Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/bsg4nEsmt3V2g9cNcwJvDxZjI-Q.roa
File: bsg4nEsmt3V2g9cNcwJvDxZjI-Q.roa (raw, json)
Hash identifier: SPAiyOaGNNF731WHnHEimoyYG8RayOlk8KviPKnS/EY=
Subject key identifier: 6E:C8:38:9C:4B:26:B7:75:76:83:D7:0D:73:02:6F:0F:16:63:23:E4
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 0BED2D02
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/bsg4nEsmt3V2g9cNcwJvDxZjI-Q.roa
Signing time: Sat 01 Jan 2022 12:55:06 +0000
ROA not before: Sat 01 Jan 2022 12:55:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211738
IP address blocks: 2a0c:9a40:82d0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 200092930 (0xbed2d02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 1 12:55:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ec8389c4b26b7757683d70d73026f0f166323e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:5d:7c:fc:b2:8d:b4:9a:66:bf:7f:f0:7f:08:
a0:da:86:4f:4a:62:8d:ab:dd:c0:a5:fb:86:7f:32:
41:3f:e1:9a:e5:12:66:42:a0:cc:c9:f4:01:ec:fc:
12:ac:db:6b:a0:49:68:9e:40:49:fd:33:66:b0:c9:
34:fd:be:eb:f1:3e:4d:2a:49:ac:34:75:40:7b:d9:
ab:56:27:2e:c7:e4:85:63:2c:47:72:7d:68:b7:63:
f9:0a:76:b0:67:c2:b4:bc:ae:9b:62:63:cf:48:83:
6a:36:f0:00:8e:21:bb:84:a6:49:e4:e5:73:01:0e:
36:e5:6d:e7:52:25:3d:33:ca:75:55:7d:2d:1b:4f:
ed:b0:5f:a3:29:47:57:13:ce:54:12:5f:c9:79:25:
5c:1f:c3:67:d7:8e:8b:c5:f0:52:dd:e1:85:9a:97:
76:b2:85:3c:5d:85:74:4a:78:b3:b3:b0:21:37:fe:
01:e9:56:39:82:cc:f9:8c:b0:9b:03:73:4d:a8:9b:
7f:c0:32:98:c4:79:4e:5a:fb:26:e5:87:7e:14:6c:
55:c8:8e:4b:7c:42:af:11:10:34:e0:1c:fd:f6:fc:
57:d2:93:d5:65:9b:60:79:56:2c:3d:20:01:40:03:
ee:4f:b9:3b:ae:7c:3b:78:fe:ab:f6:f8:47:2b:f6:
7a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:C8:38:9C:4B:26:B7:75:76:83:D7:0D:73:02:6F:0F:16:63:23:E4
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/bsg4nEsmt3V2g9cNcwJvDxZjI-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:82d0::/48
Signature Algorithm: sha256WithRSAEncryption
77:77:a3:c2:4d:7a:42:83:63:75:af:6e:11:b3:d8:8e:82:bd:
16:96:88:0e:7e:76:86:32:f6:c8:8d:c0:97:af:7e:f5:1d:61:
1f:37:e6:56:9e:86:76:29:b0:58:38:c0:89:d4:3e:4f:d4:76:
b8:16:b8:45:05:9d:85:15:b9:d5:ef:41:60:c7:36:0a:ce:d4:
f9:8e:13:1d:45:20:6f:0a:5f:be:db:0c:c1:74:71:a4:18:45:
ec:2b:50:6f:8c:5b:1f:48:9d:af:20:b6:7f:8b:00:3e:f7:a1:
44:5c:28:12:83:89:11:30:ce:92:b4:31:35:5b:8c:f6:2a:16:
d6:c7:c1:c1:4e:14:43:1b:be:09:31:d6:23:b7:29:02:a7:a1:
a7:fb:1d:e4:21:92:76:d1:55:b8:ac:6a:31:4c:98:03:55:60:
6e:ca:1f:4c:5f:f2:96:7d:8d:ab:62:32:65:dd:71:b3:e2:cc:
e3:c9:c4:45:ed:a7:8a:00:46:2d:5b:8a:02:52:16:7a:90:a9:
8e:4e:20:72:1e:6a:de:85:fd:39:cd:59:87:3e:99:4e:df:48:
8c:7d:61:e9:31:4d:ce:a4:68:78:4c:a6:34:f8:85:17:92:af:
b7:ec:5d:26:0f:58:ef:39:fb:79:4e:30:0c:c3:75:45:37:e3:
cd:ba:4f:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:34 2023 by rpki-client on console-fra.rpki-client.org