Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/hSyoMhpTJJ4-gXwfwLUQkmF12EE.roa
File: hSyoMhpTJJ4-gXwfwLUQkmF12EE.roa (raw, json)
Hash identifier: 1FTM6vpIQGEvQxdENCf3txn20zXPzciITEv7mohEdaU=
Subject key identifier: 85:2C:A8:32:1A:53:24:9E:3E:81:7C:1F:C0:B5:10:92:61:75:D8:41
Certificate issuer: /CN=0bac82804700ad36538bf86f34c073e971430da5
Certificate serial: 1828BE72
Authority key identifier: 0B:AC:82:80:47:00:AD:36:53:8B:F8:6F:34:C0:73:E9:71:43:0D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C6yCgEcArTZTi_hvNMBz6XFDDaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/hSyoMhpTJJ4-gXwfwLUQkmF12EE.roa
Signing time: Sat 01 Jan 2022 04:52:41 +0000
ROA not before: Sat 01 Jan 2022 04:52:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29216
IP address blocks: 2001:7fe::/33 maxlen: 33
2001:7fe::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 405323378 (0x1828be72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bac82804700ad36538bf86f34c073e971430da5
Validity
Not Before: Jan 1 04:52:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=852ca8321a53249e3e817c1fc0b510926175d841
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:3b:77:fd:45:9f:ba:17:3b:4d:86:4f:82:02:
7e:71:61:05:6c:0c:0e:13:fa:89:be:e8:3f:38:32:
c0:36:20:5b:55:27:56:5c:f2:d9:52:cd:a6:45:54:
3f:58:d7:df:f8:bf:a5:de:c7:6c:bc:91:b4:60:13:
b1:d9:72:87:14:d3:13:4c:b8:4c:5e:fe:b5:d5:26:
4e:0b:5a:5f:37:ad:13:9e:f5:6c:67:c0:bc:e2:be:
14:8d:14:76:c9:ed:f5:3c:de:5d:ee:60:79:6e:4f:
3b:73:4d:04:95:8d:e0:e8:75:16:61:6a:71:02:ff:
c0:55:c8:a0:21:14:51:f2:53:94:36:3a:91:66:c9:
ba:0a:b6:25:02:9e:fe:bd:05:71:73:f4:c9:8c:4e:
d4:9b:21:8b:cb:c4:3e:e9:4e:cf:ac:af:b1:eb:f4:
43:6b:e2:fd:be:4c:c9:37:b6:1b:ae:8c:be:8c:18:
c6:14:94:63:89:62:3a:b5:52:90:d9:9a:65:03:2d:
bf:59:64:27:6f:57:4f:1d:72:90:cb:e2:65:19:95:
4e:d3:64:af:31:dc:19:70:7d:43:7e:3e:d3:3d:db:
88:19:9a:80:49:bc:2a:c9:61:78:97:04:4b:97:43:
35:c2:4a:96:93:6a:7f:1d:80:ee:f0:fb:05:d1:7c:
32:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:2C:A8:32:1A:53:24:9E:3E:81:7C:1F:C0:B5:10:92:61:75:D8:41
X509v3 Authority Key Identifier:
keyid:0B:AC:82:80:47:00:AD:36:53:8B:F8:6F:34:C0:73:E9:71:43:0D:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C6yCgEcArTZTi_hvNMBz6XFDDaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/hSyoMhpTJJ4-gXwfwLUQkmF12EE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/C6yCgEcArTZTi_hvNMBz6XFDDaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:7fe::/32
Signature Algorithm: sha256WithRSAEncryption
91:0d:cd:d5:dc:8c:37:ad:29:d6:b0:9b:9e:33:e5:55:a4:da:
74:bc:4c:a3:a0:e1:b8:e9:9f:96:c4:e5:63:63:37:4b:2e:ed:
20:8c:a2:6e:74:3c:f7:39:7f:73:a4:16:de:26:cd:c4:30:79:
1c:68:80:2e:39:23:11:f8:1c:98:5b:0d:15:77:98:2e:0b:65:
79:f2:05:21:f9:cf:67:d8:7c:95:40:4f:ca:96:37:73:35:16:
b8:6f:1f:7d:8e:8f:89:08:54:8b:7b:8f:55:c3:b1:72:7b:08:
a1:4e:14:ef:57:c5:b2:b1:49:4a:ec:d7:8d:07:ac:98:42:b7:
f1:38:6e:0b:8a:ca:f4:da:b7:d2:6d:8a:38:09:6f:83:af:de:
f4:0c:85:35:2d:7c:c9:d6:af:49:e3:d8:af:78:6b:5d:19:d2:
01:c8:74:b1:12:b9:0a:f1:91:1c:fa:4e:04:22:1c:35:e6:a1:
98:ea:d4:ab:3d:1b:4b:b2:f2:73:23:bd:aa:6c:de:26:b7:ed:
12:83:2a:26:01:84:5e:d7:43:7a:69:3d:db:c9:c4:3a:16:d1:
d3:df:2a:69:de:49:dc:88:20:6b:fa:ac:49:86:17:b0:14:d6:
4d:0a:62:bc:3a:3f:9d:b7:7e:f5:1b:f2:f6:1f:8b:cd:8b:70:
d1:aa:23:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:40 2023 by rpki-client on console-ams.rpki-client.org