Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/9ca8b2-5ec8-4d2a-b994-c4c94b88071b/1/wf7LZLiwdxxdxfcJ_Bjff3t9j_o.roa
File: wf7LZLiwdxxdxfcJ_Bjff3t9j_o.roa (raw, json)
Hash identifier: 84Q0rQ50zOAXpJPv51j1zK9ZLnfqxKmwkHl8tuB788w=
Subject key identifier: C1:FE:CB:64:B8:B0:77:1C:5D:C5:F7:09:FC:18:DF:7F:7B:7D:8F:FA
Certificate issuer: /CN=16a321215a4d35ed2298b073971db408864fd362
Certificate serial: 018601
Authority key identifier: 16:A3:21:21:5A:4D:35:ED:22:98:B0:73:97:1D:B4:08:86:4F:D3:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FqMhIVpNNe0imLBzlx20CIZP02I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/9ca8b2-5ec8-4d2a-b994-c4c94b88071b/1/wf7LZLiwdxxdxfcJ_Bjff3t9j_o.roa
Signing time: Fri 07 Jan 2022 13:34:28 +0000
ROA not before: Fri 07 Jan 2022 13:34:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212704
IP address blocks: 2001:678:4d8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99841 (0x18601)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16a321215a4d35ed2298b073971db408864fd362
Validity
Not Before: Jan 7 13:34:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1fecb64b8b0771c5dc5f709fc18df7f7b7d8ffa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ca:9d:b6:09:c0:f7:e4:1a:d1:3b:70:71:f2:
31:7b:f3:46:98:dc:e6:fa:6d:3b:f8:d4:dd:6c:e5:
59:2c:19:83:76:d0:8c:c6:57:8c:e9:5c:f5:e7:32:
24:b0:a2:d3:9f:0c:90:99:50:90:f3:1a:e8:2d:05:
a6:60:e6:d5:75:71:17:39:86:12:eb:c3:d9:0e:50:
87:87:92:f1:c3:cb:a4:48:57:88:98:06:bf:65:a3:
81:01:9e:5b:ef:c8:d1:b0:00:80:d1:bc:31:8e:d2:
10:74:02:6a:94:16:74:c5:82:f7:25:36:9d:74:7c:
e8:eb:40:65:30:49:9c:db:ea:1a:4c:50:d1:0e:9c:
e2:46:67:49:f3:70:6a:bb:e4:c5:db:ca:ac:d6:ed:
c8:13:ba:0f:1e:20:9d:71:f1:68:5e:e4:5d:09:0c:
1e:3f:ca:25:24:cc:d4:61:de:68:6b:18:a0:30:3d:
4d:d1:bb:d9:a2:86:09:05:5d:9f:0a:aa:de:73:74:
d1:4d:0d:90:c9:28:bd:0a:66:5b:90:7e:c1:e2:fa:
cb:24:1c:c0:55:91:49:2b:24:6c:f9:08:d9:e7:d7:
64:9d:88:cb:ef:34:d0:6e:f7:79:42:44:a0:6c:cb:
9c:64:fa:c0:8f:5c:0e:50:9f:41:2a:d1:a3:1f:dd:
af:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:FE:CB:64:B8:B0:77:1C:5D:C5:F7:09:FC:18:DF:7F:7B:7D:8F:FA
X509v3 Authority Key Identifier:
keyid:16:A3:21:21:5A:4D:35:ED:22:98:B0:73:97:1D:B4:08:86:4F:D3:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FqMhIVpNNe0imLBzlx20CIZP02I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/9ca8b2-5ec8-4d2a-b994-c4c94b88071b/1/wf7LZLiwdxxdxfcJ_Bjff3t9j_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/9ca8b2-5ec8-4d2a-b994-c4c94b88071b/1/FqMhIVpNNe0imLBzlx20CIZP02I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:4d8::/48
Signature Algorithm: sha256WithRSAEncryption
2a:54:91:81:85:e2:8d:ef:98:88:1f:f1:b1:bc:eb:17:e2:69:
e0:2b:d1:41:c2:69:81:39:4d:dd:eb:84:33:66:de:b7:85:29:
53:c1:b4:ff:3a:8c:11:ad:c1:89:18:a3:de:7e:4c:3f:c1:9f:
a5:5f:5f:c2:07:bd:be:47:4f:af:85:9b:b3:bf:14:bd:dc:1c:
ba:8f:63:c9:f4:32:8d:ee:24:29:d5:33:63:fb:26:42:a1:c2:
86:b8:3c:10:05:76:76:41:37:39:ef:bb:71:65:90:33:a6:a5:
48:a5:f5:8b:ab:2d:b0:2d:ad:90:b8:3c:21:c7:20:7b:d9:cb:
ea:c6:63:b8:1e:31:63:96:d8:f8:eb:7d:0a:aa:9d:3b:14:85:
56:ed:c5:a1:ed:b1:80:73:bf:ee:a8:d2:bb:35:57:a9:2b:a0:
55:31:e5:41:9c:47:fa:0f:65:27:40:55:ec:b2:a1:94:08:ad:
e4:39:7a:33:29:da:7b:18:de:80:6b:df:a8:b7:eb:fb:22:09:
be:a5:52:1f:6b:53:44:0e:e2:8f:b8:c0:bd:7d:56:b3:6f:d0:
e3:30:f8:4e:24:ff:cc:e7:f3:86:a0:8c:63:66:83:b0:58:44:
ff:15:7f:42:eb:1e:26:99:fc:36:55:1b:ca:f5:6c:55:a2:38:
2d:8d:1e:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:29 2023 by rpki-client on console-fra.rpki-client.org