Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/xpQjq6R4Dqd8W13kPYg0YVEdxwo.roa
File: xpQjq6R4Dqd8W13kPYg0YVEdxwo.roa (raw, json)
Hash identifier: sa/gQzVbjm8IAg90OJc2WBR6m5ZeOMF2mEfE0WVcn40=
Subject key identifier: C6:94:23:AB:A4:78:0E:A7:7C:5B:5D:E4:3D:88:34:61:51:1D:C7:0A
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1F4482E0
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/xpQjq6R4Dqd8W13kPYg0YVEdxwo.roa
Signing time: Mon 27 Jun 2022 06:14:40 +0000
ROA not before: Mon 27 Jun 2022 06:14:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49421
IP address blocks: 2a00:1728:2a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 524583648 (0x1f4482e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 27 06:14:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c69423aba4780ea77c5b5de43d883461511dc70a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:5b:d7:62:e2:c2:06:53:63:1b:f6:d6:c8:38:
89:34:e5:34:da:7e:1f:24:71:db:82:7d:1b:ff:b2:
3f:78:00:2d:72:c1:37:29:7b:67:b6:5b:8e:c8:26:
e2:02:40:4b:4f:ec:32:56:b8:45:51:c2:ff:57:cb:
e0:6b:c3:c5:7f:93:aa:ed:d5:1c:93:31:62:42:3c:
8b:e4:10:3c:94:12:02:53:8b:9b:89:45:a1:63:5c:
72:f0:06:59:42:20:df:4e:7e:1a:0e:9d:20:9c:d9:
8f:73:77:4a:23:52:58:d4:a2:ac:33:aa:c3:40:85:
3c:4c:db:25:e8:81:c1:b2:2a:78:0f:32:3a:9e:d7:
69:c2:d4:ea:bb:e6:3f:d7:b5:e2:b1:f2:06:4a:8b:
c8:a5:aa:c0:91:d6:10:b3:30:05:65:a7:b2:c0:44:
f1:9a:23:a4:62:ab:37:67:8c:89:cd:30:6e:ac:f9:
a7:d8:4d:08:d4:cd:6d:3f:f5:d3:85:42:6f:71:7a:
83:e2:6c:e7:fb:a2:36:52:ff:d1:73:d8:ee:b9:13:
18:5e:e3:d9:42:1f:32:27:32:9d:3b:02:06:09:26:
cd:2e:27:60:c9:1c:59:b8:0a:70:06:25:4a:c8:0b:
b5:7f:ea:0d:4e:ce:4d:47:71:21:c4:04:1e:1b:ca:
f5:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:94:23:AB:A4:78:0E:A7:7C:5B:5D:E4:3D:88:34:61:51:1D:C7:0A
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/xpQjq6R4Dqd8W13kPYg0YVEdxwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1728:2a::/48
Signature Algorithm: sha256WithRSAEncryption
41:90:bf:75:c2:c9:9d:ef:50:f1:eb:ff:38:de:47:7a:00:dc:
e7:27:58:a0:6b:59:f8:45:2a:af:ad:04:6c:8a:52:64:da:d3:
ef:60:9f:da:31:9c:01:59:d8:6e:1f:af:68:e3:a8:80:b2:c7:
88:20:e8:43:e9:84:38:92:1f:ed:18:70:84:82:2d:80:fb:61:
1e:04:d8:a4:3e:d4:d6:53:0c:ab:84:d4:9f:08:4c:0c:d6:5d:
f9:5c:db:7b:8c:3b:9f:52:55:db:dc:f4:b4:fd:13:41:dd:2c:
57:40:d1:b1:f5:1c:bc:b5:f4:ff:40:66:a0:3f:b6:5c:c1:21:
75:f5:86:4f:8e:d9:f5:55:86:f9:f0:e3:07:e6:c3:8e:37:ee:
a1:03:c1:f0:47:d6:65:bf:4c:27:3a:5d:c5:47:0c:32:46:1f:
6f:a6:b7:20:67:d2:8b:3c:2a:f3:0d:ed:7b:0b:0d:03:a6:99:
32:9d:f0:c1:94:5c:b0:b6:0e:9f:89:34:bc:4e:6e:20:db:e4:
5a:6d:ed:8e:98:e5:c4:f8:ca:24:d3:9e:a6:a1:d8:cf:8b:5b:
67:bb:52:2b:fb:c4:c4:6a:86:b1:45:26:2f:7b:e0:bb:c5:84:
2c:ad:c9:df:9d:74:95:61:b1:38:b2:93:cc:20:3d:30:85:cf:
85:4e:c6:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:44 2023 by rpki-client on console-ams.rpki-client.org