Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/nGpdKF0XqcShVKrtsUbsd557rgw.roa
File: nGpdKF0XqcShVKrtsUbsd557rgw.roa (raw, json)
Hash identifier: nnIdpR6bHjRz6VwvkvKn4JBvDXYzNPmR/VD5nhda2gI=
Subject key identifier: 9C:6A:5D:28:5D:17:A9:C4:A1:54:AA:ED:B1:46:EC:77:9E:7B:AE:0C
Certificate issuer: /CN=c228348e9054973d7a5f8193bd4e5c44f67399e1
Certificate serial: 0FC2E1C2
Authority key identifier: C2:28:34:8E:90:54:97:3D:7A:5F:81:93:BD:4E:5C:44:F6:73:99:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wig0jpBUlz16X4GTvU5cRPZzmeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/nGpdKF0XqcShVKrtsUbsd557rgw.roa
Signing time: Sat 01 Jan 2022 09:57:07 +0000
ROA not before: Sat 01 Jan 2022 09:57:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210842
IP address blocks: 2a05:b0c2:1000::/36 maxlen: 36
2a05:b0c2::/36 maxlen: 36
2a05:b0c2::/35 maxlen: 35
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 264430018 (0xfc2e1c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c228348e9054973d7a5f8193bd4e5c44f67399e1
Validity
Not Before: Jan 1 09:57:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c6a5d285d17a9c4a154aaedb146ec779e7bae0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:35:ee:f0:e2:a5:d5:64:9b:b7:b5:19:e4:d8:
75:31:5d:67:5f:2b:0d:4b:05:4a:61:f6:9e:d9:b4:
95:b9:68:d9:86:32:1b:82:84:63:e3:4c:ad:e4:ad:
16:c5:65:83:f7:3a:ab:9e:5b:6e:c9:04:53:f9:36:
a5:58:b8:04:04:8d:0d:1d:d5:65:79:dc:24:b2:b8:
c1:bc:10:4d:e4:6b:46:b1:aa:29:af:b8:04:b3:b3:
67:50:57:77:62:ea:a4:1e:57:06:9e:86:36:0c:a7:
43:c9:6b:99:c1:84:2f:35:c8:d1:ca:ca:d1:fa:ba:
4f:9f:6f:44:d6:e8:4e:88:c8:1e:19:a5:a8:14:db:
d1:7e:a5:6b:14:65:b1:de:02:56:a6:04:17:4c:f3:
d6:a6:71:77:01:75:1a:76:3a:a9:ed:6e:64:23:ad:
ae:1d:a8:21:6a:ca:b5:40:4f:b4:f6:48:63:3e:b3:
1c:0c:e9:73:24:2f:8f:50:76:2c:63:48:3b:e9:53:
54:74:b0:89:ce:95:7d:d2:06:17:6a:c4:e6:4b:34:
c7:d8:d0:34:ad:e8:bb:64:9e:5f:bb:bd:bf:69:d1:
b6:5a:c6:86:cb:9e:8c:22:38:79:65:0b:bc:83:0b:
ac:ac:90:2b:6d:10:9b:c1:26:ff:8d:ab:43:5a:a9:
f0:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:6A:5D:28:5D:17:A9:C4:A1:54:AA:ED:B1:46:EC:77:9E:7B:AE:0C
X509v3 Authority Key Identifier:
keyid:C2:28:34:8E:90:54:97:3D:7A:5F:81:93:BD:4E:5C:44:F6:73:99:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wig0jpBUlz16X4GTvU5cRPZzmeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/nGpdKF0XqcShVKrtsUbsd557rgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/wig0jpBUlz16X4GTvU5cRPZzmeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:b0c2::/35
Signature Algorithm: sha256WithRSAEncryption
4b:69:77:5b:76:1a:01:8f:c1:a3:04:f8:0b:d6:79:b2:db:85:
5d:53:c0:6a:89:ab:cb:d9:e3:14:82:03:3c:bc:8f:16:08:72:
db:88:5f:64:f0:44:5e:79:d2:3a:81:47:f6:0f:55:f9:bd:90:
55:35:e8:17:9b:f6:6f:05:d2:83:bd:73:c7:93:68:69:b2:a1:
95:a2:7b:1b:0c:09:71:5b:26:19:35:c5:0d:56:97:8d:25:35:
72:df:f7:cd:48:13:22:d6:f8:35:43:16:f8:c9:ff:cc:23:5b:
25:7d:8c:02:82:65:5c:65:85:f9:08:1d:48:f3:cc:02:75:20:
eb:fa:b7:15:c0:2c:e0:3f:3f:82:5c:19:cf:8c:cd:c8:7c:b1:
84:97:87:9b:5d:bd:44:ef:ec:53:a7:be:5d:18:67:78:c4:d3:
43:a1:6a:6d:bd:4f:f4:be:2c:dc:3b:61:33:16:b3:9b:4c:1f:
fa:de:0a:97:0d:1d:0c:f2:e5:1d:88:f0:0b:90:90:3f:e3:17:
38:a8:3e:e6:a5:ae:8d:64:45:47:5c:60:2d:36:bb:f7:a3:c0:
d1:63:ae:c1:86:aa:d8:5e:4f:2b:34:59:dc:aa:79:79:e4:9c:
61:b9:fa:fc:fa:85:45:1c:59:7b:85:ae:63:b3:2b:38:86:e5:
27:50:27:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:17 2024 by rpki-client on console-ams.rpki-client.org