Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/_GqFetcReo1IwIJfDtk8jrLj4uA.roa
File: _GqFetcReo1IwIJfDtk8jrLj4uA.roa (raw, json)
Hash identifier: mpBlpe10cHXR38+cGEyYYdy2NDRA2WdRyMl8WzPYd5c=
Subject key identifier: FC:6A:85:7A:D7:11:7A:8D:48:C0:82:5F:0E:D9:3C:8E:B2:E3:E2:E0
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 09045344
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/_GqFetcReo1IwIJfDtk8jrLj4uA.roa
Signing time: Sat 01 Jan 2022 15:03:03 +0000
ROA not before: Sat 01 Jan 2022 15:03:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 54040
IP address blocks: 2001:668:121::/48 maxlen: 48
2001:668:122::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151278404 (0x9045344)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Jan 1 15:03:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc6a857ad7117a8d48c0825f0ed93c8eb2e3e2e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:96:32:25:5f:1a:b8:ad:cc:57:f8:ee:7a:78:
89:2c:02:03:f4:fc:55:bb:5e:26:6a:62:06:34:ab:
fe:35:4c:da:93:5b:10:0b:a6:b4:35:61:1a:d4:d2:
cd:10:df:20:38:72:d3:8d:49:49:f1:10:a0:78:b7:
7e:30:05:7e:30:53:22:6c:98:c6:72:10:b9:0a:6c:
27:cb:ee:5b:3b:cb:3e:c9:4a:7c:0e:34:b6:ed:30:
32:bb:7c:73:63:36:d6:6e:95:2d:9f:db:c0:89:47:
eb:c5:0c:ab:14:e4:b2:16:de:cd:5d:c6:2d:f7:fb:
51:55:f4:55:97:fc:3a:e1:11:71:b7:ff:07:69:8f:
37:e3:a1:53:58:c7:57:ce:fa:0a:4d:c2:cc:82:6e:
4d:23:51:f4:29:78:6a:47:32:ea:45:e6:63:00:ef:
74:48:e0:3a:5d:1e:38:10:0e:67:cd:cd:44:7d:c8:
7e:c8:e5:2d:31:80:3d:49:63:c3:f9:a3:47:2f:0e:
ad:e5:c6:9c:b2:1c:6b:f2:65:06:a9:23:37:51:f5:
ff:b5:be:04:21:4a:0a:8a:a5:fa:86:11:38:6a:8d:
73:0f:28:d0:92:d8:0b:4a:e7:80:6c:23:9c:88:e1:
dd:fe:70:35:cf:7b:31:dd:33:eb:54:bb:73:51:55:
b1:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:6A:85:7A:D7:11:7A:8D:48:C0:82:5F:0E:D9:3C:8E:B2:E3:E2:E0
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/_GqFetcReo1IwIJfDtk8jrLj4uA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:668:121::-2001:668:122:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
39:62:cd:2a:96:9a:d8:27:b2:8a:8c:66:45:b1:de:b1:f3:d5:
33:75:1a:0d:ac:44:3b:b0:dd:8a:20:b1:6b:89:37:9e:3e:e3:
60:f8:b1:ca:d0:91:73:52:44:61:bf:01:a6:5c:d5:dc:9d:f7:
a5:5e:d7:b5:06:22:2a:9b:fb:e6:4e:fe:9e:6a:bd:29:f3:a9:
e9:2b:89:24:ee:83:92:79:b2:53:16:e0:73:52:f6:ca:0d:e3:
59:60:ef:f1:47:04:55:df:de:cb:a9:b4:9a:f3:43:7b:d1:ad:
ed:ff:38:a1:26:88:c7:0a:4b:eb:4a:77:fe:a9:95:66:f9:23:
38:52:db:22:ef:a2:f9:81:9b:57:cc:54:6a:8d:ba:09:3b:bb:
3c:09:e1:c4:9a:22:eb:12:19:4e:f8:a5:68:c0:f8:01:6e:c2:
80:83:db:24:58:f5:79:7e:53:e6:7c:16:51:ab:e3:66:7d:fa:
95:01:0b:19:de:e9:84:ef:f7:d8:14:53:a7:9f:7e:2a:b5:d7:
ef:d9:34:9f:c5:d9:f6:8d:5c:2b:a2:56:9d:47:d9:62:7e:78:
f6:0b:74:11:9f:cf:95:11:b8:a5:21:6a:b2:af:65:1a:c8:86:
8c:32:c8:23:31:ba:6c:a0:1f:a4:f6:ea:44:a8:dd:0e:77:ab:
77:8a:5d:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:11 2023 by rpki-client on console-ams.rpki-client.org