Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/W8dAilgvxyBCc-GCcKN1K84CTnY.roa
File: W8dAilgvxyBCc-GCcKN1K84CTnY.roa (raw, json)
Hash identifier: Q9h7DPPC8iIqXT9aaBb//+XnZ61nDzd2deeX/eiSTSE=
Subject key identifier: 5B:C7:40:8A:58:2F:C7:20:42:73:E1:82:70:A3:75:2B:CE:02:4E:76
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 099A16AF
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/W8dAilgvxyBCc-GCcKN1K84CTnY.roa
Signing time: Wed 25 May 2022 15:48:13 +0000
ROA not before: Wed 25 May 2022 15:48:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 394414
IP address blocks: 2a06:c3c0:6::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161093295 (0x99a16af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: May 25 15:48:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5bc7408a582fc7204273e18270a3752bce024e76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ea:ed:bd:48:ae:87:02:b6:c6:fc:97:f2:ff:
26:3f:d3:26:3e:00:c4:f6:7a:90:73:79:4f:7f:29:
ad:d4:d4:74:93:b2:7b:9e:08:1d:cc:a9:92:42:37:
0a:b1:0f:41:7d:d8:3b:4b:6c:b7:36:fa:26:73:5b:
c2:fa:29:8e:09:18:4f:53:53:56:5c:9e:1f:bf:99:
a0:4f:f9:1c:7e:9e:62:73:1b:f1:60:36:1b:93:74:
bf:13:58:a2:32:b7:db:a3:46:4a:45:17:cf:af:08:
f9:ca:02:88:7f:4a:68:6a:f9:44:c1:31:80:61:11:
3c:de:71:e7:67:8a:2b:c6:e1:88:44:df:9d:f3:0f:
b9:47:c6:68:2a:c5:fd:da:94:23:b4:26:d7:a1:f7:
ea:9e:62:b6:b6:be:d5:60:9e:bd:ca:d5:b0:85:97:
aa:48:46:22:d4:77:08:0a:10:a7:03:42:0d:d3:91:
4a:f5:09:1e:29:81:e0:c3:b2:61:15:85:08:80:dd:
12:b0:0e:da:06:de:91:a6:fe:f7:6d:f4:3b:b3:3a:
b7:cd:23:9a:0f:80:5e:5e:75:f9:bf:99:ef:87:e3:
23:69:eb:67:60:d5:7f:2b:97:df:99:df:cb:ce:e4:
28:18:68:1c:09:b1:6b:c1:dd:fa:ad:b7:f3:26:47:
cf:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:C7:40:8A:58:2F:C7:20:42:73:E1:82:70:A3:75:2B:CE:02:4E:76
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/W8dAilgvxyBCc-GCcKN1K84CTnY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:c3c0:6::/48
Signature Algorithm: sha256WithRSAEncryption
58:92:1d:e6:47:8f:72:1f:12:88:d5:85:0c:aa:9d:b4:59:3b:
3f:42:e5:11:8f:d1:18:3b:1e:39:12:75:dc:24:7c:2a:dd:0f:
ea:df:95:2f:0e:8c:ee:d7:72:2e:98:4d:bc:b0:a5:71:c6:bb:
ec:db:d0:3b:85:37:df:62:dc:b0:cc:3a:9c:b4:ab:01:97:7c:
ce:c5:d2:e0:b5:af:5b:c7:c9:51:80:8e:cd:71:40:a0:72:d7:
0b:17:fc:5b:a6:2d:54:63:63:49:ec:6e:a1:26:96:3a:46:42:
f0:f1:49:42:98:a0:a9:f2:af:86:e8:33:dd:b3:a5:36:7d:7c:
7d:f1:92:8b:c1:f4:a6:a3:0a:da:46:eb:d7:7c:99:84:e4:8c:
9f:10:36:18:91:51:20:4c:2e:bd:57:10:e1:ab:8e:1a:2f:ba:
3e:4f:2c:d2:89:a9:31:43:78:28:1f:f0:dd:68:78:7f:15:e6:
01:2a:1a:e6:99:e5:07:dd:f5:1b:d2:6b:7b:c9:bd:ca:4c:2f:
7f:d1:06:84:e6:ac:d6:d3:ae:43:71:e8:88:33:d6:5d:70:7c:
7f:f0:18:15:18:05:96:df:2d:0c:ab:86:dd:00:6c:c5:f7:06:
2a:b5:42:f2:fd:0b:bc:a4:94:5d:e5:18:64:c5:0a:e0:78:de:
88:28:c5:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:44 2023 by rpki-client on console-ams.rpki-client.org