Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/iML0pgTigflWToltuJRMEbFgmJ4.roa
File: iML0pgTigflWToltuJRMEbFgmJ4.roa (raw, json)
Hash identifier: WMCX12uc2HLOHJrpMJ8PC/tvKpV2tV7vTGIjXs00wq0=
Subject key identifier: 88:C2:F4:A6:04:E2:81:F9:56:4E:89:6D:B8:94:4C:11:B1:60:98:9E
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 088AC61A
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/iML0pgTigflWToltuJRMEbFgmJ4.roa
Signing time: Tue 01 Feb 2022 07:18:03 +0000
ROA not before: Tue 01 Feb 2022 07:18:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42093
IP address blocks: 2a06:c3c0:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143312410 (0x88ac61a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Feb 1 07:18:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88c2f4a604e281f9564e896db8944c11b160989e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:f1:d5:c9:66:a9:84:9b:3b:af:93:21:cf:a2:
93:6f:16:ba:51:e6:7b:b1:53:75:d0:3d:0f:b2:f7:
b3:8b:b5:58:38:11:57:2a:fc:6d:00:e1:30:87:ba:
df:10:70:72:51:7f:9f:63:a2:5e:18:82:3b:d7:83:
93:9f:e5:68:66:89:3e:85:46:9e:24:9e:e5:ce:a5:
56:b9:8c:a0:fa:72:5b:c7:e6:63:86:d2:b8:4a:e5:
e7:3e:20:ba:d3:d4:b1:1c:9e:ac:ab:ee:6f:ff:55:
02:b1:38:8e:f4:36:25:60:e4:ea:a3:4f:0f:1e:1f:
eb:1f:d2:4e:81:93:fd:04:15:46:43:7d:b4:2d:29:
fb:d6:35:17:27:49:ac:84:7d:1b:6d:10:71:ee:a5:
b9:52:49:88:83:41:4f:b6:90:d5:ae:3a:07:00:cd:
56:8f:26:6e:b5:98:bd:59:75:e0:84:9e:cf:b8:74:
a0:31:1c:3b:82:22:87:8c:4e:52:f8:2a:31:a7:60:
e6:15:77:0d:9d:4d:cb:24:e7:74:94:b2:8f:1d:42:
09:35:8a:5e:3c:3d:44:40:19:93:8e:67:d2:4a:31:
ee:8c:c2:b7:5d:4e:50:c4:55:4c:b9:50:c8:9f:f8:
44:51:c4:c6:f3:7b:eb:db:51:34:60:10:58:0f:68:
dd:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:C2:F4:A6:04:E2:81:F9:56:4E:89:6D:B8:94:4C:11:B1:60:98:9E
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/iML0pgTigflWToltuJRMEbFgmJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:c3c0:3::/48
Signature Algorithm: sha256WithRSAEncryption
60:4f:65:8a:71:e9:ae:6c:05:a2:80:ad:8a:b9:16:40:01:0b:
e4:59:ef:91:bf:a0:f4:0d:82:53:64:7e:c6:04:48:51:91:08:
9b:16:71:6e:57:b7:b9:7c:59:c9:aa:79:0c:9e:e7:52:8f:b3:
c0:16:44:e2:e6:8d:54:50:74:31:96:7c:96:80:fd:61:ec:0c:
2a:33:d0:06:6e:21:f0:f0:e5:6f:c8:3f:15:34:83:ea:c1:cd:
1a:ab:cd:ea:7e:bc:10:19:26:a4:ec:62:fd:8e:27:5e:18:46:
5a:1c:9f:09:9a:41:0f:07:63:d4:5a:8a:dd:6d:33:1d:ec:35:
52:d0:70:a2:bc:55:23:49:67:d0:c2:f9:8a:2a:e1:a5:78:5a:
f3:dd:34:56:db:f9:a9:1b:d9:49:b7:d2:64:97:ae:ce:63:15:
77:51:6b:9a:b2:39:05:09:f5:43:bb:f9:a7:68:fa:6f:ba:4d:
ec:50:11:2b:5d:24:25:40:40:3c:7d:32:8a:ff:7d:a5:23:dd:
45:a5:81:da:57:63:73:3b:88:7a:a4:a4:a7:b7:ca:9a:c2:b4:
1c:6d:3f:38:cb:68:94:4a:0f:a2:18:08:17:8e:d6:79:43:61:
64:c8:1d:ff:ce:06:f5:08:13:7d:24:1e:40:ec:e1:6d:24:0e:
d9:52:75:88
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECIrGGjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDYzNjUzNTViNjY1NTY0YTIxMGMzNThjNjhhMDExN2I3ZmJlYjlhMB4XDTIyMDIw
MTA3MTgwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODhjMmY0YTYwNGUy
ODFmOTU2NGU4OTZkYjg5NDRjMTFiMTYwOTg5ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN7x1clmqYSbO6+TIc+ik28WulHme7FTddA9D7L3s4u1WDgR
Vyr8bQDhMIe63xBwclF/n2OiXhiCO9eDk5/laGaJPoVGniSe5c6lVrmMoPpyW8fm
Y4bSuErl5z4gutPUsRyerKvub/9VArE4jvQ2JWDk6qNPDx4f6x/SToGT/QQVRkN9
tC0p+9Y1FydJrIR9G20Qce6luVJJiINBT7aQ1a46BwDNVo8mbrWYvVl14ISez7h0
oDEcO4Iih4xOUvgqMadg5hV3DZ1NyyTndJSyjx1CCTWKXjw9REAZk45n0kox7ozC
t11OUMRVTLlQyJ/4RFHExvN769tRNGAQWA9o3aMCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBSIwvSmBOKB+VZOiW24lEwRsWCYnjAfBgNVHSMEGDAWgBR0Y2U1W2ZVZKIQ
w1jGigEXt/vrmjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RHTmxOVnRtVldTaUVNTll4b29CRjdmNzY1by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjIvYWVhMzZkLWJhYmYtNDQ3NC1hNzhiLTZhNGVjYWY4YjNiMS8x
L2lNTDBwZ1RpZ2ZsV1RvbHR1SlJNRWJGZ21KNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjIv
YWVhMzZkLWJhYmYtNDQ3NC1hNzhiLTZhNGVjYWY4YjNiMS8xL2RHTmxOVnRtVldT
aUVNTll4b29CRjdmNzY1by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoGw8AAAzANBgkqhkiG9w0BAQsF
AAOCAQEAYE9linHprmwFooCtirkWQAEL5Fnvkb+g9A2CU2R+xgRIUZEImxZxble3
uXxZyap5DJ7nUo+zwBZE4uaNVFB0MZZ8loD9YewMKjPQBm4h8PDlb8g/FTSD6sHN
GqvN6n68EBkmpOxi/Y4nXhhGWhyfCZpBDwdj1FqK3W0zHew1UtBworxVI0ln0ML5
iirhpXha8900Vtv5qRvZSbfSZJeuzmMVd1FrmrI5BQn1Q7v5p2j6b7pN7FARK10k
JUBAPH0yiv99pSPdRaWB2ldjczuIeqSkp7fKmsK0HG0/OMtolEoPohgIF47WeUNh
ZMgd/84G9QgTfSQeQOzhbSQO2VJ1iA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:02 2023 by rpki-client on console-fra.rpki-client.org