Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/SOi0cS3-P0ZzbVbhaTn1f0yI8AA.roa
File: SOi0cS3-P0ZzbVbhaTn1f0yI8AA.roa (raw, json)
Hash identifier: 3bkqAdqpqZmpB0Rp02OGphNb4OcPAhBMGf1VVq723Z4=
Subject key identifier: 48:E8:B4:71:2D:FE:3F:46:73:6D:56:E1:69:39:F5:7F:4C:88:F0:00
Certificate issuer: /CN=a15237c39a325aa309b69e66fe09237da1ad0d2b
Certificate serial: 01856376B3A1CA84670F5F78F6BFC67BB0DA
Authority key identifier: A1:52:37:C3:9A:32:5A:A3:09:B6:9E:66:FE:09:23:7D:A1:AD:0D:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oVI3w5oyWqMJtp5m_gkjfaGtDSs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/SOi0cS3-P0ZzbVbhaTn1f0yI8AA.roa
Signing time: Fri 30 Dec 2022 14:36:41 +0000
ROA not before: Fri 30 Dec 2022 14:36:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200260
IP address blocks: 2a13:75c1:100::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:63:76:b3:a1:ca:84:67:0f:5f:78:f6:bf:c6:7b:b0:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a15237c39a325aa309b69e66fe09237da1ad0d2b
Validity
Not Before: Dec 30 14:36:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48e8b4712dfe3f46736d56e16939f57f4c88f000
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:39:a9:2e:66:d0:f6:ca:b7:ce:e5:81:0e:80:
1b:97:54:3b:16:43:8b:83:63:00:ae:41:42:60:41:
37:d9:fc:de:5c:a4:6b:07:7b:de:b8:ac:5f:cc:a2:
2c:19:71:ed:5a:99:cc:e1:d7:b9:15:e9:48:7b:49:
bd:9b:ab:05:60:b6:b3:64:5a:51:dd:4c:b3:b0:cc:
e0:9b:00:4e:de:8a:22:41:2b:67:36:46:83:1e:c4:
03:46:bf:07:78:a1:6f:76:36:d1:05:8d:45:5a:13:
ce:c3:69:8c:21:f3:49:0b:15:40:da:65:38:b1:0c:
e3:fa:6d:2f:84:ef:73:57:de:0e:fa:79:39:64:b5:
68:6c:91:1b:0f:53:31:fe:aa:3b:a0:79:e4:15:5e:
66:61:25:da:3a:c6:83:a0:21:2d:0b:bb:67:a3:a1:
9d:b4:6c:d7:af:07:5d:c2:a5:5f:43:88:86:79:0e:
26:47:43:a6:95:9c:36:d6:e3:a2:7b:a8:25:a9:d6:
36:a5:1f:4c:5b:b2:79:c7:84:7c:3d:4e:9d:3a:2c:
6c:f6:8c:f6:15:eb:34:75:14:c7:83:bd:0d:09:74:
e1:ed:f7:24:37:8c:68:2f:3a:50:d5:75:7d:0f:cb:
99:12:39:2a:29:b2:3d:d2:61:46:0f:90:13:69:8d:
1a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:E8:B4:71:2D:FE:3F:46:73:6D:56:E1:69:39:F5:7F:4C:88:F0:00
X509v3 Authority Key Identifier:
keyid:A1:52:37:C3:9A:32:5A:A3:09:B6:9E:66:FE:09:23:7D:A1:AD:0D:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oVI3w5oyWqMJtp5m_gkjfaGtDSs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/SOi0cS3-P0ZzbVbhaTn1f0yI8AA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/oVI3w5oyWqMJtp5m_gkjfaGtDSs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:75c1:100::/40
Signature Algorithm: sha256WithRSAEncryption
2a:92:6d:cc:d6:89:61:36:42:1a:f0:53:2e:05:a2:09:d0:1d:
6e:19:bd:80:21:ff:df:03:ad:82:2b:3e:cf:85:69:17:51:58:
30:5b:da:06:71:d3:a3:a0:b2:e1:5a:44:84:48:23:bc:0f:62:
04:74:db:60:3c:88:53:62:03:c2:3d:3a:85:88:33:76:31:2e:
b0:29:98:3b:eb:83:51:67:10:d3:f3:4e:14:31:67:e8:bc:5b:
fc:d2:50:34:e6:6c:74:22:c5:30:6d:23:b4:ac:c2:1d:4c:b0:
2f:ff:f2:af:76:46:d9:15:3c:e1:ca:b9:ac:1b:11:58:ce:30:
2d:6b:e2:55:86:7c:88:69:83:e5:27:3e:3a:5e:d1:6e:b1:55:
b9:53:b7:32:bd:b2:28:87:a8:fc:01:d0:82:94:dc:ac:46:53:
b5:bc:09:84:a8:9b:00:04:4f:c3:e2:06:4a:d7:77:c2:02:0b:
cb:63:5f:d3:16:08:11:a6:aa:34:47:13:ec:11:bb:03:e6:30:
d5:7a:45:c1:43:86:84:4a:f4:92:f6:7d:35:ac:0b:f3:88:58:
a0:96:c8:00:fb:ce:a9:55:98:dc:89:be:64:5b:50:cb:07:83:
db:be:c1:c8:92:75:66:76:4a:21:f9:ec:1d:e7:91:5b:89:80:
eb:88:4c:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:21 2024 by rpki-client on console-ams.rpki-client.org