Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/c29057-7eb2-4ec0-b227-02cddbd2e190/1/3uBMrD1rI4GvW20ANURk2Gykau0.roa
File: 3uBMrD1rI4GvW20ANURk2Gykau0.roa (raw, json)
Hash identifier: w4cj6RvBfvxsAhwLv0L0Wno3DestB0nQFvDCscc6yAM=
Subject key identifier: DE:E0:4C:AC:3D:6B:23:81:AF:5B:6D:00:35:44:64:D8:6C:A4:6A:ED
Certificate issuer: /CN=a84233ad498882a916f223956b585e5bb409c2c5
Certificate serial: 019F85
Authority key identifier: A8:42:33:AD:49:88:82:A9:16:F2:23:95:6B:58:5E:5B:B4:09:C2:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qEIzrUmIgqkW8iOVa1heW7QJwsU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/c29057-7eb2-4ec0-b227-02cddbd2e190/1/3uBMrD1rI4GvW20ANURk2Gykau0.roa
Signing time: Tue 28 Jun 2022 15:29:02 +0000
ROA not before: Tue 28 Jun 2022 15:29:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47638
IP address blocks: 2a0f:cd40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106373 (0x19f85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a84233ad498882a916f223956b585e5bb409c2c5
Validity
Not Before: Jun 28 15:29:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dee04cac3d6b2381af5b6d00354464d86ca46aed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:46:d7:7c:56:ae:ee:e7:18:af:65:7d:06:87:
e1:51:d0:10:21:d5:12:78:be:3d:3a:08:9c:ce:80:
ac:b8:06:76:32:b9:56:93:57:cb:ad:49:ba:24:01:
76:1f:72:a1:b3:f3:d1:53:69:3d:73:44:c3:d2:ad:
19:8f:bc:39:69:ca:60:7c:13:44:5d:d2:62:e5:64:
79:0c:8a:f2:31:7f:fd:4b:a6:5e:03:c4:1d:71:98:
16:10:28:16:f8:d2:ea:53:56:d5:03:49:17:e5:41:
8b:ad:29:bc:ed:b1:3f:38:77:37:20:3c:8c:db:ab:
99:0d:b3:bc:b2:49:ba:18:30:16:f6:b0:7d:2e:78:
f5:50:b5:ba:9d:74:17:46:6a:5b:41:61:18:55:a7:
99:63:d1:9d:fd:66:af:f2:8f:af:4c:ad:08:a0:66:
cf:db:4e:0d:63:a9:e7:d5:f0:f9:aa:f3:15:dc:20:
87:be:64:29:27:23:b9:61:62:93:03:db:e2:55:26:
e3:e0:a4:ae:bf:d0:84:b6:45:46:48:24:f6:a6:cf:
0d:54:0a:68:c6:9a:e9:74:8c:69:3d:17:a5:65:9f:
13:44:79:f4:16:1c:c0:2e:b2:ca:f4:b6:69:2e:f3:
af:0f:24:ff:94:3d:de:7c:ae:6d:be:47:eb:1b:0b:
84:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:E0:4C:AC:3D:6B:23:81:AF:5B:6D:00:35:44:64:D8:6C:A4:6A:ED
X509v3 Authority Key Identifier:
keyid:A8:42:33:AD:49:88:82:A9:16:F2:23:95:6B:58:5E:5B:B4:09:C2:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qEIzrUmIgqkW8iOVa1heW7QJwsU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/c29057-7eb2-4ec0-b227-02cddbd2e190/1/3uBMrD1rI4GvW20ANURk2Gykau0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/c29057-7eb2-4ec0-b227-02cddbd2e190/1/qEIzrUmIgqkW8iOVa1heW7QJwsU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:cd40::/29
Signature Algorithm: sha256WithRSAEncryption
1c:e1:a9:f0:f6:d4:e6:1c:d7:55:8f:1d:1e:ca:fb:b0:dd:50:
b0:71:d6:fc:f0:a2:94:0e:f9:83:66:aa:3f:d3:56:3d:3e:02:
5e:6f:ad:ea:8e:01:00:23:98:23:ac:d3:08:73:77:67:cd:2f:
3d:7e:1e:36:31:db:c1:64:44:83:d5:d6:43:bc:3b:ee:df:20:
09:62:92:f2:8a:4a:78:b0:50:99:02:7f:14:4c:ec:2e:c7:87:
c4:75:32:77:4e:32:55:a6:93:84:66:5d:4d:dd:54:7a:80:31:
0f:f3:23:ce:13:bb:d5:3e:ab:e4:47:d0:6b:aa:69:c5:28:0a:
c2:ee:4c:aa:d1:c4:ef:d9:22:23:f2:54:08:4a:49:ed:5b:46:
db:a7:be:ca:b6:b4:a6:83:7f:61:19:cb:29:e7:4e:1d:4c:d3:
fb:04:68:f1:4f:31:bd:4b:c5:93:69:36:e8:86:d0:68:b9:fd:
1a:52:2e:74:85:fa:22:52:2c:32:17:c1:01:b3:e7:dd:2b:ae:
e6:45:1d:a2:01:b9:f0:12:a4:e5:c9:f4:de:1f:46:74:8c:6d:
2e:8a:a1:db:86:19:d9:50:a7:f5:a2:7d:11:9d:54:9e:83:1d:
58:c7:fe:fa:65:f4:79:08:a1:76:49:b9:08:7b:d4:54:2f:97:
ff:2e:cc:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:32 2023 by rpki-client on console-fra.rpki-client.org