Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/nSk8-izCz_p42Ky-ZjyO6DWHPV8.roa
File: nSk8-izCz_p42Ky-ZjyO6DWHPV8.roa (raw, json)
Hash identifier: DnH1Pj/V7oLla7LaNsbmVQOzZ6WeTnPej9bIz+6TXJw=
Subject key identifier: 9D:29:3C:FA:2C:C2:CF:FA:78:D8:AC:BE:66:3C:8E:E8:35:87:3D:5F
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 0182CB62F3DE79257049291ABB33F704534C
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/nSk8-izCz_p42Ky-ZjyO6DWHPV8.roa
Signing time: Tue 23 Aug 2022 15:47:15 +0000
ROA not before: Tue 23 Aug 2022 15:47:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212387
IP address blocks: 2a0e:8f02:f04a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:cb:62:f3:de:79:25:70:49:29:1a:bb:33:f7:04:53:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Aug 23 15:47:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d293cfa2cc2cffa78d8acbe663c8ee835873d5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:71:8d:52:b0:a7:96:b1:c1:19:f9:a2:6e:3e:
29:5d:ba:dc:39:35:dc:aa:3a:72:e7:c9:4b:91:21:
d4:74:ec:a1:eb:5c:cc:59:8d:e2:45:10:c3:ca:c4:
46:f4:b5:1e:9e:c0:fe:ec:f0:a7:45:82:a6:ea:ec:
1e:73:8a:56:bc:4a:be:43:5c:04:65:46:ea:7b:ab:
61:33:79:88:28:fa:ec:d4:73:2d:b3:10:f5:d8:da:
96:fa:bb:4c:67:88:13:bb:f5:f2:e3:1f:d9:e3:70:
ad:93:3a:f1:aa:3f:d8:13:8c:a1:b4:b6:7a:f7:78:
ff:fa:a8:58:f6:22:1a:f7:c0:c6:e0:6b:f5:56:bf:
4d:86:75:1d:82:9c:0c:64:bb:a1:a3:da:d8:18:10:
a7:8a:cd:9a:5e:8b:9f:30:1e:36:bf:81:36:8e:b1:
a5:8e:93:52:f1:c1:ec:66:84:47:86:ff:17:9d:a4:
a3:94:ca:3d:04:5a:b7:c6:b2:68:c0:2f:15:75:36:
87:43:3f:fc:fa:0f:5b:88:a9:f8:45:69:1a:96:12:
35:30:8b:10:a8:92:33:07:d2:46:1f:dc:a4:0a:6f:
bf:69:a1:95:28:23:ff:a1:f0:55:99:5d:1d:19:b0:
5e:d6:80:a9:cc:ea:b2:93:dc:3a:d5:ef:13:bf:9e:
61:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:29:3C:FA:2C:C2:CF:FA:78:D8:AC:BE:66:3C:8E:E8:35:87:3D:5F
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/nSk8-izCz_p42Ky-ZjyO6DWHPV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f04a::/48
Signature Algorithm: sha256WithRSAEncryption
68:75:83:fc:d9:2c:ef:10:a3:8e:06:ed:3c:2b:44:13:85:89:
fc:19:b4:7f:1e:90:45:66:25:ab:11:9c:93:24:2a:4d:df:23:
21:33:f6:a4:69:b1:d1:00:49:86:cd:01:ee:f9:e6:e0:18:d7:
24:7b:a5:da:c0:f3:e7:dc:dc:60:90:0b:2f:b4:a0:1b:1d:6e:
5f:a7:de:f2:ef:ec:cf:1f:cf:d2:9e:12:e5:83:1c:51:41:4d:
22:8e:ef:7a:8f:dc:d3:da:24:4f:4f:86:77:82:07:5f:e0:61:
f2:40:14:3d:6b:98:bf:e0:05:c5:64:69:d6:24:ef:e2:b5:85:
cb:0b:3a:8c:58:26:db:cf:e9:39:84:f3:f1:39:46:9a:dc:47:
25:df:4e:d7:94:bc:26:8d:fa:35:73:1d:a3:fe:7f:52:87:ae:
9b:c5:27:07:c6:fa:c1:ea:6c:91:db:3c:d1:fc:a7:4b:25:4a:
f3:77:e2:7a:8c:e1:73:07:da:a6:aa:0a:74:aa:c9:f7:ee:4c:
ac:4a:db:79:0f:c5:6e:64:f2:98:1c:06:c1:e3:6e:88:94:1b:
77:3b:01:5e:8e:a6:4c:1f:0c:1f:ea:42:64:45:f1:45:b1:5d:
e0:5d:67:71:70:db:7e:1d:34:b1:bb:13:4b:0e:0e:8a:59:e8:
b1:27:3b:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:12 2023 by rpki-client on console-ams.rpki-client.org