Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/1c1a49-4285-48be-a10e-ed1600f872bb/1/A-wpX4TO6D84gJhAhKmIsMus0z4.roa
File: A-wpX4TO6D84gJhAhKmIsMus0z4.roa (raw, json)
Hash identifier: XZrrN12oG//XUbKnZ+W+H7z9PIfriYCHEo1n3Q2ePPo=
Subject key identifier: 03:EC:29:5F:84:CE:E8:3F:38:80:98:40:84:A9:88:B0:CB:AC:D3:3E
Certificate issuer: /CN=849e3adff03aab62d5db223ac3b35e2a9baa4ea3
Certificate serial: 13100480
Authority key identifier: 84:9E:3A:DF:F0:3A:AB:62:D5:DB:22:3A:C3:B3:5E:2A:9B:AA:4E:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJ463_A6q2LV2yI6w7NeKpuqTqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/1c1a49-4285-48be-a10e-ed1600f872bb/1/A-wpX4TO6D84gJhAhKmIsMus0z4.roa
Signing time: Sat 01 Jan 2022 02:51:02 +0000
ROA not before: Sat 01 Jan 2022 02:51:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20712
IP address blocks: 2001:67c:2058::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 319816832 (0x13100480)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=849e3adff03aab62d5db223ac3b35e2a9baa4ea3
Validity
Not Before: Jan 1 02:51:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03ec295f84cee83f3880984084a988b0cbacd33e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:cd:f0:55:0f:1f:2d:1b:47:e3:7f:ec:91:19:
2a:bf:00:16:f6:94:c0:6e:9f:9f:74:f1:72:9b:4a:
5f:99:9f:55:8f:4a:c0:21:da:4f:98:dc:8d:aa:85:
ae:7f:bc:5f:d1:97:a5:fe:fe:8a:be:04:c3:e5:86:
46:81:2a:d7:c5:69:df:51:6c:33:49:27:92:f9:13:
a4:b8:74:5e:69:5d:cc:fb:c9:66:eb:a7:c4:c2:74:
08:c9:a8:06:f0:13:80:fb:35:5c:74:12:46:74:10:
55:92:27:0d:75:39:45:03:c6:10:20:3e:70:6c:19:
c3:01:5d:5c:6e:a7:ad:85:ea:65:34:65:6f:d9:49:
8f:75:c8:fb:07:84:1c:58:e5:a0:37:dc:42:6b:29:
75:b3:2a:58:49:1b:52:35:2a:8f:b3:4f:2c:36:4b:
72:6e:7d:c0:bf:5f:03:0b:4b:45:ff:f5:2d:c8:ce:
aa:5c:e0:7a:5f:50:52:7d:df:50:48:7c:83:13:8d:
f4:3b:a1:ec:b9:22:ae:29:1c:b8:ba:b8:a4:aa:95:
23:c5:48:cd:35:a9:9b:6e:58:b1:71:03:b9:02:a8:
81:aa:14:2a:c0:bc:b1:91:8f:9c:06:02:ba:59:fa:
78:29:fe:b1:32:ff:15:77:a6:09:a1:b9:87:3d:6d:
c5:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:EC:29:5F:84:CE:E8:3F:38:80:98:40:84:A9:88:B0:CB:AC:D3:3E
X509v3 Authority Key Identifier:
keyid:84:9E:3A:DF:F0:3A:AB:62:D5:DB:22:3A:C3:B3:5E:2A:9B:AA:4E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJ463_A6q2LV2yI6w7NeKpuqTqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/1c1a49-4285-48be-a10e-ed1600f872bb/1/A-wpX4TO6D84gJhAhKmIsMus0z4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/1c1a49-4285-48be-a10e-ed1600f872bb/1/hJ463_A6q2LV2yI6w7NeKpuqTqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2058::/48
Signature Algorithm: sha256WithRSAEncryption
24:5c:15:94:b1:44:af:f3:a6:5e:bf:b8:fc:ab:eb:40:de:0b:
66:12:bd:45:c2:91:61:89:97:69:7b:b6:72:83:cb:3e:83:05:
09:13:46:29:f3:0c:e9:e2:bd:36:10:0f:08:cf:31:14:9c:e3:
fb:8b:35:3f:c0:d2:89:90:ce:9a:af:b3:56:dd:01:d0:47:a9:
f9:6d:bd:c1:55:40:5d:22:1a:e9:a4:f9:ad:b4:02:9f:be:40:
19:64:8d:f6:d0:41:a6:a6:a4:9f:5d:ae:87:b0:9c:e0:40:62:
8c:4c:d3:76:a2:f2:e0:e4:cd:15:75:ee:38:41:ab:2e:61:a7:
40:eb:93:d0:5d:55:4d:7f:c3:1d:e7:77:f4:96:bf:87:b2:00:
3e:b2:bd:44:07:f6:01:9b:2c:55:30:66:8b:19:71:6f:a7:59:
fe:07:65:b4:6a:3f:6f:af:0b:41:bd:93:d0:62:e8:44:9b:ae:
3a:91:5b:5b:9c:da:d2:01:78:5f:dd:50:52:cb:88:1c:dd:a1:
1d:62:9a:90:00:68:58:2e:cb:8d:55:5b:b3:a3:ad:04:a9:97:
6c:4e:53:67:42:26:fe:1e:7c:28:0e:3f:56:f7:42:17:8b:f0:
34:f9:43:f0:47:38:dd:d4:b7:54:58:a9:04:92:80:a8:d0:71:
f9:62:02:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:14 2024 by rpki-client on console-ams.rpki-client.org