Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/gahUs0Wqh2IK_iADPZvLnOIxcJg.roa
File: gahUs0Wqh2IK_iADPZvLnOIxcJg.roa (raw, json)
Hash identifier: 3q3wLVHAFbKDsgGyJKQhUW22FRc6VikLaieF8w5TuSU=
Subject key identifier: 81:A8:54:B3:45:AA:87:62:0A:FE:20:03:3D:9B:CB:9C:E2:31:70:98
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 09630CC6
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/gahUs0Wqh2IK_iADPZvLnOIxcJg.roa
Signing time: Sat 01 Jan 2022 09:03:53 +0000
ROA not before: Sat 01 Jan 2022 09:03:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 139589
IP address blocks: 2a0e:aa01:1fff::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157486278 (0x9630cc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 09:03:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81a854b345aa87620afe20033d9bcb9ce2317098
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:c8:80:18:24:fa:81:e5:56:56:32:69:24:a2:
a3:b6:c5:c5:4d:93:a6:a6:b7:7a:6b:42:d0:e2:8f:
54:2f:16:d4:5f:9a:14:e4:27:8c:61:40:36:13:5d:
34:d0:bf:f1:5d:e3:8c:99:17:61:7c:e9:b8:b9:c2:
1f:8a:79:ba:a5:4b:5c:99:e7:06:10:54:62:84:0e:
b6:19:03:0a:04:a4:b0:c3:31:a5:49:9e:8f:34:64:
e6:88:79:50:db:77:c6:9d:ad:34:4f:8d:f1:ed:e8:
d1:11:4f:4b:9a:e3:8b:b0:ae:7b:3d:4e:5a:1b:95:
16:41:5c:66:0c:79:37:fc:b2:2a:fe:9a:d8:74:f0:
bf:9d:11:30:c4:0a:95:15:81:3b:a8:73:b7:97:92:
73:b3:7c:ab:8c:6c:e1:82:ad:bb:38:ce:14:78:c4:
b8:45:bb:a2:44:b9:1c:46:2b:89:c7:9f:6d:7d:6d:
b2:87:b5:bf:d1:fb:1d:86:53:ee:5e:df:56:d5:ff:
f6:dd:93:a3:48:e7:0f:8d:fa:e7:11:d5:c3:a6:f3:
0c:ca:29:dd:5a:f9:fd:57:fb:f4:69:38:5f:66:b3:
af:a5:a1:8d:d2:c2:86:06:43:37:9f:83:d5:eb:35:
fd:d9:73:98:d0:54:8a:bd:4b:3e:d9:d4:78:3c:78:
fc:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:A8:54:B3:45:AA:87:62:0A:FE:20:03:3D:9B:CB:9C:E2:31:70:98
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/gahUs0Wqh2IK_iADPZvLnOIxcJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa01:1fff::/48
Signature Algorithm: sha256WithRSAEncryption
b6:32:02:53:dc:0b:cc:b5:95:ce:83:ee:57:74:03:b5:59:60:
bf:10:51:d6:5f:ae:96:a4:54:8d:94:97:f1:a7:2e:24:e9:39:
4a:c1:35:74:96:58:ff:30:b1:92:30:9b:2a:5c:11:f1:18:99:
13:d2:8d:a0:3b:38:b6:5c:a4:41:60:42:57:ab:47:ee:d9:f5:
4a:49:11:99:a0:20:77:14:9f:55:34:a4:34:e5:6d:db:e0:8f:
f8:f5:4d:04:75:b6:79:56:8b:3b:4a:3a:1f:01:47:1e:6d:c8:
8d:e6:12:e6:1e:1f:f4:e2:c3:b0:4d:7c:56:66:18:e4:c0:1b:
eb:22:cc:e8:2c:d8:5a:b3:29:3c:b6:5a:9c:a8:c3:96:88:a1:
fb:43:75:01:53:be:89:f7:86:6c:aa:4f:1a:ee:b6:0a:95:7a:
42:74:35:ac:a8:93:c4:2a:c9:cc:c1:eb:37:bf:47:89:7b:3a:
51:fb:2e:3d:10:c7:94:ae:53:08:e1:88:85:eb:12:98:2e:44:
12:a7:7f:20:a5:61:10:0c:ba:71:99:80:3b:90:b4:cf:a7:03:
86:dd:b2:c3:07:22:f0:62:5a:be:7b:ff:08:be:17:f9:8c:c4:
80:51:e3:51:98:56:c1:fe:8a:52:99:ec:07:8a:a1:de:4c:c2:
91:07:ab:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:09 2023 by rpki-client on console-ams.rpki-client.org