Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/gVx25jM5lDf8DdNGT2yPfK60mD8.roa
File: gVx25jM5lDf8DdNGT2yPfK60mD8.roa (raw, json)
Hash identifier: Er7TreyzAzB2HSm4xNG8+DojqewuFDKsR+vZ6DZb78A=
Subject key identifier: 81:5C:76:E6:33:39:94:37:FC:0D:D3:46:4F:6C:8F:7C:AE:B4:98:3F
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 08B0023A
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/gVx25jM5lDf8DdNGT2yPfK60mD8.roa
Signing time: Sat 01 Jan 2022 14:01:48 +0000
ROA not before: Sat 01 Jan 2022 14:01:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211153
IP address blocks: 2a0e:8f02:2190::/44 maxlen: 48
2a0e:8f02:f034::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145752634 (0x8b0023a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 14:01:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=815c76e633399437fc0dd3464f6c8f7caeb4983f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:c6:91:f9:26:2a:10:16:5e:67:aa:95:d5:be:
47:1f:cc:a6:f6:ee:47:3a:1c:48:c8:77:ea:6f:d3:
71:0d:65:58:51:16:c0:5a:0c:22:c1:c7:8b:b6:66:
58:b0:19:2f:38:a4:c5:34:c1:42:2c:46:1c:a8:72:
d2:c2:56:8a:31:e6:62:51:0e:02:0e:f0:2b:b7:df:
59:3e:47:84:56:17:5d:a5:a8:1b:e7:8f:75:8f:51:
b6:ac:5c:81:1d:20:fa:3a:ae:cd:99:e8:86:49:3d:
31:ba:51:af:84:83:08:ef:ff:de:b5:be:96:46:42:
e1:4f:ce:98:42:9f:ce:e0:f6:f7:13:85:be:5a:60:
8f:dd:1b:54:42:cb:6d:05:02:b0:24:fb:09:03:59:
83:3a:e0:55:b0:6c:8c:ed:e4:23:60:1e:8b:18:9a:
30:38:e2:b0:d5:cc:d0:89:e4:d9:aa:a7:70:41:b1:
84:f0:82:06:54:b9:91:a4:3c:c7:61:31:0e:33:ad:
87:b8:34:0e:f4:2b:3a:f4:f0:49:f7:b1:2b:49:44:
f5:70:0f:69:b6:59:e8:8f:13:17:06:a7:2e:07:aa:
bc:12:42:8f:ec:6a:ba:7e:0f:48:13:f5:78:8f:87:
2f:f4:4c:1b:7e:90:14:cc:67:e1:0f:6a:0f:5c:19:
ae:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:5C:76:E6:33:39:94:37:FC:0D:D3:46:4F:6C:8F:7C:AE:B4:98:3F
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/gVx25jM5lDf8DdNGT2yPfK60mD8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:2190::/44
2a0e:8f02:f034::/48
Signature Algorithm: sha256WithRSAEncryption
7f:b0:29:7e:15:34:d5:27:99:51:cb:88:19:ac:7b:14:1a:75:
6b:00:41:8c:e5:d2:9c:2b:57:25:ce:91:42:33:8f:75:d9:84:
6b:cd:ad:ab:6a:c2:0f:30:6e:92:45:45:3b:79:91:89:15:30:
cb:c5:c8:5f:95:cf:13:e2:db:93:f1:ca:7f:00:2d:0e:91:7d:
78:e7:c7:a1:a9:f0:a6:2c:e1:5c:03:d1:db:b0:88:2a:59:69:
2e:3c:c8:b3:21:6a:76:79:56:44:d1:1d:cc:c0:ec:33:e2:22:
21:88:3a:e5:7e:9e:a6:85:c5:13:ae:93:82:87:3d:90:c9:84:
b6:e9:6a:ac:d7:1b:25:b1:57:4f:7b:a1:72:ab:96:7d:d1:89:
7e:ce:15:b6:b7:98:9b:09:75:d9:bc:84:7a:51:7b:7e:f6:b0:
8e:56:e2:0d:fb:14:c4:3b:3e:37:64:f7:b0:d5:64:d2:12:6e:
91:57:97:41:5e:d3:4c:73:bd:f3:12:d4:7f:fe:e3:4c:81:9a:
68:6a:3a:5e:84:df:8c:8a:6e:0d:03:6f:19:9e:5f:73:d1:02:
8b:77:ce:cc:07:28:cb:e8:ee:ca:75:f2:99:44:50:27:79:f7:
66:84:7f:61:1e:2b:4b:6a:64:4b:d2:c2:71:81:8e:c7:8b:71:
a6:9e:2a:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:12 2023 by rpki-client on console-ams.rpki-client.org