Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/f615b0-4d98-4a3d-8bd2-4c93bee27d54/1/nrGaxhH87dMvLY2AHMw7ifzfu4A.roa
File: nrGaxhH87dMvLY2AHMw7ifzfu4A.roa (raw, json)
Hash identifier: RjzTwroq6hTR5aN67sUelvvUJ4ZBKMvtVbJrOsyxNu8=
Subject key identifier: 9E:B1:9A:C6:11:FC:ED:D3:2F:2D:8D:80:1C:CC:3B:89:FC:DF:BB:80
Certificate issuer: /CN=8405c07192a8106fedb0760b8945032ca1d3054b
Certificate serial: 02B73BC4
Authority key identifier: 84:05:C0:71:92:A8:10:6F:ED:B0:76:0B:89:45:03:2C:A1:D3:05:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hAXAcZKoEG_tsHYLiUUDLKHTBUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/f615b0-4d98-4a3d-8bd2-4c93bee27d54/1/nrGaxhH87dMvLY2AHMw7ifzfu4A.roa
Signing time: Sat 01 Jan 2022 11:00:40 +0000
ROA not before: Sat 01 Jan 2022 11:00:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51903
IP address blocks: 2a0c:3a81::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45562820 (0x2b73bc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8405c07192a8106fedb0760b8945032ca1d3054b
Validity
Not Before: Jan 1 11:00:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9eb19ac611fcedd32f2d8d801ccc3b89fcdfbb80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c3:a1:a9:3f:f4:7a:43:b8:7e:95:10:71:6c:
28:29:30:93:a5:e0:55:a3:a0:7e:82:26:94:3d:07:
2f:d0:cf:71:52:70:b3:5b:8b:5d:16:9a:49:3f:29:
f7:21:3d:3c:fe:c5:12:6f:44:17:72:b8:4f:25:df:
66:3b:f7:11:23:41:b2:a7:3a:07:9c:53:c7:5c:81:
63:fd:55:3f:b8:fc:fc:32:46:1b:26:23:e5:52:a5:
38:dd:1d:bc:97:5f:fd:b6:df:e5:cf:ee:d0:f4:86:
46:56:3c:c4:b2:5a:8c:97:30:60:fa:18:7e:75:cf:
de:7b:61:c2:89:73:2c:22:08:55:16:54:33:74:a4:
f7:69:24:d6:13:ec:61:92:ac:e3:ef:b6:1c:63:17:
b8:ad:69:bd:18:2d:03:7d:ad:5b:48:ab:0f:3b:6a:
f6:2f:d8:d5:62:dd:01:d7:a5:c6:26:56:14:c2:e3:
08:1f:da:1f:dd:81:2b:c7:36:34:e5:98:a6:20:01:
4b:f9:f5:84:90:1e:4d:2a:bf:d8:53:fd:ec:b1:d0:
0f:fc:de:e4:03:a8:92:d0:06:35:d6:39:33:4c:a8:
8c:f9:13:a5:1e:de:97:5f:47:28:18:e6:8c:bc:e2:
7c:d6:63:c2:58:f3:c4:4d:f5:b4:cf:ad:31:c2:8a:
31:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:B1:9A:C6:11:FC:ED:D3:2F:2D:8D:80:1C:CC:3B:89:FC:DF:BB:80
X509v3 Authority Key Identifier:
keyid:84:05:C0:71:92:A8:10:6F:ED:B0:76:0B:89:45:03:2C:A1:D3:05:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hAXAcZKoEG_tsHYLiUUDLKHTBUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f615b0-4d98-4a3d-8bd2-4c93bee27d54/1/nrGaxhH87dMvLY2AHMw7ifzfu4A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f615b0-4d98-4a3d-8bd2-4c93bee27d54/1/hAXAcZKoEG_tsHYLiUUDLKHTBUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:3a81::/40
Signature Algorithm: sha256WithRSAEncryption
59:00:77:ed:50:1d:57:59:c8:e1:ab:bc:21:42:49:a3:65:56:
ca:02:7d:04:ab:d5:a1:84:85:85:79:06:6c:22:c3:7b:69:9b:
00:cc:87:96:ce:97:e9:e9:de:a5:93:45:ce:0e:cf:a7:08:12:
0d:7b:00:c2:c2:19:d8:b2:84:c7:4f:e1:13:e0:ca:31:5d:9c:
5b:4a:95:77:bc:73:f0:49:d7:1a:67:ea:87:0c:ac:44:6a:cd:
14:80:6a:bb:af:1c:7c:14:5d:85:70:7b:b1:e1:1d:c2:66:a8:
08:b5:1c:c5:fd:fc:1e:56:db:b5:48:a2:a3:75:44:36:a7:a3:
d4:30:0f:6b:aa:f0:4b:97:91:37:bb:d4:87:ad:7f:14:a3:41:
8f:bc:b0:16:a1:79:e8:73:4c:d9:b7:70:33:35:f8:4c:a1:a6:
73:f3:07:92:23:0c:4a:28:c3:7a:76:c5:ef:02:b8:70:5a:9a:
a3:a4:e5:4d:b4:53:c4:93:2a:69:8b:d9:08:0f:39:fb:8b:92:
30:99:26:f1:bf:a6:34:44:43:f4:bb:a9:ab:61:86:ef:fc:6c:
08:18:e7:62:b8:22:99:d8:98:c1:63:37:ae:d6:fe:a3:77:2b:
85:a0:1e:0f:fa:69:e0:06:fe:a5:f2:c1:01:48:42:ad:6c:7f:
08:8e:f0:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:21 2023 by rpki-client on console-ams.rpki-client.org