Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/R0g_gbKM8G5W3_cA7UhrqcxumfA.roa
File: R0g_gbKM8G5W3_cA7UhrqcxumfA.roa (raw, json)
Hash identifier: Cp5xKrGudIEsLEbEaKjRrd+MQsXxUYapnqXhX9e/U7Q=
Subject key identifier: 47:48:3F:81:B2:8C:F0:6E:56:DF:F7:00:ED:48:6B:A9:CC:6E:99:F0
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 091CB041
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/R0g_gbKM8G5W3_cA7UhrqcxumfA.roa
Signing time: Sat 01 Jan 2022 16:00:41 +0000
ROA not before: Sat 01 Jan 2022 16:00:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205117
IP address blocks: 2a0b:b87:ffe3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152875073 (0x91cb041)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 16:00:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=47483f81b28cf06e56dff700ed486ba9cc6e99f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:06:88:6d:44:cb:f1:8e:af:be:75:36:78:25:
42:08:2f:dc:f5:09:ca:63:03:b9:ee:31:5e:28:7c:
e0:2e:83:0d:ae:23:9e:00:08:11:91:6f:8d:4b:2b:
52:8e:2d:eb:9a:21:74:02:1a:6b:1b:67:d8:ef:55:
fb:71:32:34:89:d9:61:cb:db:cd:c4:d3:09:88:13:
5e:17:5b:f3:ff:69:7b:be:25:37:75:9b:96:8f:47:
62:47:82:28:d9:73:6a:14:33:8a:a7:e3:eb:cd:83:
31:aa:29:ca:77:02:ad:2b:13:b2:f4:25:08:b8:d8:
b3:42:ca:e2:fb:fd:d4:61:d6:df:2a:52:73:3a:5c:
c9:01:18:e9:6f:12:28:0a:a1:eb:46:19:9e:92:52:
1b:e4:03:7e:ef:ef:8e:6c:0d:82:d7:8c:70:b1:47:
5b:c5:23:8c:d4:be:0a:b0:b6:15:83:7a:56:9a:c5:
72:67:1e:7a:74:1b:61:52:a7:42:82:30:0a:38:da:
56:2c:75:64:44:fc:29:54:74:d8:b0:b4:6e:41:a6:
9d:f8:dc:73:c6:a8:14:96:8c:9b:f7:bf:80:88:d6:
aa:7e:3a:67:0a:d2:12:66:bf:81:8f:e0:91:20:86:
b6:dc:e7:d8:dd:e1:e0:c8:51:2d:88:2f:c6:64:a8:
95:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:48:3F:81:B2:8C:F0:6E:56:DF:F7:00:ED:48:6B:A9:CC:6E:99:F0
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/R0g_gbKM8G5W3_cA7UhrqcxumfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:b87:ffe3::/48
Signature Algorithm: sha256WithRSAEncryption
3a:8b:98:5e:20:d0:a0:29:85:bb:29:3f:a5:3f:05:4b:91:b9:
78:5d:96:a9:f7:1b:76:d3:c3:84:d1:f2:58:e0:78:71:12:7c:
c1:35:16:34:40:0f:d2:16:6d:18:d7:8b:28:91:34:bf:ba:be:
b5:ef:1e:7e:fe:bb:95:f4:66:29:45:f0:9f:91:84:47:55:dd:
dd:fd:45:ef:59:8c:c2:53:ad:25:ad:81:83:d3:f0:a3:87:6a:
52:4a:44:55:98:6a:a1:c9:7d:5f:91:a9:1b:72:0f:f3:10:76:
31:27:dc:73:24:c5:78:cb:cb:d3:d0:c9:dc:cf:63:0c:9e:6c:
dd:45:0c:bf:2f:a5:02:94:1d:70:5b:79:c5:6e:d2:61:2c:a6:
19:47:58:2b:1e:b7:81:b5:8b:bd:6d:49:17:4d:18:ab:bb:22:
c6:1b:1e:e8:c1:d9:b9:d4:ba:35:ce:1b:ce:8c:08:cb:13:02:
e0:9b:10:27:b3:ee:db:36:f5:48:a7:d5:3f:4b:48:1a:f1:ad:
15:b7:9b:61:0f:73:92:33:e6:41:25:1f:93:b9:56:de:c5:5a:
61:ed:6c:9d:c3:b8:d6:9e:0a:a2:13:28:61:ac:78:47:ce:e8:
71:67:5c:6a:c4:a2:63:7b:1f:5e:85:41:53:aa:c9:67:80:58:
b5:3e:43:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:26 2023 by rpki-client on console-ams.rpki-client.org