Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/eff67f-40a9-4775-a9c2-ad28fa966b51/1/cgTiNPTKmXSr_NcGwPJ-meoDwuw.roa
File: cgTiNPTKmXSr_NcGwPJ-meoDwuw.roa (raw, json)
Hash identifier: gyI9ZdNG6PidKKI8Fi8NbLIrEz/cmxywINVYCbpT6Sw=
Subject key identifier: 72:04:E2:34:F4:CA:99:74:AB:FC:D7:06:C0:F2:7E:99:EA:03:C2:EC
Certificate issuer: /CN=0bb3e73aa8b7f0af3bd8400572dae72b0d46f55c
Certificate serial: 0184661240761027AB4B1D08982B3671425C
Authority key identifier: 0B:B3:E7:3A:A8:B7:F0:AF:3B:D8:40:05:72:DA:E7:2B:0D:46:F5:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C7PnOqi38K872EAFctrnKw1G9Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/eff67f-40a9-4775-a9c2-ad28fa966b51/1/cgTiNPTKmXSr_NcGwPJ-meoDwuw.roa
Signing time: Fri 11 Nov 2022 09:43:02 +0000
ROA not before: Fri 11 Nov 2022 09:43:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 2a0e:48c4::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:66:12:40:76:10:27:ab:4b:1d:08:98:2b:36:71:42:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bb3e73aa8b7f0af3bd8400572dae72b0d46f55c
Validity
Not Before: Nov 11 09:43:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7204e234f4ca9974abfcd706c0f27e99ea03c2ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a9:5b:da:b2:09:e6:54:a4:ea:af:86:d3:78:
da:25:fb:03:44:31:26:cc:fa:09:b1:54:28:ee:c7:
68:52:d8:37:a0:16:53:25:39:f2:b5:e3:9f:40:e8:
a0:dc:81:d3:38:84:3a:86:c9:eb:2e:67:04:d8:41:
75:fe:80:d0:e3:b6:d1:75:44:f3:6d:38:45:9a:3d:
9b:2c:fa:0e:c3:14:a1:b6:a9:95:1e:3a:e5:ac:12:
80:2f:da:74:a0:51:3c:bb:4a:73:eb:03:95:71:8a:
7b:06:7f:51:b2:94:7b:dc:70:45:1c:87:4c:06:75:
75:47:6e:bd:e1:f6:30:e5:c4:e3:ba:88:2f:dc:be:
1b:c5:85:98:06:5f:6e:41:98:d2:88:05:2a:da:55:
bf:47:b1:4c:ef:d5:b8:af:5b:52:bc:ca:e2:19:60:
c2:b2:22:2a:2c:c7:5c:68:9a:b8:d8:43:2d:1f:27:
4b:d9:c6:29:78:31:8b:17:ed:da:36:c2:8d:58:bf:
4c:39:df:3b:82:4e:48:17:6b:0e:33:07:b9:66:e0:
3a:b2:0a:92:33:9a:fc:ff:49:0d:38:80:d2:bc:7d:
56:7b:4a:68:30:b5:dc:22:19:cc:3f:6a:25:3e:01:
60:2f:b6:6d:6c:42:a2:d8:16:7a:98:e4:13:d2:bf:
27:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:04:E2:34:F4:CA:99:74:AB:FC:D7:06:C0:F2:7E:99:EA:03:C2:EC
X509v3 Authority Key Identifier:
keyid:0B:B3:E7:3A:A8:B7:F0:AF:3B:D8:40:05:72:DA:E7:2B:0D:46:F5:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C7PnOqi38K872EAFctrnKw1G9Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/eff67f-40a9-4775-a9c2-ad28fa966b51/1/cgTiNPTKmXSr_NcGwPJ-meoDwuw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/eff67f-40a9-4775-a9c2-ad28fa966b51/1/C7PnOqi38K872EAFctrnKw1G9Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:48c4::/32
Signature Algorithm: sha256WithRSAEncryption
47:d2:75:4e:aa:02:6e:12:04:55:16:96:13:8f:92:cf:27:38:
2e:54:57:6c:97:63:ee:95:bf:cb:80:15:0c:60:4f:b7:ed:97:
64:2c:e4:ea:af:49:ee:70:b9:39:05:0c:8d:4d:67:1d:64:cb:
0d:80:35:2a:58:ce:99:05:4b:06:16:84:50:28:c8:65:b6:b7:
47:da:9c:a7:c9:ed:4d:ff:bb:93:f6:20:18:ca:98:72:f6:9f:
71:57:b4:d9:d5:c7:a1:cc:31:eb:69:36:e9:27:4b:59:7a:47:
b6:5b:59:db:24:1e:10:0a:f3:fc:77:f8:f2:60:ed:ff:39:0b:
38:9c:41:b1:26:c9:dc:50:e9:18:aa:5b:c0:3f:cf:88:1d:39:
03:06:f3:4b:ed:9d:fa:1c:af:d8:dc:97:81:a0:8b:3c:85:b6:
aa:58:5d:09:7c:a2:12:12:82:56:6e:e2:c3:84:ae:5d:5b:4e:
6f:69:9b:d1:47:85:3d:b5:ad:17:db:74:4e:29:82:0a:d6:85:
a9:44:09:7d:42:1c:29:d4:e2:58:cc:2c:0f:fb:c4:f1:23:11:
7a:e6:cf:41:77:c3:7d:48:c7:b4:32:8a:d8:e6:78:02:0c:aa:
6a:83:18:c9:d5:a2:cd:2c:b8:4b:3e:5f:2e:8f:b2:6e:64:95:
b9:db:95:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:13 2023 by rpki-client on console-fra.rpki-client.org