Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/GTkkudRml9rT0NFLa7J0CHikYGU.roa
File: GTkkudRml9rT0NFLa7J0CHikYGU.roa (raw, json)
Hash identifier: Qk2n3XTzBAEq/sywC5dL3JbcMs4cTNrUOHD1qJB+ZYQ=
Subject key identifier: 19:39:24:B9:D4:66:97:DA:D3:D0:D1:4B:6B:B2:74:08:78:A4:60:65
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 08B18F9A
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/GTkkudRml9rT0NFLa7J0CHikYGU.roa
Signing time: Sat 01 Jan 2022 14:01:48 +0000
ROA not before: Sat 01 Jan 2022 14:01:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211242
IP address blocks: 2a0e:8f02:f032::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145854362 (0x8b18f9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 14:01:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=193924b9d46697dad3d0d14b6bb2740878a46065
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4e:49:a5:64:47:cb:8b:86:fb:b5:6c:3b:a4:
bd:64:6b:e3:58:d5:be:57:c7:21:11:43:2f:27:98:
11:c7:c3:d5:98:81:bf:c5:ad:41:f9:29:aa:d4:ee:
46:47:62:1e:1b:47:10:9c:15:40:24:9e:1d:31:8b:
f9:c1:d0:4d:0a:8f:f0:7d:0f:46:d1:cd:72:53:63:
f8:20:fb:78:18:5d:26:f5:1e:85:b0:eb:8d:fa:27:
b8:0a:7e:74:94:e2:21:d1:20:ad:cb:62:1e:bc:cc:
29:d6:eb:fb:32:3c:c3:3c:ab:8e:c4:d3:4f:71:3c:
14:82:3d:f6:21:16:79:bf:3b:d6:95:3c:dc:22:8e:
10:bf:fe:75:73:cf:f2:e6:be:42:94:a3:84:7a:65:
f2:74:9c:6a:0c:4d:71:12:5f:f8:50:99:cf:b3:d9:
ea:1d:d2:3d:a4:07:ab:05:86:f3:8a:6e:cb:db:24:
4f:29:12:bb:35:a7:e1:ad:d1:63:c7:2b:01:91:aa:
ed:24:b4:20:f2:56:b5:1e:39:af:ff:cf:02:e7:67:
77:02:7a:e5:ea:7c:db:53:e2:51:f6:c0:19:ac:ed:
a6:aa:05:57:9b:e9:8c:eb:47:62:da:88:dd:11:74:
c2:56:34:3d:e4:93:f8:cc:d8:6b:29:8f:8b:c9:4c:
46:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:39:24:B9:D4:66:97:DA:D3:D0:D1:4B:6B:B2:74:08:78:A4:60:65
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/GTkkudRml9rT0NFLa7J0CHikYGU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f032::/48
Signature Algorithm: sha256WithRSAEncryption
68:69:79:a9:c6:27:71:b7:f4:a1:ad:1f:b0:25:9d:95:6b:a4:
b4:1b:0a:92:92:e1:49:77:e4:79:fc:24:ef:05:f0:13:c7:d7:
32:bb:78:b2:d3:bd:8b:0d:a6:bf:59:b4:87:42:48:3a:ab:13:
6d:e2:d8:8c:f7:a4:75:f4:02:8d:6b:30:9c:66:6e:25:55:6b:
3b:49:20:4d:35:2a:c3:59:48:62:6d:91:5c:85:d8:24:05:d9:
0e:05:37:e7:fd:9f:c0:51:d1:06:ef:8b:d4:15:00:c6:2f:92:
01:dc:25:53:62:c0:49:01:cd:e3:87:8f:e8:f2:25:37:9f:c7:
45:96:7e:2c:53:a3:65:b7:10:95:98:a3:e1:c3:fd:e6:bc:ec:
b0:7b:8c:17:0b:2d:5f:82:b1:27:97:79:c6:e9:21:fd:7d:8e:
77:4c:da:ff:93:83:07:16:20:0b:8d:92:4e:17:7c:38:9f:d4:
64:0f:1b:5d:ef:5b:ed:ed:7c:f8:1f:e2:7d:b2:8c:2d:2f:8f:
b2:d5:1c:c2:eb:a2:2f:eb:a5:a0:30:f3:bb:c6:4c:e1:e2:4c:
d7:95:90:62:25:1a:17:7b:35:cf:d2:d7:32:e2:f0:ec:2e:23:
9b:3a:c4:1d:bc:1b:dc:cf:72:4a:15:7b:d9:48:a9:63:1a:56:
a6:ec:89:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:12 2023 by rpki-client on console-ams.rpki-client.org