Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/RuxC4PSgsv5gsuta5j4Khk9-NOc.roa
File: RuxC4PSgsv5gsuta5j4Khk9-NOc.roa (raw, json)
Hash identifier: +hfHKz7i8+v4Zd5NyVvL++vjRjEQwbFdm/pPr7+Lv3M=
Subject key identifier: 46:EC:42:E0:F4:A0:B2:FE:60:B2:EB:5A:E6:3E:0A:86:4F:7E:34:E7
Certificate issuer: /CN=38203463eb944b25c65135ca47bdbdab646f3984
Certificate serial: 03E3B83F
Authority key identifier: 38:20:34:63:EB:94:4B:25:C6:51:35:CA:47:BD:BD:AB:64:6F:39:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCA0Y-uUSyXGUTXKR729q2RvOYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/RuxC4PSgsv5gsuta5j4Khk9-NOc.roa
Signing time: Sat 01 Jan 2022 06:56:37 +0000
ROA not before: Sat 01 Jan 2022 06:56:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208136
IP address blocks: 2a00:8860:d00::/40 maxlen: 64
2a00:8861:d00::/40 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65255487 (0x3e3b83f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38203463eb944b25c65135ca47bdbdab646f3984
Validity
Not Before: Jan 1 06:56:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=46ec42e0f4a0b2fe60b2eb5ae63e0a864f7e34e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:86:ce:13:85:05:b9:18:cc:48:8d:21:f6:a3:
e1:f0:e1:3a:06:df:7c:08:55:b2:d5:03:cc:09:f6:
ed:0d:da:63:ad:3d:d5:22:46:a7:a8:1f:a3:bb:98:
22:40:76:3e:62:6d:dd:99:1c:71:3e:d7:a1:c7:8d:
94:ab:59:c6:01:ea:c8:68:5a:06:2f:ca:e2:e7:bb:
13:60:30:60:cb:0f:c5:22:63:70:c5:06:47:38:af:
2d:bb:ed:3b:95:4e:f8:d3:db:9e:d9:65:0c:4c:bd:
c8:5e:07:11:f1:99:b9:c6:1f:01:ae:e7:bb:b2:cc:
b7:38:e9:39:2b:1e:76:6c:ea:82:2f:b6:85:c6:93:
87:7b:c4:7b:c6:02:8d:18:1b:61:34:be:4a:48:8d:
6a:1f:24:c3:fb:bd:80:5c:5c:78:81:21:5c:89:2a:
ee:61:09:eb:74:26:48:56:8a:3d:bd:2e:e0:31:20:
7b:b4:64:91:a0:2a:3c:94:9e:34:b6:48:96:29:9e:
a7:8e:44:0e:e6:d2:32:50:48:85:c9:54:2f:ad:a8:
bb:f9:c6:67:3d:3e:ce:fe:23:f5:51:83:c1:98:a4:
a3:3b:4f:c9:b5:67:3b:46:60:b2:20:4b:ad:aa:1f:
65:19:02:b6:a1:c7:9b:44:72:65:d3:70:4a:c1:1e:
9f:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:EC:42:E0:F4:A0:B2:FE:60:B2:EB:5A:E6:3E:0A:86:4F:7E:34:E7
X509v3 Authority Key Identifier:
keyid:38:20:34:63:EB:94:4B:25:C6:51:35:CA:47:BD:BD:AB:64:6F:39:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCA0Y-uUSyXGUTXKR729q2RvOYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/RuxC4PSgsv5gsuta5j4Khk9-NOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/OCA0Y-uUSyXGUTXKR729q2RvOYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:8860:d00::/40
2a00:8861:d00::/40
Signature Algorithm: sha256WithRSAEncryption
9c:41:67:a0:b9:05:35:1f:7c:7d:d6:4b:0f:b0:ad:54:c0:7b:
dc:e7:6a:df:ed:a2:eb:60:48:e5:dd:a8:5d:ed:f6:c7:67:bd:
dc:52:87:8d:cb:dd:32:1b:5f:29:1d:a0:af:a2:ae:d7:71:1e:
1c:03:28:ab:6c:5c:15:8d:f2:29:88:8b:5a:d5:12:17:a5:d7:
07:37:7f:9d:18:c6:70:0b:4f:17:c4:da:7a:c8:78:a9:db:fb:
cf:db:59:b3:96:a5:79:25:fe:a4:49:8d:30:76:f0:f7:61:42:
46:08:19:49:8c:be:5a:7b:2f:94:ad:ec:52:a4:8d:d8:1c:b0:
cb:4b:3d:6c:f3:b7:21:3d:1e:28:15:0d:ed:6d:5e:82:04:1a:
73:c4:25:50:88:92:63:14:05:08:f1:0f:20:1b:f6:94:1a:54:
80:34:d3:2f:b6:29:fc:14:65:ce:e0:a9:07:41:92:43:57:fb:
fc:01:fa:04:a3:8c:f9:8b:c0:7e:98:15:d6:f1:0e:af:c0:3c:
3f:19:c6:cf:b3:19:80:7d:12:9b:fa:86:08:71:56:09:b0:c9:
66:54:d5:b9:52:e3:09:37:04:36:d6:1a:ef:66:cf:f4:8f:4e:
a1:ac:9c:de:81:81:a3:75:93:89:99:36:51:2d:8a:8f:a0:43:
78:60:73:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:09 2023 by rpki-client on console-ams.rpki-client.org