Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/g9C-H0b71yw6WKspjg6CCdqjt5I.roa
File: g9C-H0b71yw6WKspjg6CCdqjt5I.roa (raw, json)
Hash identifier: MCUPsYFzlpTY6M/p/rgyXcbKpC6JhejV0Tnd9gnAUR8=
Subject key identifier: 83:D0:BE:1F:46:FB:D7:2C:3A:58:AB:29:8E:0E:82:09:DA:A3:B7:92
Certificate issuer: /CN=c228348e9054973d7a5f8193bd4e5c44f67399e1
Certificate serial: 01828937EF1DD4ABC29FC66DBEA9F10357FF
Authority key identifier: C2:28:34:8E:90:54:97:3D:7A:5F:81:93:BD:4E:5C:44:F6:73:99:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wig0jpBUlz16X4GTvU5cRPZzmeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/g9C-H0b71yw6WKspjg6CCdqjt5I.roa
Signing time: Wed 10 Aug 2022 19:25:20 +0000
ROA not before: Wed 10 Aug 2022 19:25:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205432
IP address blocks: 2a05:b0c6::/32 maxlen: 32
2a05:b0c6:400::/40 maxlen: 40
2a05:b0c7::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:89:37:ef:1d:d4:ab:c2:9f:c6:6d:be:a9:f1:03:57:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c228348e9054973d7a5f8193bd4e5c44f67399e1
Validity
Not Before: Aug 10 19:25:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83d0be1f46fbd72c3a58ab298e0e8209daa3b792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:1f:1b:24:5d:68:f9:15:95:ca:3a:4b:62:45:
26:87:24:3a:bd:00:ca:fd:90:54:05:64:33:de:af:
42:1f:08:92:83:fb:52:6d:9f:9e:fa:d0:87:74:4f:
6a:69:92:a7:64:3d:40:66:25:05:71:88:ca:30:3f:
98:17:8e:1b:4a:7a:52:ea:5f:4d:97:af:e1:ae:05:
fc:7b:5b:e4:6b:7f:e7:6a:71:bd:6b:1a:ad:97:d3:
72:b5:ff:52:b7:ef:9e:a9:d3:2c:b9:d3:36:78:64:
7a:4a:0f:23:d2:1c:c5:cb:5d:78:91:af:c8:ba:bb:
13:6a:65:21:c6:1d:54:38:5c:66:69:7a:01:91:f0:
9e:dc:c9:86:25:50:51:e6:7f:b3:b4:57:e1:3c:a0:
af:24:50:63:36:36:d3:9f:9f:81:03:94:b3:74:f7:
77:45:e3:74:cd:e0:2d:8c:2e:3b:12:d9:58:76:66:
fd:01:52:fd:e4:8c:0f:12:0c:23:0c:d4:11:6c:fb:
1a:19:f0:2e:42:51:ef:6f:2e:80:1d:35:08:bc:fe:
47:2e:39:92:9f:55:74:13:05:86:11:84:b2:00:80:
fd:a0:d4:c7:5d:4c:c3:68:bd:55:5d:56:00:cc:92:
9a:11:cd:70:39:59:cd:96:9b:95:b8:33:f0:a2:50:
35:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:D0:BE:1F:46:FB:D7:2C:3A:58:AB:29:8E:0E:82:09:DA:A3:B7:92
X509v3 Authority Key Identifier:
keyid:C2:28:34:8E:90:54:97:3D:7A:5F:81:93:BD:4E:5C:44:F6:73:99:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wig0jpBUlz16X4GTvU5cRPZzmeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/g9C-H0b71yw6WKspjg6CCdqjt5I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/wig0jpBUlz16X4GTvU5cRPZzmeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:b0c6::/31
Signature Algorithm: sha256WithRSAEncryption
47:8d:90:30:17:bc:dd:b1:19:97:7d:a9:c4:dd:00:ff:55:b8:
01:68:96:c8:5f:18:03:d4:d6:f6:ea:b5:08:cc:d4:34:aa:bb:
97:db:76:b9:07:83:e1:4f:8f:78:56:b6:4f:45:1b:19:fc:22:
99:56:a2:50:a6:0f:b4:70:3f:56:f5:47:dd:0b:2f:03:3e:99:
96:86:f2:86:95:6b:7a:17:80:3e:9d:28:04:7d:7c:47:b1:cc:
5c:8e:41:10:18:43:ed:d7:5a:16:12:24:70:7f:58:46:83:fe:
de:bf:ec:99:b3:eb:9f:06:1f:51:6c:5c:fb:65:4a:55:ae:9e:
ab:24:95:44:c9:79:14:05:61:a0:59:54:60:9f:25:52:2f:01:
79:ef:c4:3e:9e:52:b0:3d:ad:39:27:7e:e2:85:e1:1e:e8:6c:
41:7f:04:4c:0d:b9:61:4b:a5:e5:92:b6:b9:e4:34:ca:d4:9e:
79:c9:7b:ea:52:9b:8b:be:62:31:6f:17:8d:e0:eb:13:2a:07:
f0:75:3f:19:7b:3d:cb:be:91:01:28:6a:fe:05:dd:fa:7a:af:
fe:71:bb:3c:11:f2:de:4a:54:4f:bb:4b:09:3a:b1:b7:57:05:
5c:96:25:6c:f9:cc:45:e6:86:50:1b:56:32:ab:23:33:f1:dd:
2a:5c:e6:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:17 2024 by rpki-client on console-ams.rpki-client.org