Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/wW4OZ0pH7tOsMUHep7juI7E5vDY.roa
File: wW4OZ0pH7tOsMUHep7juI7E5vDY.roa (raw, json)
Hash identifier: QfawcoOv8A+NdJJE2R86BvRYkEdrfXdVnuf5izihng4=
Subject key identifier: C1:6E:0E:67:4A:47:EE:D3:AC:31:41:DE:A7:B8:EE:23:B1:39:BC:36
Certificate issuer: /CN=87be093097097c4457ff5aa3e5893c8c15432612
Certificate serial: 035399AA
Authority key identifier: 87:BE:09:30:97:09:7C:44:57:FF:5A:A3:E5:89:3C:8C:15:43:26:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h74JMJcJfERX_1qj5Yk8jBVDJhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/wW4OZ0pH7tOsMUHep7juI7E5vDY.roa
Signing time: Sat 01 Jan 2022 02:02:06 +0000
ROA not before: Sat 01 Jan 2022 02:02:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211972
IP address blocks: 2a10:9902:731::/48 maxlen: 48
2a10:9902:730::/48 maxlen: 48
2a10:9902:733::/48 maxlen: 48
2a10:9902:732::/48 maxlen: 48
2a10:9902:73f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55810474 (0x35399aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87be093097097c4457ff5aa3e5893c8c15432612
Validity
Not Before: Jan 1 02:02:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c16e0e674a47eed3ac3141dea7b8ee23b139bc36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b1:dd:03:f6:0b:c6:b0:40:a5:72:18:dd:47:
8c:ff:90:85:cc:57:b2:9a:f4:50:77:dd:8f:34:e1:
08:b4:db:7e:9d:d9:09:d1:81:bd:e2:f9:85:ae:8d:
e4:f9:59:d1:56:c7:c6:45:b1:8b:02:ff:d9:be:20:
48:65:04:46:28:1e:f5:38:28:42:2c:18:ad:b6:85:
ec:e3:c2:d5:bc:d7:07:67:e2:d5:e4:b3:1b:5c:c6:
ea:e9:0d:50:de:2f:c1:e1:8f:ff:29:2c:cf:e7:99:
2f:79:31:7a:86:92:27:43:a2:14:38:81:73:be:9b:
99:de:2e:e3:9a:57:1b:b3:52:2f:72:d1:ac:cd:0e:
1b:3f:53:ed:59:44:81:7a:cf:0e:67:78:c6:78:5b:
86:6f:f3:f4:b4:c7:69:77:b7:25:0b:e4:cd:a0:7a:
e4:5e:ab:15:ed:69:0a:d2:aa:c7:43:3e:43:6f:7e:
d0:df:ac:77:e8:81:c6:99:f5:fd:ec:be:05:94:53:
26:88:0f:f5:ab:f5:e0:df:02:5e:8b:2b:49:0b:df:
68:13:82:5b:2b:c2:59:65:68:51:86:61:36:0b:cd:
3b:e1:16:8a:d6:3b:fb:cb:d5:84:11:bb:49:0f:9f:
23:96:02:ce:01:7e:f7:e7:65:fd:3d:e4:5c:d4:55:
45:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:6E:0E:67:4A:47:EE:D3:AC:31:41:DE:A7:B8:EE:23:B1:39:BC:36
X509v3 Authority Key Identifier:
keyid:87:BE:09:30:97:09:7C:44:57:FF:5A:A3:E5:89:3C:8C:15:43:26:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h74JMJcJfERX_1qj5Yk8jBVDJhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/wW4OZ0pH7tOsMUHep7juI7E5vDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/h74JMJcJfERX_1qj5Yk8jBVDJhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:9902:730::/46
2a10:9902:73f::/48
Signature Algorithm: sha256WithRSAEncryption
56:04:cd:c1:83:7d:83:d8:25:ca:a1:2e:09:b4:33:3b:b0:8d:
86:a2:b7:59:0a:6b:65:cf:18:65:0c:0d:af:9b:21:58:30:ef:
b1:f6:d7:23:23:71:3b:64:a0:0a:a5:7a:7d:ee:5d:ca:51:bf:
2b:54:b7:fc:a1:62:d3:f2:a2:4f:e4:a3:d8:6b:56:50:bd:d7:
1d:5e:2c:71:f2:63:f2:97:6f:64:3c:7f:9d:91:66:e9:f9:95:
ef:a6:bc:c3:0a:29:0a:f4:82:50:d1:9a:43:16:0a:9a:e6:98:
bd:b0:af:7e:93:5e:bf:ae:ea:67:ac:f2:06:99:bb:d3:c0:e2:
ca:4d:a5:c0:6d:60:50:46:38:21:cd:a3:fc:af:71:43:d1:48:
d8:c6:1b:12:1f:32:db:ec:38:86:67:c6:c5:f3:ab:36:31:c2:
26:d9:89:30:af:a4:3d:b4:07:e8:96:60:69:81:51:2d:cb:a4:
49:76:d0:1b:9a:cb:06:45:d1:d0:a3:5d:0b:72:c5:8b:64:f6:
cb:93:57:cc:ab:85:dc:75:bd:ae:cb:9c:19:9f:16:cb:f4:e5:
eb:e2:28:01:00:87:eb:8c:c7:82:85:e6:7a:20:d3:35:9c:30:
99:4f:3e:ac:a6:2a:c3:b4:c1:a6:23:d0:32:d8:4e:52:ff:99:
6d:d0:10:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:45 2024 by rpki-client on console-ams.rpki-client.org