Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/ILUOvrQHnR1RG-aActGaVv-QSBM.roa
File: ILUOvrQHnR1RG-aActGaVv-QSBM.roa (raw, json)
Hash identifier: WhRnDuBWFHgZr1OOYio2eAQprq/P5AThxf1NWaJnE7U=
Subject key identifier: 20:B5:0E:BE:B4:07:9D:1D:51:1B:E6:80:72:D1:9A:56:FF:90:48:13
Certificate issuer: /CN=99fee7cbd8e78d1f14a453a04b916f7c1581d204
Certificate serial: 015B7C28
Authority key identifier: 99:FE:E7:CB:D8:E7:8D:1F:14:A4:53:A0:4B:91:6F:7C:15:81:D2:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/ILUOvrQHnR1RG-aActGaVv-QSBM.roa
Signing time: Sat 01 Jan 2022 02:59:23 +0000
ROA not before: Sat 01 Jan 2022 02:59:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210616
IP address blocks: 2a0e:3247:8001::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22772776 (0x15b7c28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99fee7cbd8e78d1f14a453a04b916f7c1581d204
Validity
Not Before: Jan 1 02:59:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=20b50ebeb4079d1d511be68072d19a56ff904813
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:a8:5b:04:4e:b3:13:2f:0d:91:4a:ff:80:7a:
ab:62:02:1b:50:bb:cb:ac:de:cf:af:95:76:18:e4:
e9:d0:40:e7:b5:22:4d:38:d2:c9:74:6c:8d:78:89:
f4:99:01:56:ea:fe:fd:df:53:5b:9d:4e:ed:a2:19:
f2:49:35:f5:88:f0:5e:7d:73:d3:72:ee:07:53:a2:
c4:70:3d:28:9c:a5:c3:86:5c:94:08:3e:6b:18:91:
17:3a:2a:0c:7f:e9:86:7d:d4:d3:0b:7f:43:8a:e8:
2e:30:b7:a0:29:73:16:67:2f:71:ef:8d:3e:ce:bc:
ae:c7:c9:58:6a:84:9d:44:3d:17:ba:d4:56:bb:c7:
f9:0f:2e:3e:49:7c:b0:43:fa:40:e7:0d:93:f7:19:
d0:c0:0e:0c:50:9b:0f:93:18:36:c0:3b:12:ee:0e:
e5:7a:57:64:28:ed:74:d5:17:48:12:99:78:49:05:
f2:41:19:36:1c:bf:8f:59:49:ec:de:42:31:ac:7a:
16:bd:57:e8:ea:2c:eb:a1:26:4f:62:ab:0f:af:38:
4e:ca:6b:7c:e8:49:34:1b:b4:ba:97:87:34:c0:e7:
25:ee:c9:af:df:81:8e:63:93:ec:42:23:64:f3:d5:
52:2c:8b:92:e9:47:48:b9:2a:cc:cd:a0:f1:c9:e8:
18:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:B5:0E:BE:B4:07:9D:1D:51:1B:E6:80:72:D1:9A:56:FF:90:48:13
X509v3 Authority Key Identifier:
keyid:99:FE:E7:CB:D8:E7:8D:1F:14:A4:53:A0:4B:91:6F:7C:15:81:D2:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/ILUOvrQHnR1RG-aActGaVv-QSBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:3247:8001::/48
Signature Algorithm: sha256WithRSAEncryption
4f:4a:40:7b:ae:3b:7f:93:6f:96:e5:ec:2b:b4:bd:98:3c:52:
cc:6e:3c:d7:92:0c:b8:9f:a7:2a:8b:37:d8:53:1a:07:0e:5d:
5a:87:ec:78:21:ca:02:29:25:f4:19:b2:3a:34:51:bc:e1:e8:
8c:da:94:5b:9c:5e:ec:bf:37:bc:b3:d8:f8:a8:b3:61:53:5b:
a4:9d:62:3a:df:17:d7:63:cc:8a:ba:6f:6d:50:aa:ce:c5:95:
86:5a:a6:43:bb:55:35:35:32:ff:bb:9d:96:ac:2d:a2:aa:17:
f4:55:e3:b9:cf:19:97:47:35:7e:bd:5c:91:a3:04:b7:4a:76:
8b:c1:74:7d:d2:a4:ff:e0:8a:23:83:6f:78:5a:7d:95:47:b4:
82:9f:80:af:07:1d:47:49:fa:1e:ad:4c:bc:70:79:13:3f:cf:
36:78:a3:fd:3b:d3:fd:43:6f:30:ee:96:c3:ea:02:b3:15:a8:
18:54:e4:aa:06:c8:2b:0e:b1:86:7e:98:64:5a:2e:57:c8:b9:
cc:62:35:17:4e:ab:f2:17:f7:c7:7f:7e:7a:1c:c7:28:fd:23:
94:d9:f4:66:e0:02:63:6c:42:7a:2a:89:49:ce:f8:a1:b6:ca:
b5:1e:8e:df:c4:44:b7:8a:46:73:a3:73:ab:f8:a5:51:26:f2:
94:8f:a1:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:36 2023 by rpki-client on console-fra.rpki-client.org