Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/af9_RXGDjyTcY3sWLZZ61eB0m8c.roa
File: af9_RXGDjyTcY3sWLZZ61eB0m8c.roa (raw, json)
Hash identifier: YpRCIeloYi9nZSOfQ6ec4lf6ww+LBGaUG1rx4QT+hyg=
Subject key identifier: 69:FF:7F:45:71:83:8F:24:DC:63:7B:16:2D:96:7A:D5:E0:74:9B:C7
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0183F4CF544720C2EF9785A2D7D208199235
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/af9_RXGDjyTcY3sWLZZ61eB0m8c.roa
Signing time: Thu 20 Oct 2022 09:52:51 +0000
ROA not before: Thu 20 Oct 2022 09:52:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39827
IP address blocks: 2a04:3a40::/33 maxlen: 33
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f4:cf:54:47:20:c2:ef:97:85:a2:d7:d2:08:19:92:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Oct 20 09:52:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69ff7f4571838f24dc637b162d967ad5e0749bc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ac:ae:09:98:f5:2b:47:45:45:f1:c3:20:ba:
94:49:62:0f:8d:66:a0:8a:f5:77:25:78:3f:2c:a1:
56:7e:c2:12:48:66:a3:7c:49:c9:14:42:63:22:7d:
46:01:84:df:07:a0:c7:29:a8:dc:f5:cd:70:59:8c:
8c:1d:d4:29:33:be:6a:af:8a:60:8b:c5:f7:31:34:
72:bc:30:1d:b6:c4:91:de:ff:83:c7:75:e0:54:b8:
51:0c:6f:70:69:89:6d:df:18:7b:e4:c8:d0:84:6e:
00:12:bf:a3:4f:b0:cb:57:f8:7f:6c:1d:5d:53:b3:
9b:df:38:44:d3:88:ef:92:91:0c:8e:ff:43:9f:ee:
1b:7b:a3:ba:9d:b2:09:71:b3:d6:68:61:8e:11:1a:
a6:0c:8a:37:e4:f1:29:6c:46:6d:24:a3:3f:e8:3f:
7a:1d:05:ec:6c:53:aa:fc:54:6e:83:15:57:52:a4:
74:e9:a9:df:76:6c:e8:7f:d3:56:d7:ef:83:02:cb:
03:fb:cf:62:15:5e:5b:96:49:89:96:55:17:87:e1:
e4:b2:d9:f2:aa:d8:9d:58:2b:86:c6:34:6e:b0:28:
f9:a6:de:5f:95:7c:e5:82:5a:da:ae:31:5b:94:35:
2d:a7:36:04:a6:c9:71:08:70:2d:2e:e5:f3:c5:a6:
17:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:FF:7F:45:71:83:8F:24:DC:63:7B:16:2D:96:7A:D5:E0:74:9B:C7
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/af9_RXGDjyTcY3sWLZZ61eB0m8c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:3a40::/33
Signature Algorithm: sha256WithRSAEncryption
4a:79:d3:f5:47:7d:c4:80:31:ed:37:4a:e3:56:1b:6a:85:f1:
3d:b6:cd:f4:d5:d1:1d:ed:1a:d7:7a:7f:4d:14:15:a8:ab:75:
99:1a:a4:62:dd:0a:b2:db:97:14:21:e6:8e:57:fe:3e:2b:62:
e5:c0:36:ff:0b:61:79:3a:32:8e:2e:4d:d3:ef:ce:81:54:09:
b5:9b:3b:cb:73:6c:f0:60:80:ee:8b:55:fa:ba:90:b5:97:3c:
40:29:23:dd:81:c9:f9:c0:e0:5a:3d:3d:4e:f8:fa:53:d5:7a:
4a:53:c8:64:11:cd:75:86:97:ca:9a:77:cc:8e:11:ba:db:18:
33:25:92:2b:c7:2b:20:cc:f3:8d:95:5d:24:5f:51:df:e8:59:
d1:41:9a:eb:f4:8c:bc:19:5d:84:18:02:f6:60:4e:64:3c:38:
21:99:b5:67:bf:0e:2b:98:a0:cd:c7:9c:ff:87:3b:a3:77:c1:
e6:bc:5e:6a:6e:cc:4a:1b:d3:a4:3c:d9:68:08:8d:bf:01:c9:
17:7e:bb:61:c0:dc:42:74:44:d5:93:8f:66:01:d6:62:8c:97:
8f:86:7a:77:74:d4:bc:6b:47:5a:f4:64:a5:15:93:9e:11:fa:
0a:3d:ee:bd:c0:11:37:a2:cc:74:76:1d:29:c5:08:07:31:d4:
9d:f8:ab:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:35 2023 by rpki-client on console-ams.rpki-client.org