Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/d63178-5d53-41e4-a70e-2a1e39dd633c/1/GglijgDwmNXO7Otni55OERtIVO0.roa
File: GglijgDwmNXO7Otni55OERtIVO0.roa (raw, json)
Hash identifier: SsbSdqPwdLMNQ1SQa1dVC2WIQGoHA/iy+K56Obr0kdE=
Subject key identifier: 1A:09:62:8E:00:F0:98:D5:CE:EC:EB:67:8B:9E:4E:11:1B:48:54:ED
Certificate issuer: /CN=6d68d33d3da14d3bbcfcfc2e492dc1673849aa6c
Certificate serial: 01856702E8E1508696EFF358911A7FA21599
Authority key identifier: 6D:68:D3:3D:3D:A1:4D:3B:BC:FC:FC:2E:49:2D:C1:67:38:49:AA:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bWjTPT2hTTu8_PwuSS3BZzhJqmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/d63178-5d53-41e4-a70e-2a1e39dd633c/1/GglijgDwmNXO7Otni55OERtIVO0.roa
Signing time: Sat 31 Dec 2022 07:08:41 +0000
ROA not before: Sat 31 Dec 2022 07:08:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200723
IP address blocks: 2a13:4a40::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:67:02:e8:e1:50:86:96:ef:f3:58:91:1a:7f:a2:15:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d68d33d3da14d3bbcfcfc2e492dc1673849aa6c
Validity
Not Before: Dec 31 07:08:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a09628e00f098d5ceeceb678b9e4e111b4854ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e0:3c:0d:52:cc:99:3b:f4:79:ea:c4:9e:fd:
89:97:7c:52:ca:a5:9c:9f:a2:46:36:39:86:fe:8b:
30:74:fd:60:5e:44:1a:be:cb:9c:77:5d:1a:86:bc:
d2:1b:34:d9:39:bc:37:79:21:bd:30:ae:18:af:8e:
20:33:14:59:8a:42:0c:6e:93:b5:46:4f:a6:ba:56:
cd:d8:5c:51:f7:8f:b1:73:d9:f1:dd:f5:45:cb:14:
4f:9a:ca:ad:cb:2e:61:14:a6:e4:f6:1a:98:e6:32:
95:75:98:0d:f6:a9:5b:4d:2e:12:9c:11:87:77:b1:
f6:66:bc:30:8f:27:8b:cc:de:34:1d:bd:48:02:b1:
ae:c8:01:8f:94:80:f0:59:2a:ef:68:3b:fa:06:c8:
f3:5f:0c:01:1c:18:2c:3a:9e:0e:78:d0:5b:08:88:
c3:30:9e:c8:71:c2:66:7e:70:cd:76:a4:64:52:80:
ec:27:64:14:d8:9f:2b:66:5b:bf:00:8f:5f:c2:93:
df:1b:56:a0:a2:3d:7a:f4:59:62:73:e7:39:20:fa:
24:25:df:45:57:44:7b:22:43:4c:47:02:3a:25:63:
dc:87:89:cf:d4:04:ad:5c:7b:6a:48:54:57:cb:4e:
19:e0:94:76:00:58:4f:66:55:17:57:9e:af:97:d2:
d1:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:09:62:8E:00:F0:98:D5:CE:EC:EB:67:8B:9E:4E:11:1B:48:54:ED
X509v3 Authority Key Identifier:
keyid:6D:68:D3:3D:3D:A1:4D:3B:BC:FC:FC:2E:49:2D:C1:67:38:49:AA:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bWjTPT2hTTu8_PwuSS3BZzhJqmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d63178-5d53-41e4-a70e-2a1e39dd633c/1/GglijgDwmNXO7Otni55OERtIVO0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d63178-5d53-41e4-a70e-2a1e39dd633c/1/bWjTPT2hTTu8_PwuSS3BZzhJqmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:4a40::/48
Signature Algorithm: sha256WithRSAEncryption
24:b6:ea:76:c9:fc:c9:5d:f6:25:44:c8:b5:9e:27:f0:b7:e3:
81:bc:86:b1:7a:d4:b1:cf:7d:06:c9:57:ab:cb:01:e3:9b:03:
bc:96:f5:02:b8:5a:8a:6b:49:12:66:f6:f0:ee:f2:99:58:4c:
7e:9b:4a:84:59:d2:71:cf:d4:52:ed:aa:45:d4:b4:94:ba:84:
ac:d2:f5:16:c8:0f:67:67:f7:79:ae:e6:19:4d:48:f8:a1:23:
bf:22:f9:3a:a3:1d:9b:38:81:26:3c:12:de:2d:1c:81:12:60:
ba:46:d7:57:b0:7d:f7:aa:1e:8e:93:43:fe:f4:ab:39:e0:7b:
f1:6b:79:d6:0a:64:20:63:8e:7a:84:cf:a9:a9:9f:c4:2c:dc:
d6:9a:f5:29:1b:ae:fd:8e:93:1f:07:30:a7:54:1c:94:32:11:
d9:5d:45:97:ee:9f:50:c3:7c:24:7c:30:3c:75:83:c4:34:1c:
24:c8:01:01:fc:35:10:21:64:be:0c:1f:b6:ac:7c:7c:f6:a5:
12:c8:56:a8:52:92:90:fa:2c:62:f0:b0:de:62:4a:56:c6:4a:
91:cb:f4:28:cc:eb:72:34:49:19:65:4a:1e:b0:18:45:5d:d3:
8f:1a:b2:38:13:a8:e8:ce:3a:53:f7:5b:9b:64:b0:b7:55:54:
5a:cd:a3:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:26 2023 by rpki-client on console-fra.rpki-client.org