Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/oF6nlF7QZY_pfOWrmXVJZiWFJsg.roa
File: oF6nlF7QZY_pfOWrmXVJZiWFJsg.roa (raw, json)
Hash identifier: cZ2uSQEaWAi1TgTR7KgcrgF3f0nekkYtVZLGpuxkWOE=
Subject key identifier: A0:5E:A7:94:5E:D0:65:8F:E9:7C:E5:AB:99:75:49:66:25:85:26:C8
Certificate issuer: /CN=95b30111b0b720a209f788c8b90f60380b465c2e
Certificate serial: 01847A9EE39CC2E040DBBFC0682411EE1774
Authority key identifier: 95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/oF6nlF7QZY_pfOWrmXVJZiWFJsg.roa
Signing time: Tue 15 Nov 2022 09:29:04 +0000
ROA not before: Tue 15 Nov 2022 09:29:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205718
IP address blocks: 2a09:eac0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7a:9e:e3:9c:c2:e0:40:db:bf:c0:68:24:11:ee:17:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95b30111b0b720a209f788c8b90f60380b465c2e
Validity
Not Before: Nov 15 09:29:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a05ea7945ed0658fe97ce5ab99754966258526c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:fb:18:f5:8e:09:b0:99:a0:2f:5e:1a:8c:b5:
a6:67:ee:93:2c:d9:c1:98:ea:c8:7e:49:e1:5a:f1:
bc:37:0d:f7:d1:53:b7:22:a0:01:b1:b0:1b:23:8a:
41:16:30:8d:0f:cd:ad:04:d0:7c:00:e5:f5:6a:be:
c8:a6:66:f3:a5:cd:53:38:4b:5c:d1:42:b2:72:e7:
21:9c:8b:f2:cd:a2:89:36:2c:45:dd:cb:90:1d:97:
d6:48:b5:46:10:fd:2b:50:3b:5b:58:05:8d:75:c1:
7e:92:c0:cf:02:44:7c:05:72:94:bc:d6:31:cb:9f:
23:1a:89:bc:cb:57:90:d0:c1:92:c5:9f:ee:e2:6e:
9c:3f:c5:bf:1c:18:64:df:7d:2a:b1:c6:b6:9e:57:
4a:13:c2:55:7a:5a:24:85:a6:ae:8d:ff:d1:f5:2f:
e3:ae:de:44:c1:94:6d:ae:71:ed:a7:75:08:ee:37:
85:8e:35:c0:6d:75:3f:a4:8e:1d:53:08:99:99:43:
51:bf:22:9b:da:36:a4:09:0c:f1:8a:af:d9:37:b8:
81:7e:06:66:73:bb:d0:60:7d:c9:df:90:0e:55:68:
07:ed:6d:78:3c:d7:2e:2d:ee:d4:ac:c2:da:b0:1e:
a1:84:1e:6e:b1:74:7c:f5:78:10:cb:fb:39:f3:e3:
c4:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:5E:A7:94:5E:D0:65:8F:E9:7C:E5:AB:99:75:49:66:25:85:26:C8
X509v3 Authority Key Identifier:
keyid:95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/oF6nlF7QZY_pfOWrmXVJZiWFJsg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:eac0::/32
Signature Algorithm: sha256WithRSAEncryption
79:f2:0b:32:c5:18:0f:4c:8b:22:1e:02:e0:c5:51:f4:ce:21:
30:ad:bd:d6:92:cf:c5:b2:d8:a4:a6:bd:e6:f3:16:37:b8:7d:
43:33:91:86:72:47:d1:17:7c:da:25:d8:f1:65:61:9a:4e:39:
fd:8d:48:0a:53:e2:ac:15:38:9e:45:91:98:32:bd:4e:2b:7f:
54:8b:76:cd:10:9c:e2:11:f0:48:76:f0:d9:e2:72:e1:b8:f6:
12:6d:fd:f6:a9:af:28:c8:05:9f:b8:b3:30:42:4d:ff:91:85:
f3:3c:41:c1:c2:6d:f6:75:c0:7b:c1:77:cc:45:fd:f6:86:db:
d4:a5:e4:c9:1f:bb:24:1a:5d:75:62:d9:81:95:dc:ce:0d:0a:
e0:e7:4b:af:20:43:5f:60:9b:ca:12:92:ec:a8:e6:b2:99:09:
04:e9:d8:55:e9:0a:06:82:49:5c:6f:c3:4c:fa:44:24:c4:9d:
3d:90:d9:0c:4c:8a:ce:47:dc:83:c5:e4:5f:be:c3:4b:4f:1b:
8f:e3:48:85:32:cd:51:5e:ed:f5:12:61:48:77:16:b1:91:b1:
f0:30:c9:93:20:ad:bb:3a:1d:41:70:4f:6c:2b:f2:03:52:09:
45:3b:33:a8:a7:e8:7b:e5:41:42:da:9c:af:58:6d:f5:41:bc:
03:92:d4:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:47 2024 by rpki-client on console-ams.rpki-client.org