Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/ifrI7y-NMtEPZfYl1-SyRgaabDY.roa
File: ifrI7y-NMtEPZfYl1-SyRgaabDY.roa (raw, json)
Hash identifier: T9+gEE1866s4t+6/wpFQjep87+pzhQJx5YjqQxN1zuY=
Subject key identifier: 89:FA:C8:EF:2F:8D:32:D1:0F:65:F6:25:D7:E4:B2:46:06:9A:6C:36
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 0182FAED29BD10A8B22A10D7B37130CDE815
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/ifrI7y-NMtEPZfYl1-SyRgaabDY.roa
Signing time: Thu 01 Sep 2022 21:20:22 +0000
ROA not before: Thu 01 Sep 2022 21:20:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203062
IP address blocks: 2a0c:9a40:9100::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:fa:ed:29:bd:10:a8:b2:2a:10:d7:b3:71:30:cd:e8:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Sep 1 21:20:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89fac8ef2f8d32d10f65f625d7e4b246069a6c36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:99:1a:87:95:b4:03:3d:6b:69:c1:6e:66:aa:
c5:0b:2e:60:86:0f:39:79:88:b9:c4:85:4e:c6:96:
2e:fd:ba:a2:36:f5:b8:ca:92:08:02:8f:ef:dc:ee:
6e:1e:dd:c5:71:01:8d:b4:e9:98:3b:12:05:17:05:
30:f9:26:b1:7e:b9:31:bd:a7:50:ec:5b:38:19:7b:
31:68:8d:db:0f:3f:ec:fc:f6:7f:4c:79:90:e5:d5:
24:27:b7:b6:b6:e4:6c:c7:0c:66:9f:ab:b4:c2:fe:
0f:f6:ba:0b:20:09:c9:2c:66:39:df:8b:cd:b2:47:
60:b1:80:93:5e:23:04:dd:b7:9b:03:36:60:35:a1:
fc:79:67:6d:9c:18:c9:c7:52:d6:10:47:0b:24:84:
e6:1b:c0:73:5a:e8:54:72:6d:15:f7:a7:c4:cc:d6:
ea:8b:a9:ee:ec:e3:e2:22:d9:28:b0:da:d5:e3:56:
66:84:5e:1b:af:90:d3:ed:1b:51:7a:10:77:12:03:
1c:a8:b3:29:52:e8:9c:3a:19:63:2e:0a:2d:04:ad:
92:25:ac:19:b1:79:41:f5:e9:30:47:5f:51:f0:0e:
41:20:b9:b8:d5:e3:48:e4:2a:91:6e:9e:3d:10:02:
27:69:c7:36:d8:ea:a9:dd:d1:26:99:e4:66:79:33:
d7:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:FA:C8:EF:2F:8D:32:D1:0F:65:F6:25:D7:E4:B2:46:06:9A:6C:36
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/ifrI7y-NMtEPZfYl1-SyRgaabDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:9100::/40
Signature Algorithm: sha256WithRSAEncryption
22:5a:d2:18:f4:87:27:b5:0a:e4:46:e3:70:3e:7e:db:2d:f4:
bd:74:39:dc:d6:55:49:67:81:42:96:7d:c1:d9:b8:40:49:46:
bb:cc:63:ef:4a:e1:4b:75:49:2a:f0:83:c9:ce:df:97:fc:42:
c0:ca:39:e9:77:e3:68:d0:1e:77:31:31:ff:c1:2e:f1:bf:10:
b1:24:05:ef:45:51:34:14:66:6a:b2:d6:a8:4a:07:85:e6:31:
9e:52:e4:6a:db:ab:5d:90:85:83:57:83:3a:57:3e:ba:50:58:
73:65:34:53:c9:6a:bd:79:62:20:42:16:d1:cf:4b:e0:c9:eb:
9a:6e:44:6e:17:45:86:26:a9:92:88:5e:98:55:57:e4:20:4c:
09:6b:01:47:ea:5f:41:4d:8c:a5:d2:01:92:2c:31:27:62:a3:
98:3a:31:10:ce:09:14:b7:d5:55:51:47:38:de:c6:c5:32:e3:
86:23:5c:73:25:3a:d1:44:61:7a:2d:27:8c:10:5c:2c:ef:ab:
5d:ea:77:4d:e0:9a:55:4f:02:42:8b:a5:da:b8:dc:bc:e9:4a:
6b:69:dc:5c:5d:17:64:15:1c:4f:e7:56:74:6a:35:e3:33:b9:
ff:58:b8:68:32:bb:48:2f:92:58:eb:2e:d2:09:87:90:79:38:
21:d6:72:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:28 2023 by rpki-client on console-ams.rpki-client.org