Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/g0Wh6vzYnQxEYPm680Gpvw1DifE.roa
File: g0Wh6vzYnQxEYPm680Gpvw1DifE.roa (raw, json)
Hash identifier: fl2CV1LttPfMs2rGUgWxxRDlCkF6MKYchoK+O3IPczs=
Subject key identifier: 83:45:A1:EA:FC:D8:9D:0C:44:60:F9:BA:F3:41:A9:BF:0D:43:89:F1
Certificate issuer: /CN=5df53645843e6d2883dc8f9c4f415c1eadbbf60a
Certificate serial: 04C33CB3
Authority key identifier: 5D:F5:36:45:84:3E:6D:28:83:DC:8F:9C:4F:41:5C:1E:AD:BB:F6:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfU2RYQ-bSiD3I-cT0FcHq279go.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/g0Wh6vzYnQxEYPm680Gpvw1DifE.roa
Signing time: Fri 11 Feb 2022 10:28:22 +0000
ROA not before: Fri 11 Feb 2022 10:28:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208588
IP address blocks: 2a10:4741:28::/48 maxlen: 48
2a10:4741:26::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79903923 (0x4c33cb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df53645843e6d2883dc8f9c4f415c1eadbbf60a
Validity
Not Before: Feb 11 10:28:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8345a1eafcd89d0c4460f9baf341a9bf0d4389f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:97:61:ba:54:b3:16:60:71:78:ac:7d:eb:cf:
d4:70:2b:f8:1c:cd:08:1e:07:af:8f:16:7d:7a:59:
06:21:1a:ca:94:7e:38:c4:c8:ae:28:ab:8b:12:a8:
df:91:bd:c1:d7:26:47:7e:89:cb:21:53:86:d6:3b:
27:83:90:4a:03:ea:0d:5a:2c:3c:2f:eb:a4:e5:29:
76:87:5c:45:8d:43:63:ff:62:3f:05:fe:2f:25:86:
21:09:69:29:d0:46:a1:fc:ee:d6:d5:50:f3:77:70:
7c:99:90:75:3a:c2:48:6d:65:2d:aa:12:02:6d:5e:
6c:2b:91:ba:e7:7e:9a:6b:c3:68:5f:f6:e9:49:c3:
c4:b3:17:ff:61:a2:8b:00:66:27:96:77:21:28:d3:
39:f5:0b:49:e2:3e:bb:19:08:66:88:ba:1c:f1:0d:
60:a2:99:72:51:1e:14:c7:18:67:0e:69:62:ab:56:
b2:b3:03:73:89:c9:3e:3c:2d:89:48:78:0e:58:2a:
44:a2:1c:1e:b4:aa:c0:5a:e3:e8:77:ae:be:07:ca:
3d:b9:56:0b:6d:28:d1:33:18:ff:42:bb:c4:2b:17:
b2:62:5f:e8:6b:17:30:74:93:42:d4:c6:3a:c7:a4:
ba:2c:3e:45:cc:e6:1d:36:83:55:e9:6f:a6:dd:bb:
be:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:45:A1:EA:FC:D8:9D:0C:44:60:F9:BA:F3:41:A9:BF:0D:43:89:F1
X509v3 Authority Key Identifier:
keyid:5D:F5:36:45:84:3E:6D:28:83:DC:8F:9C:4F:41:5C:1E:AD:BB:F6:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfU2RYQ-bSiD3I-cT0FcHq279go.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/g0Wh6vzYnQxEYPm680Gpvw1DifE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/XfU2RYQ-bSiD3I-cT0FcHq279go.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4741:26::/48
2a10:4741:28::/48
Signature Algorithm: sha256WithRSAEncryption
8c:ed:1c:78:b7:32:c3:8f:aa:69:87:cc:6b:51:f8:28:10:c3:
8b:15:7b:65:bf:b2:40:bc:80:c6:67:0c:ef:73:ec:aa:28:de:
4e:02:21:49:14:3c:a1:36:06:7d:1a:4e:cb:c6:1b:36:aa:31:
4c:11:56:d4:f5:19:a1:a1:ff:ad:1d:18:07:f4:fb:f2:13:ea:
aa:e9:d3:f0:3f:c1:c0:f6:d0:5d:fb:db:a0:b2:34:cb:bb:21:
eb:5d:6e:60:8e:40:b1:7c:7e:d5:7a:30:ae:7f:47:e9:f5:14:
3a:87:e7:f0:0b:46:59:0f:84:aa:df:5e:32:f3:34:2d:2a:66:
51:13:05:5b:69:61:1e:60:39:25:75:5f:0a:e2:08:c7:4c:f2:
23:06:ba:0f:04:d6:1c:d5:1a:2a:c3:39:a3:05:9c:d3:fb:01:
ee:5f:1f:6d:ed:d9:3b:4f:77:84:8c:ab:7d:22:ae:81:78:28:
4e:36:45:1f:bf:55:d1:62:a9:78:57:58:8c:b8:ad:ec:fa:8f:
6f:46:bc:b5:39:6a:13:81:8d:bd:50:d8:15:0c:5f:0d:66:1f:
6c:cb:4c:4e:09:e3:ac:31:02:dd:a5:b4:f5:6f:60:07:56:30:
cc:48:2b:57:42:cb:5d:e2:9f:08:90:b9:ad:fb:bd:04:ab:e0:
47:dd:93:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:43 2023 by rpki-client on console-ams.rpki-client.org