Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/c65398-a8eb-4d16-9c4e-3584e2ab1f0d/1/IAom_uUqArvDcJhJhe6pAvrzs9A.roa
File: IAom_uUqArvDcJhJhe6pAvrzs9A.roa (raw, json)
Hash identifier: tx4i1FPVPwaMfVPGfd9QuVGpFW15byppVuShLSfR/kE=
Subject key identifier: 20:0A:26:FE:E5:2A:02:BB:C3:70:98:49:85:EE:A9:02:FA:F3:B3:D0
Certificate issuer: /CN=c0d0495acf9c78b9183bba0c05b8a29974382b14
Certificate serial: 087DA637
Authority key identifier: C0:D0:49:5A:CF:9C:78:B9:18:3B:BA:0C:05:B8:A2:99:74:38:2B:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wNBJWs-ceLkYO7oMBbiimXQ4KxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/c65398-a8eb-4d16-9c4e-3584e2ab1f0d/1/IAom_uUqArvDcJhJhe6pAvrzs9A.roa
Signing time: Sat 01 Jan 2022 13:56:52 +0000
ROA not before: Sat 01 Jan 2022 13:56:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209489
IP address blocks: 2a04:de40:40::/42 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142452279 (0x87da637)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0d0495acf9c78b9183bba0c05b8a29974382b14
Validity
Not Before: Jan 1 13:56:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=200a26fee52a02bbc370984985eea902faf3b3d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5b:31:52:ac:0d:c2:43:c4:5e:e8:fb:52:79:
6c:13:7a:46:9a:f2:f3:75:bc:1b:21:06:5c:6e:15:
af:1b:40:c6:da:42:41:15:6c:36:53:77:9b:d9:c5:
45:99:9b:27:56:5f:9a:3b:f0:e1:40:53:7d:79:93:
f3:6a:df:41:af:51:5c:14:52:27:6b:ef:e9:63:d9:
0c:47:3f:11:32:e0:d0:af:89:c8:ef:dc:f6:6b:79:
f1:c1:db:fb:5c:d7:0a:63:86:eb:68:fe:08:91:c2:
e8:af:7c:b4:39:65:81:f2:ff:c8:ba:9b:8a:cc:09:
8d:6b:4f:d3:0c:d2:01:22:10:31:7a:5d:5e:f2:50:
f7:57:82:c2:28:62:c9:db:24:d2:c9:a8:44:16:b8:
74:36:1b:4e:c8:7b:0c:c2:db:7b:df:76:4b:dc:fb:
02:d6:fa:d0:3c:77:46:2f:bc:56:5e:82:a5:0f:30:
2e:65:75:61:26:20:a1:5c:2f:c7:2b:0d:81:cb:0d:
c9:e3:f6:f3:f3:d9:8b:a1:76:3f:82:57:62:97:aa:
fc:3b:f4:6b:a3:38:8e:d3:c0:60:2e:8a:cd:c5:9a:
aa:68:fa:08:e0:cc:c8:b4:fa:30:c2:60:a5:25:5a:
f5:a0:2b:c7:aa:95:b6:ef:9c:d6:89:13:e7:59:8a:
2a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:0A:26:FE:E5:2A:02:BB:C3:70:98:49:85:EE:A9:02:FA:F3:B3:D0
X509v3 Authority Key Identifier:
keyid:C0:D0:49:5A:CF:9C:78:B9:18:3B:BA:0C:05:B8:A2:99:74:38:2B:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wNBJWs-ceLkYO7oMBbiimXQ4KxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/c65398-a8eb-4d16-9c4e-3584e2ab1f0d/1/IAom_uUqArvDcJhJhe6pAvrzs9A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/c65398-a8eb-4d16-9c4e-3584e2ab1f0d/1/wNBJWs-ceLkYO7oMBbiimXQ4KxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:de40:40::/42
Signature Algorithm: sha256WithRSAEncryption
9d:41:c4:89:14:49:07:e3:0a:19:5a:b9:62:89:e7:63:18:12:
15:07:08:fa:22:28:10:2a:1a:c0:3d:37:09:e6:ca:85:26:22:
57:c0:56:2d:fa:14:57:b0:c6:92:82:11:eb:83:11:20:8c:8d:
c2:c7:ab:f8:69:c1:62:13:0d:48:fa:20:d5:aa:95:dc:1f:da:
d3:b6:6e:ff:dc:66:bc:52:f6:02:76:2b:81:a6:69:4e:eb:a2:
21:8e:38:90:ae:7e:96:e2:b4:e0:bc:3e:95:d6:fd:7d:0e:f5:
29:d4:e3:87:d3:9c:89:87:40:46:81:50:29:09:a2:e6:05:4d:
c5:dc:7d:be:53:b5:4e:e1:ed:8e:04:d2:3c:be:f8:04:65:72:
c1:9b:ea:39:50:23:aa:c3:8c:55:e4:02:d8:35:45:69:77:07:
13:c7:70:0d:d6:b1:9c:d8:4d:50:ab:29:45:1d:1b:fe:49:b6:
70:53:3c:df:b5:d4:ff:78:b6:49:0a:08:98:08:63:eb:90:ce:
20:15:c8:81:be:14:d5:0d:6d:68:81:1b:9d:67:ad:94:f5:8d:
15:15:81:59:ef:3b:aa:73:92:71:18:77:63:a5:05:4b:53:74:
4c:92:57:fe:f1:60:19:cf:92:c5:62:f3:e0:b5:3e:07:cf:8a:
6a:26:2c:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:46 2023 by rpki-client on console-ams.rpki-client.org