Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/29ca77-876a-4beb-8cfd-35f6faa1500e/1/iAkg6ty0VlCsWVycbVdIVFNUVwY.roa
File: iAkg6ty0VlCsWVycbVdIVFNUVwY.roa (raw, json)
Hash identifier: +f5e7sEw5J3S6mhTZLkUkxB6vX/GkWAl/fnaPIZbKdw=
Subject key identifier: 88:09:20:EA:DC:B4:56:50:AC:59:5C:9C:6D:57:48:54:53:54:57:06
Certificate issuer: /CN=eb81f2566177790fad880d610e37cdd209847207
Certificate serial: 03AA3ADB
Authority key identifier: EB:81:F2:56:61:77:79:0F:AD:88:0D:61:0E:37:CD:D2:09:84:72:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/64HyVmF3eQ-tiA1hDjfN0gmEcgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/29ca77-876a-4beb-8cfd-35f6faa1500e/1/iAkg6ty0VlCsWVycbVdIVFNUVwY.roa
Signing time: Sat 01 Jan 2022 12:02:06 +0000
ROA not before: Sat 01 Jan 2022 12:02:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47285
IP address blocks: 2a10:ab00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61487835 (0x3aa3adb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb81f2566177790fad880d610e37cdd209847207
Validity
Not Before: Jan 1 12:02:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=880920eadcb45650ac595c9c6d57485453545706
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c3:8e:b5:32:5e:d0:8f:1d:ab:a8:3e:90:76:
44:b5:a4:19:43:c6:ee:56:75:4c:a1:d6:ab:e4:b6:
ce:0e:61:ed:ed:b9:e1:b5:ed:7a:c1:fd:37:3b:46:
09:e1:e3:1b:b3:fe:5d:ad:95:1b:d0:d5:68:9d:21:
68:2f:eb:06:ba:a5:20:11:0f:90:16:97:17:b5:48:
ac:04:cf:0f:e8:38:06:d1:72:e0:f9:4a:78:e6:73:
6c:c3:e8:35:4e:a1:f4:fc:fa:14:20:0c:be:23:32:
ac:bb:fa:80:ee:3c:cb:ef:5f:0b:0d:2e:87:ec:c2:
83:07:75:35:57:2e:8e:55:56:16:f2:cd:eb:8a:4d:
73:d7:63:cd:da:20:5b:0e:4b:e5:0e:f4:15:96:3f:
55:7a:0b:95:76:c0:39:f7:f4:d0:fc:f2:64:93:a8:
1d:31:e2:8a:53:fe:01:93:56:cf:bf:c1:f5:2c:cf:
d8:69:e7:2f:5c:79:32:26:54:29:6b:49:29:fc:44:
19:e4:45:b9:5a:63:88:c6:63:bb:dc:11:fa:d6:16:
b6:eb:86:ec:0c:e4:ab:0c:0d:1c:8d:01:0f:08:54:
c6:3e:0d:63:77:89:52:dd:c5:a3:41:ff:b9:7e:c0:
3c:52:55:29:a0:ba:20:5c:4c:3c:d5:fe:49:2a:c0:
b6:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:09:20:EA:DC:B4:56:50:AC:59:5C:9C:6D:57:48:54:53:54:57:06
X509v3 Authority Key Identifier:
keyid:EB:81:F2:56:61:77:79:0F:AD:88:0D:61:0E:37:CD:D2:09:84:72:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/64HyVmF3eQ-tiA1hDjfN0gmEcgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/29ca77-876a-4beb-8cfd-35f6faa1500e/1/iAkg6ty0VlCsWVycbVdIVFNUVwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/29ca77-876a-4beb-8cfd-35f6faa1500e/1/64HyVmF3eQ-tiA1hDjfN0gmEcgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:ab00::/29
Signature Algorithm: sha256WithRSAEncryption
7e:51:29:e8:06:fb:2a:1e:37:84:2b:a8:09:13:13:7d:5d:74:
62:5e:f3:29:ee:1a:cc:25:75:4a:b8:10:18:4e:0a:67:1e:40:
c5:1a:c4:2b:ef:e4:9b:b5:8d:f4:e7:74:38:37:42:96:56:d6:
61:a7:61:bd:6c:47:59:23:22:60:f1:8f:04:82:32:3b:0d:ac:
0a:f3:53:ef:7c:ae:b1:a4:d9:4f:c4:b6:ae:a3:e7:1a:34:65:
5a:4d:85:8f:26:24:c6:53:2b:bd:7c:d2:d9:45:a5:7c:72:69:
da:4b:ac:8e:5d:1d:ad:c8:b6:c1:12:6c:36:58:f9:17:86:ce:
58:8c:6f:42:28:35:29:bf:95:83:97:80:be:3f:4c:f9:95:f8:
23:00:4e:39:3c:94:f3:05:e1:3d:56:1e:0e:82:ad:ba:b4:9e:
54:84:f2:b5:26:ee:a1:8b:91:0f:0a:72:8a:63:17:17:80:56:
f8:d4:e9:dc:9c:d5:5b:1e:1c:e5:5b:3f:41:17:32:74:a5:60:
eb:70:8c:23:21:3e:4d:8c:ad:e3:af:7a:44:aa:66:78:4d:5d:
ab:99:b5:9f:54:71:44:85:85:f9:da:f0:75:3c:f5:07:32:c4:
4e:6e:a8:4c:62:da:2a:6f:38:da:95:88:b8:b0:31:3e:7b:a9:
5e:c5:a7:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:00 2023 by rpki-client on console-fra.rpki-client.org