Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/gwFLQO8tNRTy1TfGWMauumeUOVY.roa
File: gwFLQO8tNRTy1TfGWMauumeUOVY.roa (raw, json)
Hash identifier: JEXydcDVwuBkDxDYmkX1SJEA8/P6qoFnrKugg5gNLnI=
Subject key identifier: 83:01:4B:40:EF:2D:35:14:F2:D5:37:C6:58:C6:AE:BA:67:94:39:56
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 08BD19AF
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/gwFLQO8tNRTy1TfGWMauumeUOVY.roa
Signing time: Sat 01 Jan 2022 14:01:55 +0000
ROA not before: Sat 01 Jan 2022 14:01:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211870
IP address blocks: 2a0e:8f02:2100::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146610607 (0x8bd19af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 14:01:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83014b40ef2d3514f2d537c658c6aeba67943956
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:b7:09:ec:9a:8a:c2:7b:11:50:84:61:24:15:
b1:91:13:c5:ee:43:61:7b:6d:a4:da:07:4e:60:36:
51:7f:76:2e:6c:5b:99:0a:6e:3c:27:2f:db:22:16:
12:8f:d1:16:67:e0:b7:54:92:ce:e2:73:2d:9e:e9:
b4:3e:e2:ab:64:48:b9:11:bc:1e:cd:30:6b:2e:df:
d2:be:3c:a1:17:79:09:12:b5:e2:7f:4f:17:c5:c5:
04:2c:f6:86:ef:f8:e0:0f:ce:45:a2:03:81:30:a5:
57:5b:58:18:9f:91:75:4c:0b:37:a3:17:c9:f5:5c:
02:39:f2:6f:41:a6:93:69:b5:d7:5d:1e:b8:92:14:
0d:da:03:4e:43:b8:78:31:b2:f1:b8:ff:14:62:8a:
f1:d6:cd:c5:79:a8:cf:98:44:53:08:6f:3d:93:bc:
65:73:0b:73:14:2d:f0:02:16:54:ca:61:49:f7:9c:
9e:71:76:c3:57:30:29:c4:a5:0b:d2:a1:2f:61:de:
28:91:6f:bb:c3:2b:55:70:f0:aa:c5:b2:d6:17:c0:
27:0a:93:9f:4d:38:b6:2b:49:fb:20:ed:e8:4c:cc:
b5:28:41:a7:49:d0:73:88:b2:2f:bc:bb:cf:3b:aa:
67:f8:80:2c:7b:79:1f:11:2d:40:ec:ca:e3:a7:7b:
67:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:01:4B:40:EF:2D:35:14:F2:D5:37:C6:58:C6:AE:BA:67:94:39:56
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/gwFLQO8tNRTy1TfGWMauumeUOVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:2100::/44
Signature Algorithm: sha256WithRSAEncryption
9f:68:21:e2:ce:c5:35:6c:3c:9f:77:db:02:28:a5:71:6b:3a:
47:74:e2:a8:13:ab:23:cc:d9:15:30:d6:8e:72:1e:f9:23:00:
ff:10:6b:5a:f5:07:8b:7a:c9:dd:78:74:a2:4f:c4:16:29:dc:
11:35:1a:22:f7:dd:08:54:b9:aa:c3:e2:50:eb:4b:71:cf:28:
43:83:7a:d4:1a:84:17:be:c5:31:2b:a2:93:7b:51:5c:9a:56:
79:5b:29:4f:02:66:45:22:c6:44:60:be:32:cf:ab:ab:05:d8:
f0:00:8e:b8:c3:0c:1b:94:10:77:e6:d4:6c:1b:24:4f:13:8f:
ac:31:ad:75:a2:3b:6e:e6:e3:46:72:42:bf:9e:59:59:77:5b:
f9:8b:6f:b1:ef:73:9f:0d:10:32:49:10:b7:cc:5f:f4:38:26:
0e:0f:6c:9a:50:d6:08:18:aa:64:9a:66:75:bd:2e:82:41:13:
da:ed:5e:b9:e7:23:98:bf:5a:9b:75:02:ed:8e:76:84:f0:fc:
eb:0e:43:0f:2f:fc:28:f8:79:3e:e3:a8:b7:1a:a5:03:51:e2:
10:e6:e2:25:74:84:ef:b6:90:9c:22:46:3e:7a:a3:a5:3c:ff:
97:c9:3e:30:2d:e8:6d:b6:db:8d:b3:8a:b0:57:b0:1c:8c:fb:
00:f3:52:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:12 2023 by rpki-client on console-ams.rpki-client.org