Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/uAjJmuLR7rlCkefPwfPmK0L1IFA.roa
File: uAjJmuLR7rlCkefPwfPmK0L1IFA.roa (raw, json)
Hash identifier: z771OeZsrcs3HxNnMZlDxzLdujytFLQsi8Urmr6oskg=
Subject key identifier: B8:08:C9:9A:E2:D1:EE:B9:42:91:E7:CF:C1:F3:E6:2B:42:F5:20:50
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018345CCC0193992E21BD1DB06BF7C57F53E
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/uAjJmuLR7rlCkefPwfPmK0L1IFA.roa
Signing time: Fri 16 Sep 2022 10:16:29 +0000
ROA not before: Fri 16 Sep 2022 10:16:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 53356
IP address blocks: 2a0c:9a40:808c::/48 maxlen: 48
2a0c:9a40:8200::/47 maxlen: 47
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:45:cc:c0:19:39:92:e2:1b:d1:db:06:bf:7c:57:f5:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Sep 16 10:16:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b808c99ae2d1eeb94291e7cfc1f3e62b42f52050
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:ac:65:87:e7:28:bd:34:12:46:4b:92:16:45:
ab:7d:d2:a0:6e:14:9b:84:39:80:e0:48:6c:d7:cd:
ad:ea:6f:6d:31:c9:7b:12:b4:d5:5e:21:49:8b:66:
e0:1b:2d:15:de:76:9e:90:cb:f1:6c:3c:07:95:61:
75:b1:cc:8b:ec:d7:11:b6:e0:6e:3e:87:75:03:4a:
d0:30:b8:22:f4:99:1a:4c:ef:ec:4b:73:8c:b5:9e:
23:4c:29:1c:48:38:44:2e:dd:af:98:b4:9f:13:21:
2e:1d:14:42:6f:ea:24:8b:d1:4c:5c:bb:8c:93:b6:
00:ad:9c:c2:68:82:d0:24:27:a3:25:f7:37:10:75:
4b:70:6f:e7:87:e3:dc:da:9e:8e:d7:ff:ec:0d:8b:
ff:e8:62:12:2a:4a:d3:ad:77:a3:86:b2:86:c6:4f:
d9:77:9d:de:1b:a0:ae:5e:6a:d4:62:a0:13:ce:5d:
0f:df:1e:cf:11:fb:8e:93:57:88:40:6c:3c:2e:fd:
3c:d7:42:9d:6a:05:c5:a5:76:29:b4:3c:15:3a:87:
32:d2:26:db:e9:1a:c0:82:78:20:34:25:9a:a7:70:
b5:3c:7c:05:32:46:1f:07:0c:e0:d0:fd:6b:80:39:
6d:89:46:9a:12:0d:81:50:4b:55:43:2e:85:a1:1d:
02:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:08:C9:9A:E2:D1:EE:B9:42:91:E7:CF:C1:F3:E6:2B:42:F5:20:50
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/uAjJmuLR7rlCkefPwfPmK0L1IFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:808c::/48
2a0c:9a40:8200::/47
Signature Algorithm: sha256WithRSAEncryption
ad:b8:a0:9b:bc:0d:24:6f:10:1b:be:d6:63:ba:b8:03:3f:70:
ea:57:8d:6b:75:e7:a8:c8:91:9f:41:a2:ae:0f:06:7a:d5:02:
2e:83:e1:3b:fd:77:05:8d:d8:14:bf:a7:a1:fd:91:f3:d5:f4:
49:35:d5:4d:7c:eb:11:8a:5c:60:6a:77:a5:85:b6:ef:f7:48:
e7:06:6c:ce:22:6c:7a:35:6a:16:54:ce:ae:29:5e:97:8f:6c:
75:5b:68:92:1a:21:be:39:6a:ea:67:a5:9a:53:39:85:1a:8b:
35:2c:de:87:50:0e:e9:f5:a4:ec:e2:5a:7b:f4:ac:59:6e:c8:
3f:99:53:db:b7:12:a8:3f:b3:79:96:89:23:9a:eb:88:94:dc:
68:cd:64:4f:14:3f:f6:28:d7:18:6c:ec:90:7c:53:57:a8:9b:
e5:52:24:e3:2d:d3:ff:48:1e:c0:d8:cd:03:04:af:fd:dd:44:
65:85:78:2f:51:0e:84:b4:b8:73:04:d1:1b:9a:d9:a6:de:83:
6f:66:f5:ac:e4:7a:a9:dd:24:c9:8e:a3:aa:49:52:5d:5f:43:
5d:d1:f7:81:a6:6d:de:6b:a6:31:da:8d:a9:23:fb:4d:d0:57:
91:93:db:98:5f:b1:e3:42:0c:31:88:a4:63:b3:07:6f:c7:cb:
92:27:d6:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:28 2023 by rpki-client on console-ams.rpki-client.org