Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/18a1bc-967c-4931-85b5-00f00af1c8d7/1/nWVuLmxXxiUJB_JIL3jkjGOU00Y.roa
File: nWVuLmxXxiUJB_JIL3jkjGOU00Y.roa (raw, json)
Hash identifier: Xe7ujt7aR1za12Sb3tWsQnNMfV+CspdVsgEoUU5jPYc=
Subject key identifier: 9D:65:6E:2E:6C:57:C6:25:09:07:F2:48:2F:78:E4:8C:63:94:D3:46
Certificate issuer: /CN=a3e6e823f6dda67d283a9f41a72909906ac9a837
Certificate serial: 100A6230
Authority key identifier: A3:E6:E8:23:F6:DD:A6:7D:28:3A:9F:41:A7:29:09:90:6A:C9:A8:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o-boI_bdpn0oOp9BpykJkGrJqDc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/18a1bc-967c-4931-85b5-00f00af1c8d7/1/nWVuLmxXxiUJB_JIL3jkjGOU00Y.roa
Signing time: Sat 01 Jan 2022 14:04:16 +0000
ROA not before: Sat 01 Jan 2022 14:04:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197838
IP address blocks: 2a03:6607::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 269115952 (0x100a6230)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3e6e823f6dda67d283a9f41a72909906ac9a837
Validity
Not Before: Jan 1 14:04:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d656e2e6c57c6250907f2482f78e48c6394d346
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:6e:2f:41:cf:b5:20:4a:8b:75:93:4c:9c:d9:
9f:6f:c4:44:ce:38:89:ed:51:85:8e:2b:08:d4:10:
2c:8a:15:e7:b2:61:08:37:b1:65:63:9b:67:ea:c0:
3c:1c:e7:6f:f3:fb:6c:30:83:08:43:a3:69:c3:fa:
f2:32:3e:bf:1a:07:1e:de:51:6c:da:b5:67:90:df:
0c:e7:71:bc:77:bc:7d:68:70:e1:1e:70:6c:a3:c3:
55:1b:42:54:11:5c:d5:ab:d6:82:bb:b7:b0:43:ac:
cb:84:3a:f8:56:c4:c9:1c:b1:a0:57:9f:f6:f5:e5:
b1:02:db:ec:53:5c:ea:9f:cf:99:e9:30:a4:a2:a3:
f3:1b:a6:a5:26:d0:6e:f0:aa:c8:33:4f:48:a0:f7:
bc:8c:6f:06:b7:f2:ce:6c:61:9d:83:4d:89:02:bd:
66:18:c2:1f:bf:19:76:2e:6c:9c:a1:d8:17:c4:71:
55:a1:92:51:29:89:5c:f0:b7:65:4c:57:ef:28:3c:
a4:79:b1:2c:c9:2a:6f:2d:0f:40:05:1d:ee:69:5b:
c3:c5:e5:2b:50:78:2b:73:7c:f6:78:18:83:10:ce:
13:d1:43:1d:8a:d0:42:c6:04:a0:58:aa:fa:56:21:
b3:bb:cd:7d:b2:33:18:2a:6b:39:7b:cb:12:a4:e9:
3b:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:65:6E:2E:6C:57:C6:25:09:07:F2:48:2F:78:E4:8C:63:94:D3:46
X509v3 Authority Key Identifier:
keyid:A3:E6:E8:23:F6:DD:A6:7D:28:3A:9F:41:A7:29:09:90:6A:C9:A8:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o-boI_bdpn0oOp9BpykJkGrJqDc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/18a1bc-967c-4931-85b5-00f00af1c8d7/1/nWVuLmxXxiUJB_JIL3jkjGOU00Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/18a1bc-967c-4931-85b5-00f00af1c8d7/1/o-boI_bdpn0oOp9BpykJkGrJqDc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:6607::/32
Signature Algorithm: sha256WithRSAEncryption
b0:2c:39:ad:dd:40:7b:a4:85:9a:65:54:bf:dd:44:fa:fb:fc:
a9:d6:de:33:3b:6c:cd:d9:e3:99:4c:68:09:f0:91:e7:c2:d3:
29:49:aa:6c:16:01:f3:f5:cd:79:59:c9:7c:c8:10:b4:9a:63:
fe:87:31:9d:74:93:24:73:1b:51:5f:53:59:9a:a6:75:7e:99:
17:55:1e:e0:27:5b:67:c2:5b:1c:29:28:f4:02:cf:25:97:68:
99:39:ba:82:f5:ce:66:5e:e4:94:52:c0:cd:e1:17:62:e8:2b:
2b:83:fb:72:3a:e4:c6:93:b6:f3:6f:9e:6b:51:ee:23:ee:a7:
24:f6:8f:f7:2d:46:f6:c4:33:cf:45:79:78:ad:4d:ba:78:58:
09:d8:7c:d9:a6:13:d4:9f:7a:1d:31:f3:41:a2:2a:5e:84:1e:
f5:e3:eb:b2:47:3b:e1:9d:67:a0:29:11:79:d8:f3:00:57:ba:
97:e8:96:93:06:ca:8c:1b:2e:c0:41:4b:0c:3a:e4:13:b5:0e:
b4:fe:23:59:00:22:f5:b0:56:5e:9d:3b:e5:ec:df:ff:8b:72:
2d:0f:ee:5b:8f:f7:00:a0:5c:dc:04:2a:0e:e2:03:94:83:2d:
1a:f8:65:18:8b:8b:9b:1d:14:bd:8a:31:86:47:17:eb:c1:c2:
48:01:ff:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:07 2024 by rpki-client on console-ams.rpki-client.org