Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/278f68-c16f-4a2f-80f7-4130fa48b559/1/g-dYt0WAuFRvAKG59Xauqj7EjjE.roa
File: g-dYt0WAuFRvAKG59Xauqj7EjjE.roa (raw, json)
Hash identifier: ErM+vRhTMlcUjX+BpzUkUbfmrjrioHhqXJ464A3VBh4=
Subject key identifier: 83:E7:58:B7:45:80:B8:54:6F:00:A1:B9:F5:76:AE:AA:3E:C4:8E:31
Certificate issuer: /CN=0a332f5adc0469533bbddcfce8957eaee58bfd60
Certificate serial: 0FC22977
Authority key identifier: 0A:33:2F:5A:DC:04:69:53:3B:BD:DC:FC:E8:95:7E:AE:E5:8B:FD:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CjMvWtwEaVM7vdz86JV-ruWL_WA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/278f68-c16f-4a2f-80f7-4130fa48b559/1/g-dYt0WAuFRvAKG59Xauqj7EjjE.roa
Signing time: Sat 01 Jan 2022 08:58:20 +0000
ROA not before: Sat 01 Jan 2022 08:58:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41179
IP address blocks: 2a02:cb43:2003::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 264382839 (0xfc22977)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a332f5adc0469533bbddcfce8957eaee58bfd60
Validity
Not Before: Jan 1 08:58:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83e758b74580b8546f00a1b9f576aeaa3ec48e31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a9:41:ea:f2:fa:52:e6:c9:d2:37:aa:ce:94:
16:74:c4:41:9c:d3:ec:13:85:65:64:4a:a2:ac:da:
c6:31:a2:45:8e:b1:c9:53:3d:ac:30:6d:bd:37:0f:
fc:b2:2c:3f:34:f2:16:3b:73:06:0a:21:04:35:88:
72:4b:09:0c:04:e5:13:61:1f:71:08:4f:09:e2:bd:
95:63:a3:8d:95:6e:e0:0f:bd:3d:31:15:04:69:86:
95:b4:4f:0f:9e:cf:e4:33:4e:07:38:71:30:fe:59:
19:d7:e2:0a:ad:e4:fa:83:e3:2f:28:1c:46:30:09:
a5:72:fa:9a:e1:d3:d1:65:67:dd:88:fb:91:b8:ca:
65:5a:5b:16:91:6f:74:7a:57:3a:f1:5a:cf:59:fe:
72:34:69:14:a0:fe:28:b2:0a:ab:0e:5b:d0:70:1c:
27:c7:ad:f5:f7:e5:b0:4d:1f:22:e6:10:27:a1:29:
3c:65:c2:b7:2b:c6:78:c6:b9:62:d9:4a:8e:0d:01:
ed:72:2f:4f:bb:f8:cd:ff:44:6a:55:1e:4f:f0:77:
23:ff:41:49:b3:8f:ca:e8:04:70:cb:1b:83:28:31:
87:94:61:d3:c8:33:61:5a:69:09:b4:f1:47:9b:1d:
23:2b:13:40:19:a2:5b:eb:82:30:38:fc:18:d3:cf:
30:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:E7:58:B7:45:80:B8:54:6F:00:A1:B9:F5:76:AE:AA:3E:C4:8E:31
X509v3 Authority Key Identifier:
keyid:0A:33:2F:5A:DC:04:69:53:3B:BD:DC:FC:E8:95:7E:AE:E5:8B:FD:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CjMvWtwEaVM7vdz86JV-ruWL_WA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/278f68-c16f-4a2f-80f7-4130fa48b559/1/g-dYt0WAuFRvAKG59Xauqj7EjjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/278f68-c16f-4a2f-80f7-4130fa48b559/1/CjMvWtwEaVM7vdz86JV-ruWL_WA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:cb43:2003::/48
Signature Algorithm: sha256WithRSAEncryption
92:39:74:d7:a3:86:ac:64:9f:bf:2d:f6:d8:a2:27:c7:d6:c3:
f9:aa:73:96:19:56:c8:a8:a3:2a:34:76:50:b0:95:2b:ae:07:
68:e3:df:b9:6d:d7:f2:88:17:ec:0a:cc:d2:cc:95:0f:5a:f8:
46:5e:71:f3:28:a1:26:28:92:3c:f8:3f:94:5c:a6:c6:58:34:
4f:25:49:77:f5:f8:c0:40:49:50:93:53:c4:16:90:df:d6:15:
36:13:ad:36:35:82:ab:9b:bb:56:f1:cb:76:3f:6b:fe:52:99:
ec:93:ba:fd:f2:e1:04:08:7d:0f:88:94:58:f0:9c:88:46:92:
dc:d7:bc:8f:10:82:03:0f:9f:2f:fa:30:00:a9:96:4c:f2:02:
66:b0:44:97:97:0d:24:40:5f:f5:77:88:ce:c5:6a:8f:19:5c:
f2:4f:66:c9:0a:ee:e8:ba:eb:09:85:67:c4:92:65:bd:93:ce:
7a:9e:f1:f2:5d:ad:9a:44:f7:d1:1e:03:4d:fb:76:40:64:0a:
28:0c:37:fa:23:27:b2:f2:9a:2b:38:7e:b7:07:46:c6:8f:1d:
98:79:36:5c:84:53:87:32:da:99:b5:c8:24:02:1c:67:76:45:
d5:a3:26:4a:58:ad:ea:6d:02:8d:87:dc:65:b6:7b:12:b5:23:
a8:5c:d0:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:42 2023 by rpki-client on console-ams.rpki-client.org