Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/40d2JmBiZiwShS2cifUPrh5yQmE.roa
File: 40d2JmBiZiwShS2cifUPrh5yQmE.roa (raw, json)
Hash identifier: xF9jraHdjLGDdzHZIi9Dn1LnTi8znGBrDUXBn1zzmLE=
Subject key identifier: E3:47:76:26:60:62:66:2C:12:85:2D:9C:89:F5:0F:AE:1E:72:42:61
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 09F5B247
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/40d2JmBiZiwShS2cifUPrh5yQmE.roa
Signing time: Thu 30 Jun 2022 12:27:03 +0000
ROA not before: Thu 30 Jun 2022 12:27:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 2a0b:3c40:10::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167096903 (0x9f5b247)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Jun 30 12:27:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e34776266062662c12852d9c89f50fae1e724261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:04:c3:c8:c9:4b:5f:f0:10:2c:56:e5:6a:b7:
aa:21:ee:c0:8b:d9:50:90:cf:4e:78:4c:2c:0f:a7:
6f:8c:a1:ae:66:04:d4:2b:c8:7f:07:82:2e:40:cf:
14:5b:9e:19:64:f3:67:64:92:88:97:fb:09:90:f1:
b0:8c:25:a9:46:a5:cc:18:51:e8:9b:99:ea:fe:b2:
5c:fc:9f:6d:07:26:13:fc:a1:f8:1d:f9:ee:d5:0a:
cc:4c:c1:e1:8f:dc:d2:44:c8:3d:70:20:b7:88:b8:
7e:4c:98:6d:60:b7:90:43:95:76:fb:0d:8e:b2:27:
e0:79:a8:e4:71:a3:45:67:2a:7c:4c:6c:f0:66:31:
42:80:08:3f:03:f6:55:97:bb:25:43:b2:d9:a5:fd:
e9:43:3a:7f:40:90:6b:71:32:33:2c:cf:28:c9:a1:
c4:c6:1e:48:fb:ac:0e:c7:88:29:49:21:f3:b3:ab:
b6:b0:2f:ae:ca:c1:a4:ab:72:6b:b4:e3:01:00:d9:
63:34:7b:44:c9:41:5f:cc:81:24:76:5e:91:64:98:
35:6c:1b:02:48:22:2f:55:dc:ff:23:ab:16:e6:5d:
00:a7:e7:2a:18:58:35:a1:15:c3:df:8e:f8:29:e4:
4b:84:d4:4e:f0:70:97:a0:f0:d4:a9:5f:9d:2e:cd:
9e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:47:76:26:60:62:66:2C:12:85:2D:9C:89:F5:0F:AE:1E:72:42:61
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/40d2JmBiZiwShS2cifUPrh5yQmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:3c40:10::/48
Signature Algorithm: sha256WithRSAEncryption
86:c6:28:1d:0d:74:51:13:2a:57:bd:b0:4e:8e:37:61:70:a0:
51:8c:02:14:a5:0d:2a:91:dd:9b:0e:51:7f:df:22:b7:a9:19:
80:16:0c:32:77:e9:cf:52:9d:51:28:f6:4a:9e:bc:8e:ab:93:
04:4f:ac:38:b3:0f:c7:4d:33:f7:0f:6b:f1:ae:64:a4:f0:97:
96:9c:47:16:99:9c:61:91:2f:5f:21:3b:0e:ad:95:b9:fc:b7:
75:dc:4a:ab:f3:c8:ba:3d:07:ff:ef:ef:73:7e:22:97:47:ea:
d3:d5:ec:92:26:2f:26:25:1d:3d:29:db:d6:b0:c7:ff:71:f1:
84:3e:74:25:92:23:96:3d:bb:53:31:16:bf:5b:d4:01:fb:1f:
0d:d5:a5:37:76:f9:d3:3c:e5:bf:5e:57:00:bc:76:c0:e2:1f:
9c:70:de:84:dd:f4:6d:4c:ca:a0:4e:f4:e8:6f:8c:38:9e:2e:
d5:e1:7e:71:bd:cc:dc:4e:fc:5a:2a:00:b5:1f:2b:e8:5d:6e:
9c:20:21:59:12:9e:d1:3c:fb:73:74:76:e1:bb:c1:a8:eb:33:
2c:53:d3:e4:79:47:8e:2c:28:42:f3:fc:28:2c:23:34:2d:8f:
2e:ed:14:0c:47:5d:59:60:c0:56:6b:2e:dd:61:d8:38:41:0c:
ea:b4:4f:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:22 2023 by rpki-client on console-ams.rpki-client.org