Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/lIWVbEiDi5Ed5LOxPBJdoi8areM.roa
File: lIWVbEiDi5Ed5LOxPBJdoi8areM.roa (raw, json)
Hash identifier: d2mo1JtsAdpdh73SZQYjhPsWL7s5R0vR8acoPPa4Sck=
Subject key identifier: 94:85:95:6C:48:83:8B:91:1D:E4:B3:B1:3C:12:5D:A2:2F:1A:AD:E3
Certificate issuer: /CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Certificate serial: 0809E8D9
Authority key identifier: F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/lIWVbEiDi5Ed5LOxPBJdoi8areM.roa
Signing time: Thu 28 Apr 2022 14:30:46 +0000
ROA not before: Thu 28 Apr 2022 14:30:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205414
IP address blocks: 2a03:5840:260::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134867161 (0x809e8d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Validity
Not Before: Apr 28 14:30:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9485956c48838b911de4b3b13c125da22f1aade3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2c:26:8a:67:cc:80:2f:d2:4b:c2:f6:ed:e8:
37:2b:99:42:4d:3f:7e:7c:05:85:dc:23:ef:8d:da:
e2:6b:52:5f:f9:85:31:b0:6d:46:79:4c:dd:31:ab:
f9:1e:3e:ad:1a:28:88:ab:ea:97:8a:f0:2e:40:69:
77:20:93:b2:9c:ba:90:0b:74:68:c1:f0:5e:c3:66:
66:93:1a:fe:25:8f:05:65:17:21:c9:89:2d:37:03:
42:d6:d2:62:5d:ae:a2:4a:30:eb:ac:9c:8f:aa:c6:
7d:cb:69:53:15:d4:07:f3:b2:8a:7a:c5:21:72:eb:
af:3b:ff:f9:85:58:4e:1a:91:3b:79:29:ba:64:55:
29:7b:e6:31:25:2d:f8:10:9a:e8:52:28:cf:d2:35:
51:7a:b1:71:10:b7:be:16:98:fe:1e:ed:5c:b8:4f:
9c:d2:96:88:ca:98:e9:3e:5e:57:3b:e8:40:8f:85:
7b:b5:0a:dc:66:f7:26:83:03:54:a7:6b:14:73:74:
ef:89:42:dd:ea:28:4a:2d:4c:70:7c:c2:e1:1a:58:
7e:8e:11:60:0a:f3:73:d2:4c:7f:16:89:38:37:f1:
8f:48:57:3d:ec:df:b4:5a:60:db:05:75:94:78:d6:
78:13:e1:16:af:8e:2f:51:ca:f8:a4:26:a4:e0:01:
f4:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:85:95:6C:48:83:8B:91:1D:E4:B3:B1:3C:12:5D:A2:2F:1A:AD:E3
X509v3 Authority Key Identifier:
keyid:F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/lIWVbEiDi5Ed5LOxPBJdoi8areM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:5840:260::/44
Signature Algorithm: sha256WithRSAEncryption
a6:c7:e9:8e:7f:f7:ae:cf:57:1e:68:de:ee:94:64:b7:d1:f3:
03:34:7a:3a:c2:bb:cd:38:a0:7f:af:a3:86:30:a3:0f:71:de:
92:6b:6b:22:6d:64:85:30:7b:38:61:be:c8:fd:dd:bc:68:35:
38:e8:24:cc:8c:5a:bc:ed:05:b5:14:8b:a7:d3:17:e8:11:72:
1e:bd:b3:70:3a:6e:69:cd:97:6b:be:93:6a:68:75:6f:dc:f2:
5e:dd:3d:3b:1d:8f:84:a0:33:a4:a2:be:76:d5:ee:c9:0e:d8:
9a:21:78:a1:10:62:6e:cf:6d:e9:13:49:39:53:ce:50:83:41:
1f:ad:dc:17:21:41:87:37:e9:0d:bc:fe:6b:9b:2f:29:af:c6:
06:69:1d:e9:2a:87:49:d7:a9:ca:bc:c0:f3:3c:b4:06:6a:c4:
eb:6b:49:66:a3:9f:80:1b:3a:25:89:bd:8e:fd:47:99:f8:0e:
33:9d:aa:8c:21:3a:42:ea:29:6c:57:be:54:d3:c5:d3:f2:d5:
95:3f:ff:fa:3d:a4:fc:9b:0b:e7:6a:f5:90:0a:62:87:6f:65:
00:ae:fe:58:48:c2:83:e4:80:f5:6e:fc:aa:06:1a:ea:d2:0f:
96:fc:7f:82:29:5b:02:0c:65:e6:cc:6a:aa:cd:41:a2:8b:3f:
1a:5f:26:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:59 2023 by rpki-client on console-ams.rpki-client.org