6a:6c:fb:f4:be:c4:c4:09:16:e3:38:03:82:0a:2e:74:c5:3c:
f9:9a:03:95:45:cb:1d:da:03:86:76:ff:2b:1c:f4:b9:ad:c6:
a4:25:6a:61:15:30:0c:83:d5:b5:10:65:ad:f7:81:f8:d6:d4:
ed:23:9e:c0:71:ba:66:a4:4f:7e:00:ac:b3:08:3c:ca:d7:4a:
35:e8:77:77:1a:c8:74:da:40:2b:03:57:51:df:1c:97:99:0f:
a7:7d:8d:2a:b5:f3:72:a4:30:31:b2:cf:ac:36:55:51:05:bd:
d1:21:c1:79:b8:6e:f0:0c:bd:15:cd:c9:be:b0:c6:b9:bf:7f:
42:fb:86:39:ec:1f:f0:a7:b0:e9:3e:85:f2:9b:54:89:d3:95:
b0:39:00:b2:fb:4a:4e:e9:f0:43:fd:5c:09:50:3f:af:e5:f5:
7b:5e:13:3b:98:cb:cf:32:a0:ff:4e:ee:24:b9:45:83:ac:fe:
65:9f:30:81:46:88:3a:dd:4f:5b:c9:08:33:34:e2:59:7c:da:
21:72:1a:64:2a:f9:2d:1d:16:de:a9:fa:49:a9:49:90:74:a3:
2a:f1:4b:1e:ca:6a:01:37:ea:57:b8:4d:5f:69:ef:8a:7b:7a:
29:28:bb:b7:a7:25:8b:b1:81:56:87:ff:43:06:41:ab:b0:11:
ab:08:26:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:28 2023 by rpki-client on console-ams.rpki-client.org