Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/ObRd4ULuqlZvnB_uLuq8KY0_5qQ.roa
File: ObRd4ULuqlZvnB_uLuq8KY0_5qQ.roa (raw, json)
Hash identifier: Ri/CSNCg+qU7ysh49/2FGLx7SltVZj5vdywcjtEUe1s=
Subject key identifier: 39:B4:5D:E1:42:EE:AA:56:6F:9C:1F:EE:2E:EA:BC:29:8D:3F:E6:A4
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018374D76FE7FAA94CD0CA3B756A860274D1
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/ObRd4ULuqlZvnB_uLuq8KY0_5qQ.roa
Signing time: Sun 25 Sep 2022 13:30:19 +0000
ROA not before: Sun 25 Sep 2022 13:30:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202827
IP address blocks: 2a0c:9a40:9200::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:74:d7:6f:e7:fa:a9:4c:d0:ca:3b:75:6a:86:02:74:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Sep 25 13:30:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39b45de142eeaa566f9c1fee2eeabc298d3fe6a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e1:2e:6e:f3:0f:f8:fb:03:20:a7:92:a5:b8:
3c:bc:cc:76:1a:6a:61:c6:d4:2a:42:0e:a0:17:e2:
a1:b2:04:63:c5:84:8a:f8:f7:ab:45:e1:aa:8e:7e:
d0:a1:77:7d:b8:0a:58:43:9d:21:7b:96:71:80:61:
05:68:85:8b:d8:b5:d1:b6:98:f8:98:e8:8c:a3:44:
0e:19:35:63:d3:6b:b2:31:d4:21:39:d8:98:cc:14:
eb:81:59:76:d1:29:f3:50:de:07:57:ec:94:16:7d:
68:0a:4a:94:05:a5:4f:ad:90:52:29:1e:e1:98:c9:
9f:69:ca:0a:27:7d:6b:ca:1a:a7:fa:5f:c6:60:48:
8b:a6:1c:dd:b5:fc:27:1c:26:6e:75:b3:eb:26:f8:
d8:83:0a:d5:f7:d6:17:e1:22:1f:08:2a:dd:ec:d4:
f4:eb:25:f5:d3:96:6f:13:6c:f2:71:5a:76:87:c0:
67:51:e0:ad:82:17:80:7e:50:aa:98:d0:cb:66:e5:
bf:e4:e8:6d:f4:44:0c:67:42:09:7e:47:14:34:c2:
3c:c8:d5:b6:29:ad:07:85:f1:7e:c7:97:ee:c2:f7:
98:c7:ee:a7:36:76:60:6c:3b:d4:b1:af:09:11:c3:
9c:22:fd:19:05:a7:2b:98:84:02:84:13:58:2f:01:
11:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B4:5D:E1:42:EE:AA:56:6F:9C:1F:EE:2E:EA:BC:29:8D:3F:E6:A4
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/ObRd4ULuqlZvnB_uLuq8KY0_5qQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:9200::/40
Signature Algorithm: sha256WithRSAEncryption
58:08:ce:25:01:99:03:50:8e:a4:28:d4:87:80:47:f0:11:30:
2f:5b:22:85:f8:bb:30:a5:8a:a7:14:c3:e5:19:32:40:2a:80:
c9:66:99:d1:f2:29:e8:09:02:f0:55:10:9e:c5:8d:7d:d1:53:
67:24:67:93:f4:ee:e5:bd:da:02:2b:fc:5c:e5:86:a9:a9:84:
b9:22:36:d7:f4:c2:f3:7c:f9:b6:5b:bc:95:56:8e:53:39:f1:
5a:dd:a6:bf:69:8f:81:a1:c7:3f:b0:ac:e7:a6:c0:ff:a6:62:
d0:4f:ca:96:39:53:bf:24:dd:af:ee:cd:30:7e:2f:71:82:fd:
1c:29:31:38:8a:ca:4a:29:d8:4f:92:8d:83:ce:40:04:df:82:
43:74:cb:b5:58:c6:52:3b:b5:51:2a:e9:32:75:af:a6:54:77:
58:ea:2b:6a:c6:80:c8:b3:47:7c:18:84:09:44:3b:e1:96:1c:
8f:8c:bd:53:b6:78:e8:09:59:0b:92:58:46:67:fa:0d:46:f3:
7f:1f:7c:6f:ed:54:fb:ba:c2:3d:58:13:df:fa:95:a7:8f:f4:
f9:ec:c7:43:c2:d3:64:b1:a4:f6:9d:e6:45:62:c2:4f:3f:b2:
5e:93:72:ea:e5:43:ce:54:e3:4c:a0:9a:81:0a:26:de:ed:dc:
a7:6a:56:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:34 2023 by rpki-client on console-fra.rpki-client.org