Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/gRwplZ98jKYTwuKf38VCLFDiwyI.roa
File: gRwplZ98jKYTwuKf38VCLFDiwyI.roa (raw, json)
Hash identifier: iAYefttXRBu+5SjNiZburOpuVJpZ9kua7HUMk9EKzy4=
Subject key identifier: 81:1C:29:95:9F:7C:8C:A6:13:C2:E2:9F:DF:C5:42:2C:50:E2:C3:22
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018345CCC50EA01AB4A696DA598CEE75BABC
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/gRwplZ98jKYTwuKf38VCLFDiwyI.roa
Signing time: Fri 16 Sep 2022 10:16:31 +0000
ROA not before: Fri 16 Sep 2022 10:16:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210529
IP address blocks: 2a0c:9a40:80c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:45:cc:c5:0e:a0:1a:b4:a6:96:da:59:8c:ee:75:ba:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Sep 16 10:16:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=811c29959f7c8ca613c2e29fdfc5422c50e2c322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:88:13:9d:63:02:38:19:fe:54:ae:7d:54:67:
96:12:80:3e:fb:3f:76:3f:95:58:d8:f5:93:63:b8:
59:cb:cf:86:43:79:2b:a6:62:94:4b:aa:04:77:18:
84:3e:55:01:d8:8b:78:5e:f8:d0:ca:3b:bc:5b:ed:
84:d1:4a:02:4e:c8:c1:b2:af:b2:6b:7a:5a:eb:8b:
66:ae:12:4b:64:dd:b0:18:20:e5:d7:f0:a8:38:aa:
87:c5:77:9a:d3:41:4c:73:c6:bc:f5:89:0b:6a:9a:
5f:ce:33:21:c9:61:8d:cc:b6:62:5a:b8:db:8d:b5:
68:d1:bd:0c:bd:f3:e8:fc:02:9e:07:18:5a:3d:87:
dd:bc:f1:47:1d:f8:92:97:a1:a1:f5:2a:40:46:1d:
d9:8c:ed:f9:ce:b9:0e:32:3f:c0:a9:d3:96:69:b3:
56:7b:95:18:dd:2c:4b:f5:6f:5f:5b:4a:36:53:03:
ce:91:ab:31:ba:a4:03:f0:0a:be:df:b5:cc:4c:ed:
64:8d:25:77:c6:07:25:3f:89:9b:f7:a6:6b:91:12:
b6:cd:a7:6b:da:27:b7:78:f3:fd:e5:2c:fd:30:45:
a2:83:82:aa:87:5c:6d:37:ae:99:4f:55:ed:c5:f1:
05:ec:d4:cd:7d:1e:1e:06:90:cb:8f:cb:56:69:61:
15:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:1C:29:95:9F:7C:8C:A6:13:C2:E2:9F:DF:C5:42:2C:50:E2:C3:22
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/gRwplZ98jKYTwuKf38VCLFDiwyI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:80c0::/48
Signature Algorithm: sha256WithRSAEncryption
b2:8f:18:26:b9:4f:2a:8e:dd:c7:68:6a:ba:5a:77:e2:23:c6:
2d:69:ba:dd:38:9a:ee:11:af:ca:a2:f7:3e:0e:66:d8:e1:9a:
66:04:61:c0:ae:fc:b1:0b:bb:93:bc:a4:65:cb:19:c2:ba:eb:
93:ba:0f:8a:ca:0d:70:f2:9f:5a:83:ca:d5:6e:e5:a4:9a:02:
d2:8c:e9:5b:a6:3d:34:1f:d1:8c:d0:c3:7f:e0:44:02:1f:f9:
bb:fb:dc:27:fd:ce:7d:93:fc:7f:24:b6:f3:ae:d0:b5:43:91:
55:c0:79:84:10:99:aa:0b:26:8a:23:bb:02:50:31:bb:ec:04:
6d:d9:bd:44:e8:44:58:73:88:4c:7d:47:f4:46:24:85:b6:07:
bf:b7:dc:18:71:f3:5f:e9:8f:f0:27:25:c3:e7:11:12:b2:e7:
ec:bd:a6:1f:19:78:ce:9e:3d:ac:81:26:cc:14:36:85:97:5f:
07:e2:b4:4f:c7:3d:7d:f1:9a:ac:fc:d0:08:66:85:e4:ed:d6:
e7:bf:33:60:cf:ed:d3:53:2f:c1:7c:5a:d3:ae:63:30:a8:39:
6f:57:c9:f3:36:ab:e8:a3:07:1a:66:01:49:81:7c:35:ae:c2:
82:31:c8:9c:55:fb:0d:14:8c:8d:94:96:30:09:19:06:45:89:
ba:31:9c:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:28 2023 by rpki-client on console-ams.rpki-client.org