Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/l3kqSV1tAxlvidZLQ9SaVKq7qp4.roa
File: l3kqSV1tAxlvidZLQ9SaVKq7qp4.roa (raw, json)
Hash identifier: eY9kUzZSCuaZ9F8W5xos7xTAZTwx8hEPyJFSzjUzRmw=
Subject key identifier: 97:79:2A:49:5D:6D:03:19:6F:89:D6:4B:43:D4:9A:54:AA:BB:AA:9E
Certificate issuer: /CN=835bc9bb547e27788d221bc8bbd5fb02e024480f
Certificate serial: 10A0C797
Authority key identifier: 83:5B:C9:BB:54:7E:27:78:8D:22:1B:C8:BB:D5:FB:02:E0:24:48:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/l3kqSV1tAxlvidZLQ9SaVKq7qp4.roa
Signing time: Sat 01 Jan 2022 13:59:26 +0000
ROA not before: Sat 01 Jan 2022 13:59:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200365
IP address blocks: 2a0b:6b86:a00::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 278972311 (0x10a0c797)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=835bc9bb547e27788d221bc8bbd5fb02e024480f
Validity
Not Before: Jan 1 13:59:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97792a495d6d03196f89d64b43d49a54aabbaa9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:0a:7b:05:f9:09:40:65:df:b2:64:c5:8e:7b:
ed:81:48:80:bb:83:ee:ae:18:30:ff:9a:74:e6:2d:
cd:27:c5:90:b8:89:99:fc:24:8e:49:04:42:f7:08:
17:57:6b:60:69:43:59:9b:34:6a:7a:56:bf:88:7d:
81:1a:a6:05:ae:cd:e4:ee:55:e9:94:52:71:dd:66:
af:e0:6f:6d:61:84:9a:54:c4:86:ec:56:f4:3b:fc:
32:9a:50:b2:a6:89:f3:ac:df:cb:f1:8a:b7:6b:39:
12:f3:4c:cc:c1:0a:d9:bd:af:20:c2:07:04:0d:3d:
3b:50:c6:a0:ae:39:86:a8:05:35:d7:46:e0:1c:3b:
48:45:56:b4:d1:b5:7e:e2:92:b6:8a:37:75:38:2b:
ea:d2:05:ad:c4:13:50:e7:da:f7:18:85:d4:ca:d0:
f9:56:bf:4e:0f:f4:b0:1d:fe:02:3a:ff:73:ca:7b:
ab:66:f7:76:05:6a:7b:cb:3e:2d:f5:07:81:d8:51:
d9:d3:f5:62:62:c8:3a:d4:cb:b2:9f:5f:40:80:2b:
c4:6f:01:e7:61:d1:8c:58:8e:4a:8f:98:ce:8d:6c:
28:94:bc:f3:94:72:7d:09:ce:03:52:7e:62:98:58:
ed:b7:94:ac:58:26:70:df:47:64:50:b4:2c:79:25:
81:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:79:2A:49:5D:6D:03:19:6F:89:D6:4B:43:D4:9A:54:AA:BB:AA:9E
X509v3 Authority Key Identifier:
keyid:83:5B:C9:BB:54:7E:27:78:8D:22:1B:C8:BB:D5:FB:02:E0:24:48:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/l3kqSV1tAxlvidZLQ9SaVKq7qp4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/g1vJu1R-J3iNIhvIu9X7AuAkSA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:6b86:a00::/40
Signature Algorithm: sha256WithRSAEncryption
4f:8c:22:95:e2:0e:1e:19:90:2f:6a:91:f7:e1:6d:32:de:62:
e6:04:68:20:9f:8c:53:f0:07:66:88:69:38:af:91:05:6c:bc:
64:dc:97:7a:3e:31:ba:8b:4e:38:14:ed:ad:0a:26:9b:e5:8b:
a0:9f:a1:0a:16:0a:e9:6c:47:bb:ea:86:c8:4c:75:66:66:b4:
be:7c:a2:e4:81:d3:9b:19:1f:eb:35:c8:c7:df:f8:70:c1:60:
f0:67:3d:38:f1:e7:6b:83:e0:30:b8:97:4b:79:05:80:6f:3f:
cc:59:56:9e:bd:6a:44:6d:c2:cb:1f:19:92:ff:b7:ec:80:96:
e5:4f:57:70:eb:38:17:e3:2b:34:13:fc:9e:47:d4:d6:8a:4e:
07:5d:ba:d9:6c:a2:5b:3d:cb:98:41:61:25:0b:9b:12:c8:7b:
f9:ef:0b:f6:6a:e5:d6:6b:22:5c:26:54:c9:ae:15:72:5e:91:
fe:10:9e:bc:f9:39:ca:34:5d:98:42:5c:19:04:2f:bd:ec:e6:
c9:b0:a9:21:ef:d4:41:b2:e7:f8:b5:43:63:78:9b:fb:81:b1:
f8:b4:8f:98:2f:c9:6e:c3:71:17:c3:19:9e:db:0d:52:23:1f:
ec:38:3b:6b:e8:b7:03:39:df:8e:42:de:df:cc:b3:d4:70:86:
45:92:09:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:26 2023 by rpki-client on console-ams.rpki-client.org