Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/iQDcBy6RcdCtAC7sGPl9H7lG00A.roa
File: iQDcBy6RcdCtAC7sGPl9H7lG00A.roa (raw, json)
Hash identifier: Zd7JdHAr0UqwwRg0uUJ6Xp/F9Mo0f7GLVEFZnKGrx2M=
Subject key identifier: 89:00:DC:07:2E:91:71:D0:AD:00:2E:EC:18:F9:7D:1F:B9:46:D3:40
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 0182584D64E77ED361F1A8FAB532B21F61DC
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/iQDcBy6RcdCtAC7sGPl9H7lG00A.roa
Signing time: Mon 01 Aug 2022 07:27:23 +0000
ROA not before: Mon 01 Aug 2022 07:27:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203664
IP address blocks: 2a0e:aa07:e044::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:58:4d:64:e7:7e:d3:61:f1:a8:fa:b5:32:b2:1f:61:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Aug 1 07:27:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8900dc072e9171d0ad002eec18f97d1fb946d340
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:14:79:68:f1:de:4a:a1:e4:0e:bd:ff:fd:59:
5b:25:20:b3:0b:9a:f7:c1:ae:10:b8:b7:e5:bc:41:
ea:46:aa:7c:dc:fd:d4:a0:91:d2:ee:6e:f4:db:7f:
4a:b8:c8:09:df:87:c7:05:bf:71:64:93:99:be:e8:
53:f5:46:1a:af:4f:6a:44:6a:c4:d2:2a:51:17:33:
d2:61:a0:a3:d0:bc:da:83:1d:53:15:e1:ee:36:6f:
df:40:96:ec:58:1d:25:a7:6b:f0:57:ac:65:b0:c9:
a4:a0:c1:6e:ee:eb:7f:64:9f:a1:69:5a:c3:d5:f9:
c2:a1:a6:fe:53:0e:79:90:b6:1e:73:c2:f4:73:a0:
01:a4:09:7d:63:da:24:1c:3b:b8:60:b1:09:24:16:
68:ce:c2:c2:5f:7a:8d:17:cb:f6:40:30:f3:63:dd:
ad:56:70:f3:57:d2:d6:8c:7a:76:e0:1f:dd:bf:d1:
56:c1:ef:9f:c1:90:84:82:69:d4:3d:41:66:6c:a6:
f1:a1:f4:75:b2:c4:ae:28:9a:93:a6:ff:06:8d:ff:
ab:2f:27:49:43:25:6a:0f:5c:af:06:b0:29:4f:5b:
43:07:5f:ab:c5:4e:f6:27:79:4b:ff:db:35:4b:c5:
3c:03:bd:ca:94:b6:7d:e0:d7:3c:91:8d:cc:e1:5b:
52:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:00:DC:07:2E:91:71:D0:AD:00:2E:EC:18:F9:7D:1F:B9:46:D3:40
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/iQDcBy6RcdCtAC7sGPl9H7lG00A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e044::/48
Signature Algorithm: sha256WithRSAEncryption
c4:52:5e:bf:84:3b:76:e2:a9:99:48:cb:6e:ae:83:ce:89:14:
0d:75:72:3f:0e:e2:36:18:8c:7c:f9:09:41:67:6a:7d:30:49:
b5:c2:25:4c:97:48:b1:78:d7:b3:a9:5b:be:c5:1d:44:9a:6c:
a5:72:d2:d2:ce:06:e1:c5:98:d7:9c:a0:31:2a:c6:3d:0e:7e:
14:82:e8:61:51:66:52:5e:f3:3a:2d:53:63:95:36:e3:ab:b9:
00:ec:73:78:5d:fa:9e:06:68:78:d2:99:e9:1d:c3:04:b9:a3:
d4:c4:9f:8c:ce:e4:8c:8e:69:bd:33:b3:12:35:c4:51:0a:bd:
af:0f:9c:b1:59:30:8d:e7:8d:b9:26:0f:55:e4:d0:81:58:e7:
46:d4:99:13:76:1d:48:b3:e9:4b:78:4e:bd:86:40:54:48:64:
7c:dd:eb:c2:35:92:5c:95:3d:62:15:34:c1:74:6a:2a:3d:ce:
f5:bd:b3:05:24:a3:11:75:51:fc:9a:82:33:5d:78:27:3e:ab:
01:a8:68:66:8f:aa:dc:e8:37:65:a1:5e:52:9f:9f:97:27:5f:
7c:18:94:33:10:8f:fe:03:fe:01:b6:7f:37:cd:cb:64:3c:69:
3d:87:2a:27:2d:0b:52:19:52:a5:24:04:21:ae:ab:a9:e2:21:
fb:c3:a2:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:11 2024 by rpki-client on console-ams.rpki-client.org