Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/OIqUhiSClAUE8uuwm8Nk5QFjc4A.roa
File: OIqUhiSClAUE8uuwm8Nk5QFjc4A.roa (raw, json)
Hash identifier: agufAzqX0eodEoz2BmBWjZPrKHFxHJWpbZ3E6ZexC+4=
Subject key identifier: 38:8A:94:86:24:82:94:05:04:F2:EB:B0:9B:C3:64:E5:01:63:73:80
Certificate issuer: /CN=d673d849b7d5047376d57e6f796f0018b70b4506
Certificate serial: 089B700D
Authority key identifier: D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/OIqUhiSClAUE8uuwm8Nk5QFjc4A.roa
Signing time: Sat 01 Jan 2022 02:51:48 +0000
ROA not before: Sat 01 Jan 2022 02:51:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28848
IP address blocks: 2a01:190:15e9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144404493 (0x89b700d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d673d849b7d5047376d57e6f796f0018b70b4506
Validity
Not Before: Jan 1 02:51:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=388a94862482940504f2ebb09bc364e501637380
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:90:da:92:c7:04:23:9c:4f:4c:eb:46:fb:26:
3c:cb:11:f0:e1:18:70:9b:8b:7b:51:9e:d4:1d:a6:
96:80:49:7d:7c:0f:93:eb:81:39:29:22:9f:43:de:
e8:65:25:98:a6:75:db:01:31:de:63:bb:64:9d:07:
f5:20:82:c0:56:8d:7a:28:64:7d:2a:9b:1c:31:f8:
30:42:ac:9a:25:e9:41:f2:a1:69:e6:e1:ef:0e:2e:
aa:35:c0:a0:2e:c0:59:e7:6f:5a:3e:77:f6:5f:4a:
0f:3b:69:e9:82:03:8d:7e:1d:60:d9:c8:d2:3a:f2:
79:29:5f:7d:8d:e3:58:37:3b:01:f2:5b:df:3d:fb:
57:c0:56:2c:1f:60:88:b6:f0:65:6d:8e:25:b3:b6:
d6:c3:56:6c:d7:c9:47:a4:05:13:8e:b5:45:07:63:
98:91:f8:c3:cd:c5:b2:b9:1a:00:ff:3a:a5:d7:d8:
b8:86:c5:da:a2:f1:ee:01:a6:b5:8f:12:05:26:78:
c1:47:57:53:47:1e:a3:af:ee:b5:20:9b:e0:33:f7:
27:31:a1:17:ed:20:3c:b3:7e:22:f3:2b:85:71:03:
bb:c3:9b:47:c2:db:dd:bf:78:dc:4c:4f:05:48:35:
1f:82:00:51:42:81:ad:02:b4:09:69:8e:f9:d7:a6:
a1:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:8A:94:86:24:82:94:05:04:F2:EB:B0:9B:C3:64:E5:01:63:73:80
X509v3 Authority Key Identifier:
keyid:D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/OIqUhiSClAUE8uuwm8Nk5QFjc4A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/1nPYSbfVBHN21X5veW8AGLcLRQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:190:15e9::/48
Signature Algorithm: sha256WithRSAEncryption
3a:ed:8b:5f:9c:11:81:f6:fe:cc:d1:5c:ab:ca:d9:ce:db:15:
14:32:76:c7:c6:fb:7e:45:84:64:c2:85:f8:46:4a:60:38:13:
71:32:ad:e2:ff:2b:23:ed:e7:5d:1b:52:88:ad:68:5c:f0:1f:
a4:f3:91:c9:71:36:fa:09:cc:fd:56:1d:26:81:44:72:0c:82:
1e:89:cf:d2:f1:6c:b9:93:01:83:27:c2:6e:6a:3d:48:16:53:
14:24:72:51:5a:9b:9b:aa:be:c6:8e:52:1e:ee:5f:e2:f7:c7:
f7:44:2e:60:f1:2f:1b:c1:6c:ea:fb:01:25:24:67:04:28:10:
55:f2:c0:fe:1e:97:7a:1d:eb:da:ad:2e:30:a7:7d:b2:dd:e9:
de:e0:5f:6f:f4:21:af:b4:02:ea:d5:04:9f:39:e2:51:a8:28:
94:87:c2:13:c7:ad:0c:99:ce:a8:d8:e5:c1:04:8a:6b:2c:ae:
b5:7a:b6:4c:fa:17:ad:a6:42:fb:16:73:40:4c:0c:e3:e4:e5:
e3:8b:53:ab:cf:c8:b4:e8:86:5f:b7:12:cc:1e:97:3c:bc:17:
93:f6:c6:1f:58:20:c9:99:07:5f:b2:6a:bb:f9:57:25:20:53:
17:8e:1a:33:00:24:fe:f7:e3:cf:0a:26:ff:66:b1:c8:e7:16:
72:32:2b:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:49 2023 by rpki-client on console-fra.rpki-client.org