Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/u4uoEw059A2o-4uK--ZZ_tkW4uY.roa
File: u4uoEw059A2o-4uK--ZZ_tkW4uY.roa (raw, json)
Hash identifier: oL11j91qkKAzQfpbnBiXpxbSZpir6wQV+Oua8zQ9Xoc=
Subject key identifier: BB:8B:A8:13:0D:39:F4:0D:A8:FB:8B:8A:FB:E6:59:FE:D9:16:E2:E6
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 01833B69B18A3FEAB5DBF9367C5FC0D08828
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/u4uoEw059A2o-4uK--ZZ_tkW4uY.roa
Signing time: Wed 14 Sep 2022 09:52:05 +0000
ROA not before: Wed 14 Sep 2022 09:52:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211760
IP address blocks: 2a0c:9a40:8c10::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:3b:69:b1:8a:3f:ea:b5:db:f9:36:7c:5f:c0:d0:88:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Sep 14 09:52:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb8ba8130d39f40da8fb8b8afbe659fed916e2e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:21:21:c0:92:81:60:eb:bc:9c:9b:32:57:fe:
83:be:ad:6c:11:68:a5:f8:0c:77:2b:15:95:e7:19:
47:3a:8b:5e:ed:ca:f4:0c:86:53:bd:c9:be:73:9a:
5b:f8:3a:ef:05:07:28:d9:43:3d:31:b4:73:24:79:
52:5a:eb:4b:5c:5a:a9:d2:c7:9a:0c:de:de:ad:b9:
77:8c:48:ac:a1:6c:cd:fb:7c:40:a9:a1:36:34:91:
e7:ec:c0:63:4b:a4:2e:5e:87:70:78:9e:7e:0a:db:
fa:25:d8:78:f5:53:d7:4e:7a:85:bc:3b:49:0a:11:
dc:a7:c3:09:c4:89:a1:ab:64:a1:29:91:06:4d:b9:
51:43:15:01:5d:b2:61:45:e6:36:1e:d1:64:ae:51:
5a:b3:05:e7:93:ac:1f:72:b6:a6:41:de:41:f5:89:
b7:47:d8:5c:c8:06:31:bc:6d:64:d9:db:89:04:b5:
0d:f2:f8:06:9a:7c:a2:cf:54:a3:50:a6:c7:45:90:
36:a1:32:df:b8:dd:5c:1b:4d:66:13:9f:93:29:0f:
4d:2a:5b:f6:d8:62:a6:8c:2c:9d:35:41:4f:4f:8a:
04:54:f0:af:ab:0e:de:cf:0b:77:5a:4f:8a:5d:36:
9c:22:52:07:bb:97:0a:5e:66:7f:d8:9a:43:29:0f:
bf:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:8B:A8:13:0D:39:F4:0D:A8:FB:8B:8A:FB:E6:59:FE:D9:16:E2:E6
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/u4uoEw059A2o-4uK--ZZ_tkW4uY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8c10::/48
Signature Algorithm: sha256WithRSAEncryption
b7:d4:68:34:bb:8d:77:f7:97:1d:72:09:a3:51:2d:4e:ac:a6:
c4:a5:6f:e5:1f:41:d0:1a:e8:be:fc:96:33:39:34:cd:49:78:
c2:34:49:5a:17:74:ed:0b:3e:4c:85:ae:57:6d:b4:7d:79:f9:
ca:d9:32:04:35:db:dd:0b:b4:d5:07:eb:7e:d5:22:11:38:ad:
17:41:a9:24:8b:09:62:d2:02:c5:05:3e:47:c2:73:e2:ee:08:
ca:d1:bb:90:e4:94:9b:9f:e4:ab:54:a9:05:98:b5:00:bd:7c:
e5:cd:b1:da:3b:f4:fa:88:b2:1e:8c:11:75:d5:b7:5b:29:d6:
af:24:5c:11:11:80:22:1d:ba:ab:13:0a:bf:99:f7:72:72:66:
fc:da:ec:6e:d8:c2:99:e0:40:55:2b:9a:7d:d3:54:58:0b:a4:
ee:a0:2d:9c:04:4a:63:ea:c3:e1:ff:5b:03:99:eb:78:60:81:
ed:73:22:e1:d0:b8:3b:ba:60:d9:9f:23:be:95:db:31:97:08:
b3:75:08:a1:e5:cc:d1:a6:96:77:8a:e2:4c:3f:7f:b2:71:14:
6a:33:f1:42:d4:07:6c:a8:a9:22:7c:07:48:5d:08:72:3f:9a:
58:a1:f0:0d:9e:54:b7:fd:5d:3a:6d:1b:c9:da:82:e9:5e:60:
c2:62:ee:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:34 2023 by rpki-client on console-fra.rpki-client.org