Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/c9aa81-5bfd-4535-9606-941cc6a7bad9/1/rI928pMhfj4pMmH7Camoo19nZkI.roa
File: rI928pMhfj4pMmH7Camoo19nZkI.roa (raw, json)
Hash identifier: wWE9vK30wAaXS4tpBDE8BF0lmFIV96M7+tXmrODUebo=
Subject key identifier: AC:8F:76:F2:93:21:7E:3E:29:32:61:FB:09:A9:A8:A3:5F:67:66:42
Certificate issuer: /CN=17526ccac4f9064e058549b30172c84439787fbc
Certificate serial: 01848934AB39F2B96471C51D5F16E5134204
Authority key identifier: 17:52:6C:CA:C4:F9:06:4E:05:85:49:B3:01:72:C8:44:39:78:7F:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F1JsysT5Bk4FhUmzAXLIRDl4f7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/c9aa81-5bfd-4535-9606-941cc6a7bad9/1/rI928pMhfj4pMmH7Camoo19nZkI.roa
Signing time: Fri 18 Nov 2022 05:27:21 +0000
ROA not before: Fri 18 Nov 2022 05:27:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208661
IP address blocks: 2a0c:b6c3::/32 maxlen: 32
2a0c:b6c5::/32 maxlen: 32
2a0c:b6c1::/32 maxlen: 32
2a0c:b6c4::/32 maxlen: 32
2a0c:b6c2::/32 maxlen: 32
2a0c:b6c0::/32 maxlen: 32
2a0c:b6c6::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:89:34:ab:39:f2:b9:64:71:c5:1d:5f:16:e5:13:42:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17526ccac4f9064e058549b30172c84439787fbc
Validity
Not Before: Nov 18 05:27:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac8f76f293217e3e293261fb09a9a8a35f676642
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:a3:6a:35:30:0e:6c:41:90:26:6c:a1:51:79:
37:8f:ca:1c:83:9f:a6:34:31:23:52:de:7a:79:da:
99:0a:2e:94:a0:f7:20:12:ce:85:d8:0a:f1:b7:25:
0c:c6:0d:60:7c:c2:77:6b:5e:12:a2:b4:61:0e:d7:
5a:80:a7:39:de:11:58:aa:af:63:9d:0f:85:dc:05:
30:f5:18:4c:e0:d7:47:b4:5a:9d:77:e3:ad:0c:5f:
d8:44:58:21:84:4f:9e:a8:49:e9:d0:8d:48:0e:d3:
a8:cd:fd:a0:6c:a2:73:4c:61:50:d6:ea:46:3d:a0:
39:92:f7:da:ba:06:c7:68:97:1e:eb:59:72:99:67:
66:1e:46:4e:6f:ee:b2:7a:3b:ea:f8:e6:f2:5d:37:
2f:5c:50:b8:af:c0:93:17:62:6d:e0:cc:93:e1:e0:
d4:8e:d7:77:e0:3d:b5:11:96:23:63:88:a2:54:b6:
7c:ec:a2:85:3b:5f:81:20:18:90:80:49:88:d4:7b:
29:c9:8e:4b:8a:ab:f3:7d:3d:d1:ff:cd:35:3d:f2:
7e:a8:aa:70:7f:36:62:b5:aa:a2:40:2f:7c:0f:d1:
b5:c2:8a:f2:e0:ad:21:3f:12:97:9b:bf:bc:84:c3:
68:b3:a3:c2:1a:ba:80:5e:2f:6f:b5:9b:5d:de:43:
cb:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:8F:76:F2:93:21:7E:3E:29:32:61:FB:09:A9:A8:A3:5F:67:66:42
X509v3 Authority Key Identifier:
keyid:17:52:6C:CA:C4:F9:06:4E:05:85:49:B3:01:72:C8:44:39:78:7F:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F1JsysT5Bk4FhUmzAXLIRDl4f7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/c9aa81-5bfd-4535-9606-941cc6a7bad9/1/rI928pMhfj4pMmH7Camoo19nZkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/c9aa81-5bfd-4535-9606-941cc6a7bad9/1/F1JsysT5Bk4FhUmzAXLIRDl4f7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b6c0::-2a0c:b6c6:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
18:69:cf:3f:3c:3e:8b:ec:db:d7:e5:6f:3c:e7:bb:2a:c3:cb:
73:14:78:b2:04:74:b4:fd:ce:6a:df:40:cd:2b:f7:f6:75:9a:
c5:bc:a9:74:b2:92:52:2e:5b:9a:c5:69:ed:8e:31:c8:b2:92:
77:ea:c0:08:b8:24:8a:49:8d:dc:02:c8:93:34:3d:a9:60:81:
23:d3:38:85:2c:56:ec:b1:95:fe:53:55:c9:50:55:92:2e:e8:
dd:6d:22:74:b3:39:40:5f:2d:2e:42:6f:d1:d6:7f:fe:63:91:
21:b1:6b:1e:59:3c:27:65:8c:f0:44:92:59:80:1a:ff:66:b4:
46:e4:20:2e:26:d1:f6:c3:cf:50:f9:3f:f4:0a:2e:09:93:0c:
74:61:37:de:b7:56:a3:ad:b4:e0:18:94:ee:6f:62:b8:08:7d:
a8:f4:9c:13:45:71:c3:c6:07:b4:f3:67:e1:51:aa:df:c9:4c:
65:46:0e:aa:e2:53:fa:80:3d:57:fc:d9:7b:69:f4:1b:f9:d4:
ba:44:e6:ab:98:c1:88:07:66:ce:a8:46:43:16:fe:44:1b:a5:
33:52:04:5a:af:ec:e1:94:69:21:e4:5a:11:ea:0c:0f:a7:60:
94:92:f5:c7:6a:77:0d:05:7a:37:a0:12:ce:95:87:bd:8a:75:
fa:87:75:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:12 2023 by rpki-client on console-ams.rpki-client.org