Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/74d7cd-04e1-49d8-aad9-82043b9e4f71/1/09unDwQn2qhXNn9tQsDA20TxNSA.roa
File: 09unDwQn2qhXNn9tQsDA20TxNSA.roa (raw, json)
Hash identifier: Vhmg7g79PI9sFNn5IsmNZ4cwbmd2kSh+gHx1+5eqHgk=
Subject key identifier: D3:DB:A7:0F:04:27:DA:A8:57:36:7F:6D:42:C0:C0:DB:44:F1:35:20
Certificate issuer: /CN=710068d5bf1bffd79174e37501bfa17f917b313d
Certificate serial: DD2C
Authority key identifier: 71:00:68:D5:BF:1B:FF:D7:91:74:E3:75:01:BF:A1:7F:91:7B:31:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cQBo1b8b_9eRdON1Ab-hf5F7MT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/74d7cd-04e1-49d8-aad9-82043b9e4f71/1/09unDwQn2qhXNn9tQsDA20TxNSA.roa
Signing time: Thu 06 Jan 2022 10:38:40 +0000
ROA not before: Thu 06 Jan 2022 10:38:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1712
IP address blocks: 2a04:8ec0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56620 (0xdd2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=710068d5bf1bffd79174e37501bfa17f917b313d
Validity
Not Before: Jan 6 10:38:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3dba70f0427daa857367f6d42c0c0db44f13520
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4f:94:c4:e7:61:a2:8d:95:44:ea:6d:1f:5d:
13:d3:11:bb:7e:21:48:2b:ee:ef:c8:2e:e2:f8:ec:
f2:f5:ea:2c:fa:c7:8e:c3:0e:bd:96:32:ec:3a:01:
e4:54:92:3e:34:ab:53:6b:73:e2:88:bb:a9:ce:6b:
5c:f8:7a:7a:57:d2:4c:a4:f0:4b:30:9b:cb:2b:15:
8a:c5:db:84:9b:84:41:ad:a8:ec:9d:bb:e8:de:59:
3d:0e:6e:0f:0b:d4:f8:a9:d1:e1:e5:7a:19:b5:91:
4d:b3:7d:64:67:7d:bf:f3:a0:71:72:2b:fe:4a:98:
38:2c:4a:06:49:fc:77:bf:61:f5:bf:fa:e6:1b:2c:
c5:ec:32:ac:22:8c:57:40:c0:42:d5:b7:bb:ba:a0:
e0:6d:66:69:6f:33:df:de:0c:9f:55:59:fd:9d:f1:
ea:5c:73:ce:4c:28:cf:dc:09:10:e6:e3:12:aa:e9:
af:43:72:3b:ff:cf:4b:23:8d:c9:f6:83:87:dd:88:
cd:a4:74:80:53:12:8f:bd:5e:26:5e:1c:a6:09:f4:
0a:a1:59:2b:35:43:ba:a8:0f:87:8e:88:23:65:c8:
71:cf:35:d5:73:93:e7:fb:68:4e:02:f0:90:9c:5c:
7b:bc:19:18:c6:75:e3:08:cf:16:13:b8:5a:d2:da:
1d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:DB:A7:0F:04:27:DA:A8:57:36:7F:6D:42:C0:C0:DB:44:F1:35:20
X509v3 Authority Key Identifier:
keyid:71:00:68:D5:BF:1B:FF:D7:91:74:E3:75:01:BF:A1:7F:91:7B:31:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cQBo1b8b_9eRdON1Ab-hf5F7MT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/74d7cd-04e1-49d8-aad9-82043b9e4f71/1/09unDwQn2qhXNn9tQsDA20TxNSA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/74d7cd-04e1-49d8-aad9-82043b9e4f71/1/cQBo1b8b_9eRdON1Ab-hf5F7MT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:8ec0::/48
Signature Algorithm: sha256WithRSAEncryption
93:0a:20:ac:3e:5f:fd:28:f9:62:86:d0:85:bd:69:68:62:7e:
a1:b6:ca:ae:14:0c:1d:b3:b4:8b:cf:34:0e:a4:f3:13:77:9e:
1f:18:d7:08:f8:36:7d:27:d8:b1:63:b2:98:48:4b:0c:ea:de:
52:0f:6d:b5:96:72:49:78:54:ec:93:71:96:de:de:7d:00:fc:
da:7a:fc:ab:f5:ec:47:19:df:67:14:66:76:ef:d1:9f:e2:d7:
75:4d:94:39:cc:cb:67:60:5c:b9:2f:44:c3:ae:4c:eb:b9:63:
f8:ef:9c:5d:c2:34:52:ad:8e:57:b9:67:46:88:45:28:09:a2:
f8:4f:b7:31:7f:2e:11:be:df:54:c6:73:01:f7:03:f7:0b:49:
6f:04:76:1d:2c:d9:2b:e1:0a:6b:84:12:db:66:6f:44:ef:14:
c9:42:59:cb:5a:2b:32:77:71:e9:6e:e9:9e:0c:e9:5c:50:2c:
75:d3:dd:b4:b4:3a:94:e7:63:81:97:5f:bd:6a:be:f6:f5:86:
41:03:41:64:d6:af:99:f0:da:5e:d3:b3:8f:2f:e7:73:4c:ae:
66:df:aa:ca:0f:64:ac:18:a4:15:8c:a1:10:50:83:35:83:63:
fb:4b:05:b1:be:8c:aa:09:03:00:b8:db:6a:13:d0:dc:87:6a:
68:6c:ad:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:58 2023 by rpki-client on console-fra.rpki-client.org