Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/09cafd-68bc-41a2-8bab-80b84e4f20c9/1/Hk7vqIem-3HwAGqlHYUP5b68DE0.roa
File: Hk7vqIem-3HwAGqlHYUP5b68DE0.roa (raw, json)
Hash identifier: OQPGPc3onsIqST+privXdP1w5fjwBEGsZHmmuzT+pJ0=
Subject key identifier: 1E:4E:EF:A8:87:A6:FB:71:F0:00:6A:A5:1D:85:0F:E5:BE:BC:0C:4D
Certificate issuer: /CN=10773f32d3cb4e13e43f10a3dc422f1f3271bfba
Certificate serial: 0F218C98
Authority key identifier: 10:77:3F:32:D3:CB:4E:13:E4:3F:10:A3:DC:42:2F:1F:32:71:BF:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHc_MtPLThPkPxCj3EIvHzJxv7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/09cafd-68bc-41a2-8bab-80b84e4f20c9/1/Hk7vqIem-3HwAGqlHYUP5b68DE0.roa
Signing time: Sat 01 Jan 2022 12:03:15 +0000
ROA not before: Sat 01 Jan 2022 12:03:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200280
IP address blocks: 2a0a:4a40:2270::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 253856920 (0xf218c98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10773f32d3cb4e13e43f10a3dc422f1f3271bfba
Validity
Not Before: Jan 1 12:03:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e4eefa887a6fb71f0006aa51d850fe5bebc0c4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:fe:12:e2:c4:61:36:48:dd:09:46:50:98:15:
32:86:d0:b3:1a:20:72:11:ec:92:56:79:bd:4a:5a:
06:07:97:52:75:5b:56:75:5b:31:3f:e6:e4:d0:01:
76:d4:cd:ff:e6:0a:d8:dd:84:57:35:64:98:b5:dc:
ec:35:13:30:be:49:83:98:3c:59:3a:ce:a8:fa:76:
24:d3:b3:4e:ca:8d:e4:25:63:70:bf:3f:d3:a0:89:
5a:12:fa:8d:cd:53:48:53:a6:b9:17:3d:1b:33:fd:
a2:92:fa:d4:91:cf:12:f9:e7:de:e9:28:b3:d8:6e:
b4:9a:a7:c6:f3:a3:8a:91:4e:00:14:65:81:be:81:
4a:fc:3e:65:2c:90:1a:f9:3c:f6:3d:48:e0:3f:cb:
dd:4d:43:41:9f:c4:76:98:b0:96:0d:83:31:f8:2f:
cd:79:b8:9d:89:d0:7b:ec:78:e7:1d:a1:94:a2:90:
20:de:62:c9:27:b5:a5:eb:0b:c2:42:ec:07:b9:af:
d8:51:1e:bf:4b:f5:68:eb:67:7d:6e:bc:47:4a:eb:
2d:89:d6:06:73:18:da:ed:80:86:b6:56:c8:a9:9a:
44:ca:c4:d3:87:6b:1b:cc:c6:bb:6f:63:a2:35:1e:
64:70:9f:79:c0:8f:39:46:06:b0:95:5b:fc:11:1a:
22:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:4E:EF:A8:87:A6:FB:71:F0:00:6A:A5:1D:85:0F:E5:BE:BC:0C:4D
X509v3 Authority Key Identifier:
keyid:10:77:3F:32:D3:CB:4E:13:E4:3F:10:A3:DC:42:2F:1F:32:71:BF:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHc_MtPLThPkPxCj3EIvHzJxv7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/09cafd-68bc-41a2-8bab-80b84e4f20c9/1/Hk7vqIem-3HwAGqlHYUP5b68DE0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/09cafd-68bc-41a2-8bab-80b84e4f20c9/1/EHc_MtPLThPkPxCj3EIvHzJxv7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:4a40:2270::/44
Signature Algorithm: sha256WithRSAEncryption
9d:01:c4:ba:6d:31:a8:28:0f:e2:79:a2:d1:4a:56:98:1b:6b:
e9:ca:8d:07:f5:69:49:30:8b:40:3f:06:e5:0a:da:31:4f:0c:
e0:d4:9d:53:52:09:c7:da:e5:cb:88:10:d1:b3:3c:1c:1b:a6:
ad:d2:23:e3:a8:d1:7e:51:eb:16:e8:77:9b:96:74:b2:e2:37:
0e:a0:21:ca:34:a8:38:79:54:f2:94:f0:a2:3e:ef:5a:5e:c0:
40:52:3e:56:97:62:c5:9b:8f:d0:cd:f9:66:7a:fa:a0:97:c1:
c6:31:4d:97:a3:65:ee:41:5b:df:35:59:77:7b:af:c1:9a:c8:
97:61:7c:6d:2f:d9:35:85:9d:64:39:a5:1a:9f:25:cc:f4:d1:
ef:44:55:bd:09:3d:02:21:b9:06:99:83:da:3e:aa:5b:a4:ec:
16:3d:36:c7:46:e0:9c:d1:f1:1d:45:6e:31:3f:2a:37:39:9b:
e6:3d:43:3d:ed:36:10:24:39:f0:62:38:85:e0:df:75:78:3b:
e3:ba:17:03:3a:5d:50:26:fb:99:85:6b:b6:fb:ae:ba:ee:ab:
f1:2a:a0:3f:a7:3f:34:3a:0f:83:28:a0:07:d0:58:9c:54:e1:
1e:f2:bf:46:cf:4f:c1:56:97:ed:fe:02:1f:b2:00:9c:20:30:
e4:0e:42:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:23 2023 by rpki-client on console-ams.rpki-client.org