Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/uO2SDYK4MT6BOwxTk35kJt0KK6g.roa
File: uO2SDYK4MT6BOwxTk35kJt0KK6g.roa (raw, json)
Hash identifier: Q1QZei+rTRRA62YKA92uIxZTqlkkXjtYe6IkwCDMxn8=
Subject key identifier: B8:ED:92:0D:82:B8:31:3E:81:3B:0C:53:93:7E:64:26:DD:0A:2B:A8
Certificate issuer: /CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Certificate serial: 01854DFA35C95DA2ABE46EB19BECDF38CE9E
Authority key identifier: C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/uO2SDYK4MT6BOwxTk35kJt0KK6g.roa
Signing time: Mon 26 Dec 2022 10:28:41 +0000
ROA not before: Mon 26 Dec 2022 10:28:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14315
IP address blocks: 2a05:4140:600::/40 maxlen: 48
2a05:4140:19::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:4d:fa:35:c9:5d:a2:ab:e4:6e:b1:9b:ec:df:38:ce:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Validity
Not Before: Dec 26 10:28:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8ed920d82b8313e813b0c53937e6426dd0a2ba8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:89:5b:7f:04:f9:68:40:42:e2:57:98:98:47:
0d:ef:38:39:f2:83:03:a9:2c:68:5c:77:c9:b4:7b:
a9:98:54:54:eb:8b:df:12:d7:79:1c:f3:48:d1:a5:
5e:3e:2c:d9:0f:ff:cb:a7:5c:83:58:45:84:48:e5:
c5:e8:e3:73:de:57:67:31:16:c1:bf:af:95:ee:17:
d0:c8:12:f9:b9:7f:16:5d:9e:c0:f9:d5:f6:68:09:
c0:bd:d0:90:77:ed:b3:a8:c4:66:01:4e:23:f0:59:
06:6e:24:3d:27:d1:cc:1a:96:4a:a4:c7:bb:40:8c:
68:72:c1:8d:5f:eb:d0:60:03:cf:66:68:55:cc:9e:
f2:60:a3:5a:a5:43:6b:2b:b1:52:53:25:5c:84:aa:
31:b5:f8:c0:1a:4d:97:6d:f0:78:61:5f:d1:94:99:
ec:15:76:00:32:2f:31:f1:43:25:24:69:aa:f1:79:
1f:60:72:2c:b7:fa:fe:15:78:bf:76:0b:bd:c2:4e:
ed:04:a6:7e:d3:88:8a:0b:64:b4:7f:ed:7f:f2:c2:
26:6e:51:d8:dc:5c:45:5b:d4:1d:2b:9e:17:8e:4b:
02:77:c2:6b:77:7b:96:cf:38:76:79:0f:76:58:8e:
2f:62:36:2a:6a:c7:f1:5c:fc:a3:57:0e:56:46:2a:
09:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:ED:92:0D:82:B8:31:3E:81:3B:0C:53:93:7E:64:26:DD:0A:2B:A8
X509v3 Authority Key Identifier:
keyid:C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/uO2SDYK4MT6BOwxTk35kJt0KK6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/x0xgresM1XaM91b1YrG1zFucGAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:4140:19::/48
2a05:4140:600::/40
Signature Algorithm: sha256WithRSAEncryption
7e:e4:92:dc:94:0b:ae:1a:a4:64:99:ea:f6:9e:f5:96:04:91:
8b:59:05:6b:0c:36:7c:38:78:67:5b:f0:9c:a1:b5:1d:e1:4d:
4d:65:b5:a5:68:77:f3:19:58:ca:0b:53:c3:d9:b4:93:25:f8:
f9:d4:8a:51:57:3f:25:55:40:82:55:bd:39:e3:c1:34:9e:27:
9e:20:13:4d:80:71:28:93:c9:2d:aa:a9:3d:07:ec:83:05:09:
61:53:8e:54:51:95:9d:8e:ba:9d:97:90:d0:7b:3c:39:05:d9:
e0:d9:fc:b3:af:69:a1:81:a3:16:39:9b:e2:64:d2:c8:13:3b:
4a:55:ff:76:2f:cc:c7:9f:5c:ca:66:e3:0f:78:d4:70:e8:6f:
f6:c1:d8:fc:58:90:4a:76:5a:27:fb:bd:01:f9:2b:4f:55:c0:
bf:54:f4:30:0b:a2:ca:88:0e:24:e2:ef:62:0f:eb:db:99:c4:
ff:74:1e:f6:c5:1b:e9:2f:12:2c:85:56:27:f7:ab:9c:42:8a:
bc:cb:11:3f:8f:f4:eb:fe:5c:de:18:0e:ff:21:75:d9:64:44:
dc:4a:6d:7d:a1:54:80:11:06:78:bc:c8:e9:6c:39:7a:63:2c:
ef:be:31:18:95:ec:95:1f:90:22:d8:60:5d:0f:32:cc:77:41:
3a:f5:98:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:06 2023 by rpki-client on console-fra.rpki-client.org