Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/944f09-406e-4985-9929-36e0c8afe26a/1/67MqU1rKxm-4UBqZR8tprhGwPZI.roa
File: 67MqU1rKxm-4UBqZR8tprhGwPZI.roa (raw, json)
Hash identifier: y978Mb3G+i4J1BWb4j5gi78hengkSZC88wZRfL/6Sd8=
Subject key identifier: EB:B3:2A:53:5A:CA:C6:6F:B8:50:1A:99:47:CB:69:AE:11:B0:3D:92
Certificate issuer: /CN=f27c93ddb1a17151c56f22dcaf31dd8229463742
Certificate serial: 0183F41FB3A8CD8256EBD8FDEE0721094282
Authority key identifier: F2:7C:93:DD:B1:A1:71:51:C5:6F:22:DC:AF:31:DD:82:29:46:37:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8nyT3bGhcVHFbyLcrzHdgilGN0I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/944f09-406e-4985-9929-36e0c8afe26a/1/67MqU1rKxm-4UBqZR8tprhGwPZI.roa
Signing time: Thu 20 Oct 2022 06:41:01 +0000
ROA not before: Thu 20 Oct 2022 06:41:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202352
IP address blocks: 2a05:6584::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f4:1f:b3:a8:cd:82:56:eb:d8:fd:ee:07:21:09:42:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f27c93ddb1a17151c56f22dcaf31dd8229463742
Validity
Not Before: Oct 20 06:41:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ebb32a535acac66fb8501a9947cb69ae11b03d92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:b0:41:bc:b2:40:88:3e:ab:9b:77:74:a3:f4:
2e:fe:dc:52:d4:08:d2:20:06:71:36:6f:2d:5c:6e:
f5:c1:65:97:85:fe:8e:cc:80:0a:aa:47:46:43:96:
38:f4:40:21:a0:05:9f:7d:24:f9:bb:79:1d:dd:42:
1a:35:22:e7:29:fa:58:64:9c:ef:59:c2:e6:51:1b:
32:f5:9a:2a:64:da:e4:64:0e:5f:e3:a8:6a:64:69:
44:f4:63:48:4c:4f:b5:d6:d3:a1:e5:1b:05:ee:e7:
48:98:85:d0:82:7b:1e:8d:83:8a:8b:58:06:c3:1e:
4b:42:cc:67:64:70:f3:f7:c1:d1:a2:40:71:4e:bb:
da:e4:86:c1:88:72:9c:ae:4b:f5:42:a7:1f:86:2b:
6a:a8:9a:f9:35:c1:96:4b:36:18:9b:ab:3f:1a:c7:
f0:bd:c2:0f:c2:25:d2:65:ac:d1:fb:97:fd:d4:b9:
55:cc:45:42:cc:d9:17:b8:4a:da:a9:9c:90:4d:7b:
aa:ce:be:d0:2f:78:1d:04:38:41:42:76:f2:27:4a:
d6:66:d0:9a:cf:a8:43:62:11:46:06:b9:24:9c:28:
eb:48:7a:79:8f:c7:2a:24:28:78:52:73:37:3f:ef:
18:ee:a4:0d:2d:6e:73:04:09:8c:21:5a:62:38:35:
2f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:B3:2A:53:5A:CA:C6:6F:B8:50:1A:99:47:CB:69:AE:11:B0:3D:92
X509v3 Authority Key Identifier:
keyid:F2:7C:93:DD:B1:A1:71:51:C5:6F:22:DC:AF:31:DD:82:29:46:37:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8nyT3bGhcVHFbyLcrzHdgilGN0I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/944f09-406e-4985-9929-36e0c8afe26a/1/67MqU1rKxm-4UBqZR8tprhGwPZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/944f09-406e-4985-9929-36e0c8afe26a/1/8nyT3bGhcVHFbyLcrzHdgilGN0I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:6584::/32
Signature Algorithm: sha256WithRSAEncryption
97:51:73:9a:50:bf:0e:30:e5:f2:f0:a9:eb:bb:bf:b3:a4:38:
0a:11:88:95:6c:87:d4:ee:9c:b7:ff:48:50:1f:7d:3f:44:b3:
41:33:66:c5:db:2e:92:74:c9:8f:93:c9:c1:c0:0e:28:64:97:
cc:d9:74:78:79:ae:4a:86:d4:66:a2:f1:fe:af:76:c6:c7:57:
75:39:ab:6b:34:6c:b8:c1:36:1d:4c:da:fe:ff:12:37:46:82:
9e:b5:85:37:65:0b:23:c9:96:b1:fa:da:e7:61:b2:f8:17:2e:
c5:b7:5a:24:99:77:d4:c3:98:a6:86:78:cd:a8:af:b0:02:51:
95:d6:75:ef:a1:b0:26:d0:e1:c7:cb:7d:6b:f3:e2:f4:d7:d8:
7c:30:07:b3:60:75:f4:b4:04:c1:3a:0c:92:12:71:32:5f:83:
bb:f2:c8:ab:2a:f7:6b:34:a5:9f:77:d0:b7:c6:15:ac:44:db:
3f:34:58:07:5b:eb:91:91:5d:13:27:3a:85:7f:a2:a0:f8:50:
8d:df:ab:66:12:f9:94:0a:4b:ee:03:cc:61:05:0d:51:2f:43:
06:81:55:64:04:f9:ea:53:29:97:83:dc:c8:4c:13:39:b4:25:
0f:e6:44:42:68:90:76:a4:e0:95:d6:e3:e0:38:22:4d:59:82:
c7:52:18:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:27 2023 by rpki-client on console-ams.rpki-client.org