Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/h1pXeC2Yec1XuE3hzEoadEZXgwM.roa
File: h1pXeC2Yec1XuE3hzEoadEZXgwM.roa (raw, json)
Hash identifier: nYtFEOzhq0cMLN6B88KFJ3+WztBln8NGHL8UsBaG1Q8=
Subject key identifier: 87:5A:57:78:2D:98:79:CD:57:B8:4D:E1:CC:4A:1A:74:46:57:83:03
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018345CCBE2EEB5A83DE58FD4ACC0603A9DF
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/h1pXeC2Yec1XuE3hzEoadEZXgwM.roa
Signing time: Fri 16 Sep 2022 10:16:29 +0000
ROA not before: Fri 16 Sep 2022 10:16:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41108
IP address blocks: 2a0c:9a40:8081::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:45:cc:be:2e:eb:5a:83:de:58:fd:4a:cc:06:03:a9:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Sep 16 10:16:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=875a57782d9879cd57b84de1cc4a1a7446578303
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:34:c5:db:08:6f:73:8e:8e:8f:14:3f:6a:3c:
1b:bc:65:93:e2:b6:83:77:a8:f2:b1:2b:e1:67:fa:
37:06:c4:18:a6:8f:c4:ce:13:39:07:89:77:5c:f1:
9b:08:8c:9a:56:28:43:31:dc:b5:a7:bf:1b:7c:ed:
52:95:a7:ec:5e:79:52:2f:b2:94:0d:6d:2e:3d:78:
e8:50:ee:9f:13:8b:b7:19:71:78:45:94:3d:21:4a:
0f:09:5b:b5:35:af:14:9d:f3:c4:82:1a:19:76:77:
5a:54:db:87:4a:5a:cb:46:b0:07:5c:b3:14:cd:43:
2e:88:d9:ad:88:01:74:48:b4:c7:4b:80:46:bb:9b:
ea:d6:e6:d8:54:71:c9:4c:66:40:3d:e6:0d:af:26:
a6:6c:fd:27:55:ee:c8:4a:0e:81:58:a6:0f:a9:1f:
f7:3c:89:aa:92:12:c1:e3:d9:21:f9:19:9e:bb:1d:
0e:22:d6:0e:7b:74:38:b3:b1:37:d6:64:a7:e5:7c:
4f:b4:31:d5:98:fb:ec:04:59:35:cf:cc:b2:e7:8b:
47:44:00:c6:1b:fa:28:9d:1a:6c:de:74:d4:41:d7:
3e:13:30:eb:c5:98:9f:72:12:15:78:64:6c:63:83:
42:41:1e:10:07:c0:99:55:af:aa:23:11:29:8c:ea:
16:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:5A:57:78:2D:98:79:CD:57:B8:4D:E1:CC:4A:1A:74:46:57:83:03
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/h1pXeC2Yec1XuE3hzEoadEZXgwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8081::/48
Signature Algorithm: sha256WithRSAEncryption
b0:25:d2:43:57:b9:b6:99:89:e6:a8:02:71:7f:eb:9c:df:e9:
0a:99:93:45:16:87:db:2f:ca:a0:65:02:17:a4:d7:d6:b8:0a:
ef:bc:e1:b0:e1:ce:7e:00:14:e1:57:96:94:2b:dd:57:35:2f:
60:97:99:0a:9b:05:67:02:8f:2a:36:f8:cf:45:49:87:bb:7d:
6a:2e:db:7e:0e:9c:d4:dd:e7:6a:6d:bb:1d:9b:cd:1c:ff:61:
68:0e:db:e7:c1:75:e1:c9:15:84:29:57:e0:d0:8c:2b:b3:7c:
84:39:15:1b:6c:4d:f2:2e:e8:eb:b7:4f:5b:19:2b:1e:54:a9:
e0:d4:fc:25:bd:c1:81:ee:4b:d4:b2:e5:92:f5:ac:73:45:4c:
ee:9c:3c:b7:52:d6:4a:8c:f5:04:aa:62:27:f0:3b:b2:dd:03:
0a:e2:f3:6d:1d:82:55:26:99:5b:b7:3f:6a:e6:95:f1:d1:35:
d2:df:63:23:2e:e9:e6:c5:78:c1:91:97:3a:aa:45:b0:cf:77:
4a:bf:a8:dc:78:06:ed:38:80:23:ae:6a:e8:92:78:28:c5:29:
c5:e5:da:c9:9d:80:aa:21:77:af:fa:01:8d:52:fa:b2:65:9d:
45:64:a2:bf:4b:0a:81:7b:7c:50:d1:0f:df:86:24:b4:85:5e:
05:d8:43:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:28 2023 by rpki-client on console-ams.rpki-client.org