Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/pG9hTAZjuW2yCdQlqe-B4GPVjHQ.roa
File: pG9hTAZjuW2yCdQlqe-B4GPVjHQ.roa (raw, json)
Hash identifier: PNWN8X62LgmZ/hphrvQywoDJI5kfFEjR8qn8W4InsgY=
Subject key identifier: A4:6F:61:4C:06:63:B9:6D:B2:09:D4:25:A9:EF:81:E0:63:D5:8C:74
Certificate issuer: /CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Certificate serial: 037DC01D
Authority key identifier: C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/pG9hTAZjuW2yCdQlqe-B4GPVjHQ.roa
Signing time: Mon 02 May 2022 16:24:42 +0000
ROA not before: Mon 02 May 2022 16:24:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205290
IP address blocks: 2a05:4140:7::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58572829 (0x37dc01d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Validity
Not Before: May 2 16:24:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a46f614c0663b96db209d425a9ef81e063d58c74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b2:03:0c:9f:2d:bf:47:e3:c0:8e:58:ad:92:
58:ed:e8:d1:0c:b1:8b:a1:bd:ab:ec:37:d8:7b:b7:
33:97:b4:63:44:cd:4e:85:83:ba:b4:6e:fb:f8:0d:
c9:0b:b0:cc:68:95:17:a0:46:3b:5e:d4:e2:1c:fe:
6e:da:e9:75:6e:20:a3:09:e9:2b:2b:36:f9:2b:a6:
f4:a8:8b:a8:f0:58:0a:3b:4e:7f:55:a2:26:58:31:
b0:7c:f0:84:ed:a0:d0:c5:0b:38:83:2d:a3:cb:ac:
0a:9b:8e:f6:75:1f:c2:27:95:47:8f:51:6d:3e:5e:
15:9b:a7:98:22:f4:54:b7:a0:f0:7b:bd:91:6a:d5:
f8:ca:ca:b5:3e:d7:e9:70:10:74:82:d4:53:02:15:
9f:bb:e0:7c:7e:a8:d8:ba:97:6d:88:98:d5:42:96:
87:10:5b:68:cb:d9:9e:47:b8:84:0b:62:a9:96:70:
8c:b8:74:41:3a:39:20:73:c8:86:24:f1:fc:fe:82:
a7:4f:96:24:25:e6:c4:f5:26:4f:6a:d0:28:e8:c9:
43:17:1b:5b:3a:2b:63:c1:bb:cb:95:e8:18:a5:7a:
84:1b:4f:44:0e:46:f9:7d:f7:6f:10:ea:97:7a:27:
cd:9f:c5:53:8b:95:a9:b2:71:02:55:97:95:b5:25:
22:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:6F:61:4C:06:63:B9:6D:B2:09:D4:25:A9:EF:81:E0:63:D5:8C:74
X509v3 Authority Key Identifier:
keyid:C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/pG9hTAZjuW2yCdQlqe-B4GPVjHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/x0xgresM1XaM91b1YrG1zFucGAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:4140:7::/48
Signature Algorithm: sha256WithRSAEncryption
84:48:9e:9d:a7:3e:4a:e1:d9:29:d6:fc:13:a2:79:23:6b:95:
89:2a:88:53:0c:c1:ed:11:26:55:7e:2b:db:24:eb:10:d7:2b:
97:58:ba:2b:6b:fb:67:02:32:76:48:da:06:d7:4e:62:b8:5f:
fa:4f:1f:ea:f5:88:99:45:f3:6b:21:5d:22:3f:7b:52:f2:bc:
b7:10:a3:f3:7a:2a:bb:c7:f4:d0:28:79:b6:b5:1a:a2:01:f3:
60:02:76:de:ee:a4:a9:9e:af:42:67:2e:02:ac:ed:62:50:3a:
db:af:46:5f:ab:c3:dd:5d:aa:30:87:1f:ca:a5:b3:b5:69:94:
50:e8:54:3b:44:ea:37:f7:fe:98:ed:19:cc:cb:b2:11:7c:39:
97:15:5c:bf:40:93:b1:ac:74:15:4a:bc:8d:cb:8c:0f:d6:19:
4d:a4:77:be:bc:a8:f1:82:11:c8:9d:8b:4e:96:54:f6:98:85:
41:3b:4f:5b:2a:cf:e1:3f:57:15:7d:00:5f:cb:da:33:c0:33:
6d:6e:b3:d1:c5:f6:4f:a6:81:1b:14:f5:6b:1b:d2:cd:fc:ff:
1c:70:b0:bb:7f:ce:b3:79:5d:97:f2:0f:e3:ba:16:06:aa:53:
5d:47:1b:c8:34:93:f5:7f:70:dc:73:a2:a6:71:0e:c1:03:65:
72:d9:19:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:53 2023 by rpki-client on console-ams.rpki-client.org