Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/GXhBhpu9y3CA_yuJIjwXLCC_9Ak.roa
File: GXhBhpu9y3CA_yuJIjwXLCC_9Ak.roa (raw, json)
Hash identifier: r5DLJhzPRhFNbMhbFOnhwD33y0jSJBLtKNrarIABHVE=
Subject key identifier: 19:78:41:86:9B:BD:CB:70:80:FF:2B:89:22:3C:17:2C:20:BF:F4:09
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 08BAAAC5
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/GXhBhpu9y3CA_yuJIjwXLCC_9Ak.roa
Signing time: Sat 01 Jan 2022 14:01:54 +0000
ROA not before: Sat 01 Jan 2022 14:01:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211828
IP address blocks: 2a0e:8f02:f007::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146451141 (0x8baaac5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 14:01:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=197841869bbdcb7080ff2b89223c172c20bff409
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:b4:78:0a:7b:9e:be:d6:ed:90:29:2b:f6:1d:
dc:d2:25:fa:1b:77:76:80:53:c5:27:fc:29:8f:1e:
91:c3:ae:2e:d8:50:f2:30:ae:e5:45:d3:a0:c5:2a:
ee:ab:47:98:f5:52:c3:f9:8b:61:be:f2:ab:6a:87:
ef:6e:43:f2:9a:80:b4:f1:f2:58:d6:13:ff:20:85:
6a:06:af:f4:ad:2f:97:7e:78:19:a6:4f:3c:3f:b0:
f8:ca:2d:5d:2c:04:f2:5a:3a:aa:78:5d:ac:a3:f6:
03:d3:a8:b0:e6:51:08:69:d5:a0:41:21:1d:8c:58:
9f:49:aa:48:25:f6:e2:bc:7d:2d:57:eb:dc:5c:8e:
66:44:bb:81:51:bb:be:e7:02:7e:06:0e:99:74:67:
36:98:7a:06:4b:fb:ce:7d:22:74:f0:46:eb:de:7c:
51:9f:6a:8a:ae:6a:9f:b8:8c:8b:ef:a7:b9:e7:e1:
ff:73:d7:b0:67:24:f7:34:8a:93:f1:37:16:58:0b:
9b:cf:b1:a9:1f:be:aa:25:3c:91:f5:38:97:f1:25:
b6:6b:40:e8:ae:c8:6d:78:a2:c3:7c:53:30:1b:4f:
f3:e4:99:c9:32:6d:2b:33:f1:9e:d6:31:88:f9:8a:
8a:ce:0d:46:9a:71:e8:50:ab:92:0b:89:90:e3:71:
7f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:78:41:86:9B:BD:CB:70:80:FF:2B:89:22:3C:17:2C:20:BF:F4:09
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/GXhBhpu9y3CA_yuJIjwXLCC_9Ak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f007::/48
Signature Algorithm: sha256WithRSAEncryption
57:c6:93:d7:3d:2f:d9:bd:c6:7f:47:5f:fc:f3:eb:54:31:e2:
8b:1b:8e:b9:94:7b:1c:8f:c1:46:af:25:37:0c:24:e8:fa:cd:
34:26:2a:e2:b9:cf:d7:ab:9e:25:50:6a:a2:b8:bc:a9:0f:b5:
17:30:5a:32:bc:40:92:ea:1a:b5:e4:4f:ed:7c:8d:0e:63:42:
f2:95:d5:e7:44:f7:c6:9e:e8:19:59:ff:63:8b:c2:f6:c1:9a:
c0:b4:bd:f1:98:76:7e:7e:ac:53:10:90:ef:36:ff:7a:3d:51:
b4:00:54:ab:6f:68:b6:1e:a7:2a:a0:02:46:89:49:bf:49:82:
40:10:bf:b3:ff:ae:41:88:1b:2a:d1:fd:6d:4c:a8:fc:9a:46:
49:6f:a8:b3:4f:16:65:ad:e2:22:b3:c8:72:a3:dc:15:1e:e6:
b7:d3:16:0c:2b:9f:51:e7:c6:bd:3b:0e:91:75:e7:f3:12:26:
2a:9d:0d:4e:db:0a:e9:a8:14:5a:8e:76:3f:5c:55:5a:10:79:
da:18:bf:c0:6d:5c:0f:38:42:fd:ab:a8:6e:4b:9b:5e:16:a8:
87:0e:1f:f2:7b:cb:4a:23:74:0c:90:60:97:5c:cd:9d:57:46:
89:4b:91:1d:72:7c:f3:52:51:8d:b6:f6:9d:70:d3:93:cb:b0:
76:d2:2e:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:12 2023 by rpki-client on console-ams.rpki-client.org