Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3bc707-76e7-4987-befa-981184dee131/1/n8GsoKlVzMbXb6yFERV_aA-6ZXw.roa
File: n8GsoKlVzMbXb6yFERV_aA-6ZXw.roa (raw, json)
Hash identifier: oB2zlTuIODMXEBm8CtVccDnpzrBKpnohPVL/ejyAOJw=
Subject key identifier: 9F:C1:AC:A0:A9:55:CC:C6:D7:6F:AC:85:11:15:7F:68:0F:BA:65:7C
Certificate issuer: /CN=d34fa6be3f5c38f4bb7e062b6707747f4961a048
Certificate serial: 0183368D45AE95A5A7A98656E9DBE58B4658
Authority key identifier: D3:4F:A6:BE:3F:5C:38:F4:BB:7E:06:2B:67:07:74:7F:49:61:A0:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00-mvj9cOPS7fgYrZwd0f0lhoEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3bc707-76e7-4987-befa-981184dee131/1/n8GsoKlVzMbXb6yFERV_aA-6ZXw.roa
Signing time: Tue 13 Sep 2022 11:12:51 +0000
ROA not before: Tue 13 Sep 2022 11:12:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 2a11:9c80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:36:8d:45:ae:95:a5:a7:a9:86:56:e9:db:e5:8b:46:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d34fa6be3f5c38f4bb7e062b6707747f4961a048
Validity
Not Before: Sep 13 11:12:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9fc1aca0a955ccc6d76fac8511157f680fba657c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:26:d5:28:99:e9:78:44:74:7c:8b:1b:aa:da:
b7:73:13:5a:f0:19:c0:1a:fb:be:a3:84:37:8b:3b:
2c:1b:84:9f:54:f9:bf:b3:51:e1:f2:33:69:74:16:
92:de:9a:fd:b5:8c:b8:b2:60:d4:45:b0:1c:e0:93:
8d:92:8f:1b:5e:a8:1d:18:19:5f:9c:37:25:da:d1:
cc:4d:d3:ef:7f:40:78:14:7d:18:61:05:bc:8f:b2:
9c:c9:da:b4:0f:a7:0f:cb:37:3d:16:83:02:61:59:
48:8c:0c:10:15:3a:81:99:74:b2:70:d4:f5:1b:a1:
c5:54:a3:b7:8b:86:5e:c5:13:f7:da:7e:d7:96:9e:
2c:83:ba:51:54:c7:6d:57:a2:6c:8a:39:fa:96:a5:
7d:aa:f6:ee:25:1e:60:8c:b8:52:e7:18:f6:a1:85:
d9:cd:71:09:39:c6:29:eb:f2:1b:44:69:44:16:80:
52:c0:d0:d5:db:13:9b:4a:e2:09:f2:b2:e4:0e:a9:
d3:f4:20:25:cb:c2:32:6f:fb:f6:6c:03:a2:35:91:
a0:86:71:b1:6a:ce:71:74:f1:91:13:82:13:d3:d0:
fc:07:da:16:c6:da:df:e6:a3:4d:8b:a6:40:00:9a:
8e:f3:94:96:ed:99:7d:2c:13:c6:e1:06:9b:2c:4d:
ef:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:C1:AC:A0:A9:55:CC:C6:D7:6F:AC:85:11:15:7F:68:0F:BA:65:7C
X509v3 Authority Key Identifier:
keyid:D3:4F:A6:BE:3F:5C:38:F4:BB:7E:06:2B:67:07:74:7F:49:61:A0:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00-mvj9cOPS7fgYrZwd0f0lhoEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3bc707-76e7-4987-befa-981184dee131/1/n8GsoKlVzMbXb6yFERV_aA-6ZXw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3bc707-76e7-4987-befa-981184dee131/1/00-mvj9cOPS7fgYrZwd0f0lhoEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:9c80::/29
Signature Algorithm: sha256WithRSAEncryption
40:3f:d6:a0:51:e2:df:84:4e:a9:72:72:0e:9e:0d:51:23:9d:
a9:99:49:22:67:f1:7c:b4:de:2b:cb:d1:2a:0d:b6:f9:44:21:
45:fd:81:20:f1:a8:10:64:13:e5:7b:9e:a4:2f:b3:c2:cb:44:
cd:6f:cc:34:28:4e:b0:21:7c:bd:ec:c1:2b:e6:df:cc:bb:e9:
0b:28:eb:1d:96:52:76:ce:f4:3f:c3:7b:7b:69:23:9e:ec:c2:
c4:fb:1c:cf:3c:48:e7:c7:88:eb:2c:02:ab:51:19:b2:0b:33:
4b:fd:52:2c:f8:2d:81:c9:41:2b:c4:3f:47:4e:b3:a5:ac:5c:
4c:31:32:30:3c:5d:17:20:10:20:f6:89:6c:fd:e7:44:da:27:
ad:4f:40:52:8f:47:b0:64:dd:84:40:15:b6:2e:30:c1:fd:12:
f2:59:e1:16:fb:f5:cd:42:cd:cb:50:32:af:2e:3c:90:52:3b:
39:f2:8b:e9:5f:26:06:35:8d:26:c7:ad:cd:b8:b0:b6:e2:14:
9c:93:65:9d:9e:26:84:e9:54:7d:45:29:0a:23:fc:e3:f2:6d:
d9:39:b1:29:68:81:ed:39:4b:1e:5d:1d:0a:a3:f4:88:06:d9:
03:bd:5b:7b:d1:f9:5f:36:6a:f9:73:70:2a:08:c2:75:7f:dd:
8d:a2:01:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:54 2023 by rpki-client on console-fra.rpki-client.org