Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Dq7u-OPZEEumbup2rvwtJ3bnOUc.roa
File: Dq7u-OPZEEumbup2rvwtJ3bnOUc.roa (raw, json)
Hash identifier: AFBvBsDWmORfpUe28WlxIl+XcJQPsKBcegPvQmb1QZU=
Subject key identifier: 0E:AE:EE:F8:E3:D9:10:4B:A6:6E:EA:76:AE:FC:2D:27:76:E7:39:47
Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Certificate serial: 01855D3F16DEBFDD1E213AC79A859C15BFAE
Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Dq7u-OPZEEumbup2rvwtJ3bnOUc.roa
Signing time: Thu 29 Dec 2022 09:38:13 +0000
ROA not before: Thu 29 Dec 2022 09:38:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399486
IP address blocks: 2a10:4646:240::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:5d:3f:16:de:bf:dd:1e:21:3a:c7:9a:85:9c:15:bf:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Validity
Not Before: Dec 29 09:38:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0eaeeef8e3d9104ba66eea76aefc2d2776e73947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:2d:7f:b0:eb:e8:7f:b2:e9:56:8c:5d:53:ce:
24:7f:24:14:be:c3:8b:68:61:02:22:6a:c4:b2:df:
87:30:09:75:2f:01:f4:47:a0:22:f5:91:6c:20:c9:
8d:70:0e:ac:75:7a:c6:e5:48:67:48:64:38:cc:08:
1e:61:24:92:ce:ca:8a:5e:52:19:77:02:4b:91:e5:
d6:16:4a:71:21:55:e9:14:78:85:69:73:0f:6f:63:
31:b8:7f:9a:2a:55:3b:c5:1f:c6:7c:9f:d3:99:cb:
2a:ad:5b:93:cd:9a:a7:33:7e:2e:dd:16:2a:2e:00:
ee:a0:82:59:ff:7b:2c:87:01:2c:3f:66:65:43:a7:
d2:20:62:b0:ac:d7:03:11:a1:d5:c7:01:b6:ac:ce:
43:f9:91:99:45:a3:02:e5:ed:6b:e9:0b:6d:dd:9d:
a4:56:76:ae:40:41:ad:08:d2:e8:45:21:cf:7a:95:
ce:ef:40:3c:66:fe:49:0d:47:63:d3:63:42:5b:d7:
66:8c:1c:f8:57:12:94:b7:b4:ff:1c:b4:d0:ce:0d:
a0:d5:cb:a5:df:50:94:91:59:04:b7:09:4a:68:a0:
a3:ee:f0:a2:98:5c:00:45:8b:28:53:21:63:ef:b4:
1f:bd:dd:f8:0a:8f:80:eb:08:f5:29:ac:16:66:c3:
93:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:AE:EE:F8:E3:D9:10:4B:A6:6E:EA:76:AE:FC:2D:27:76:E7:39:47
X509v3 Authority Key Identifier:
keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Dq7u-OPZEEumbup2rvwtJ3bnOUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:240::/44
Signature Algorithm: sha256WithRSAEncryption
a1:be:2f:ba:0b:b0:ac:da:0f:87:a5:f7:d4:a9:b2:5f:db:33:
55:23:c1:b8:85:60:ff:ac:b5:c1:a8:b0:4e:39:ad:6a:f0:b8:
0e:3c:02:23:d8:2f:65:06:03:40:10:8b:12:f9:bf:ec:e3:ae:
d0:80:3e:97:99:90:ea:64:ee:fe:95:1f:f7:b5:6f:49:73:cc:
99:e7:41:e6:c3:93:da:ad:d3:06:1d:4a:bb:7b:17:1c:0c:9e:
44:28:f0:cf:19:c7:66:b0:d4:cd:80:dc:16:9a:6c:28:29:09:
ca:5d:a2:a6:b5:47:b9:ef:c7:0a:b4:c4:ab:9f:af:1a:2a:5b:
65:44:02:08:8a:41:cd:da:0a:a0:8d:0e:34:a0:90:f7:30:24:
45:d8:8c:2e:2b:02:66:0f:4c:96:b3:7b:be:5d:54:eb:cb:d0:
2f:75:1e:b9:e4:0e:82:cb:60:61:b4:2f:3a:e4:5c:06:ae:08:
21:09:a9:69:de:62:bc:c9:13:b6:02:5c:60:1b:05:d9:f4:ec:
64:02:cb:c6:c5:d3:32:3f:1d:3c:53:ea:60:61:dc:2b:8b:27:
48:87:5e:5a:91:f3:9d:90:15:af:b6:9c:01:4f:ca:8b:f3:30:
3d:70:3d:df:be:43:1f:7a:29:37:8a:83:18:6f:c0:22:bc:50:
70:c4:a8:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:56 2023 by rpki-client on console-ams.rpki-client.org