Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/aqeDEHziKpheQ76pdY1WCqhoKlg.roa
File: aqeDEHziKpheQ76pdY1WCqhoKlg.roa (raw, json)
Hash identifier: 1QIhPhKEXHFdHmzezr/vhkMuS8h1Wrw410OfNmk9BZA=
Subject key identifier: 6A:A7:83:10:7C:E2:2A:98:5E:43:BE:A9:75:8D:56:0A:A8:68:2A:58
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018345CCBF6E3BFE4DB55B4F02C8569215A0
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/aqeDEHziKpheQ76pdY1WCqhoKlg.roa
Signing time: Fri 16 Sep 2022 10:16:29 +0000
ROA not before: Fri 16 Sep 2022 10:16:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49367
IP address blocks: 2a0c:9a40:8083::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:45:cc:bf:6e:3b:fe:4d:b5:5b:4f:02:c8:56:92:15:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Sep 16 10:16:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6aa783107ce22a985e43bea9758d560aa8682a58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:27:60:76:8e:cf:c0:37:98:33:d2:32:c8:f3:
ae:67:aa:54:5b:7c:a4:b3:6c:a1:fa:65:67:d5:9d:
71:ac:c5:55:e5:7f:f6:a9:f1:28:b6:6b:37:d6:37:
1e:82:e3:79:5d:f1:20:42:af:83:b0:86:3a:a0:d9:
2d:54:74:af:22:13:fa:0a:75:c5:a6:62:df:0b:81:
fa:7d:22:82:23:bc:0c:51:d6:00:0c:c2:a1:eb:ee:
20:88:b5:d9:5e:6e:85:73:fe:81:8c:5e:96:c3:fe:
72:ed:a0:2e:14:65:92:99:eb:d5:2f:6f:49:f4:6a:
d7:1c:e4:ca:1f:46:cc:ee:d8:ca:6d:29:37:c0:48:
f6:54:3b:b7:e1:76:bc:1a:be:a6:8a:5e:fe:62:07:
1b:76:e6:a9:41:21:fe:0c:77:8c:bc:cc:82:b5:2a:
51:54:2e:57:c4:a3:0d:fb:79:e4:11:67:22:0a:f8:
37:d9:db:9c:0b:f0:37:29:64:4a:8d:33:f2:f7:39:
61:77:53:8c:8f:08:10:f7:2c:57:fa:85:ce:41:20:
f9:fd:59:66:12:09:36:65:6c:ed:3f:4a:10:8f:db:
9e:03:ce:c8:1d:60:61:63:47:0b:af:6e:1e:24:cd:
2c:86:fe:84:85:e4:ef:69:3d:7c:98:f7:89:ff:48:
87:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:A7:83:10:7C:E2:2A:98:5E:43:BE:A9:75:8D:56:0A:A8:68:2A:58
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/aqeDEHziKpheQ76pdY1WCqhoKlg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8083::/48
Signature Algorithm: sha256WithRSAEncryption
cb:d1:7c:61:c2:73:46:0c:b4:b3:2c:ea:44:43:1c:2f:e7:d4:
f7:72:ec:cd:f9:aa:f9:9a:fb:03:92:d0:15:07:55:29:7c:ba:
21:2c:ee:90:6b:82:d3:6f:88:ed:ab:43:59:e4:67:05:f0:aa:
fa:fb:c9:30:ca:91:ed:1c:eb:8f:bd:11:06:c5:61:88:c4:1a:
2a:ab:13:e4:65:1e:38:a0:e7:80:15:a1:15:aa:00:8c:02:bd:
54:46:5b:8e:69:02:5c:3c:b5:a0:47:c0:12:84:b4:91:49:e7:
bf:49:71:76:ed:42:fd:b8:49:64:db:99:d1:9d:a2:ba:2f:82:
21:2b:39:2b:ef:bb:7f:27:5c:3a:eb:18:8a:32:05:91:25:30:
71:31:a6:5f:bf:92:db:98:c0:a3:41:52:ee:2a:f2:85:d9:f2:
aa:90:b3:ee:2f:5c:42:88:f1:16:f0:ab:7a:41:da:6a:80:06:
11:75:be:9d:78:24:02:5e:e8:4e:bf:2f:3e:db:41:47:5d:59:
75:00:b4:e9:83:d6:f8:d5:dc:7d:32:48:50:77:6d:68:19:36:
75:09:e2:f0:f8:8a:e2:8d:5a:30:6a:8e:40:a6:2e:a0:62:ad:
96:c5:d9:0c:5f:1e:bf:13:38:b2:ca:73:c2:8e:03:de:20:66:
01:b9:75:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:34 2023 by rpki-client on console-fra.rpki-client.org