Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/oHA3-gztz8oDDwkXelpW6Yyu4jQ.roa
File: oHA3-gztz8oDDwkXelpW6Yyu4jQ.roa (raw, json)
Hash identifier: 7Mem0hxZhg3zKU558/4pCMvbepLAbqYzLO/Vl7aIWNQ=
Subject key identifier: A0:70:37:FA:0C:ED:CF:CA:03:0F:09:17:7A:5A:56:E9:8C:AE:E2:34
Certificate issuer: /CN=0bac82804700ad36538bf86f34c073e971430da5
Certificate serial: 182AA066
Authority key identifier: 0B:AC:82:80:47:00:AD:36:53:8B:F8:6F:34:C0:73:E9:71:43:0D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C6yCgEcArTZTi_hvNMBz6XFDDaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/oHA3-gztz8oDDwkXelpW6Yyu4jQ.roa
Signing time: Sat 01 Jan 2022 04:52:42 +0000
ROA not before: Sat 01 Jan 2022 04:52:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39870
IP address blocks: 2001:67c:2550::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 405446758 (0x182aa066)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bac82804700ad36538bf86f34c073e971430da5
Validity
Not Before: Jan 1 04:52:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a07037fa0cedcfca030f09177a5a56e98caee234
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b2:ba:41:8a:2f:2a:e8:86:9a:ae:6f:51:68:
f0:69:81:5e:35:fe:46:5f:e6:26:f4:be:48:64:95:
57:65:db:c3:d4:a2:35:3d:46:f8:ff:ec:44:8d:de:
d5:a9:80:9d:fa:46:6a:de:93:09:97:8e:d5:01:00:
e3:e8:f5:6c:24:77:b6:c0:61:5b:53:59:7e:90:21:
61:60:f8:61:61:c7:15:f3:d8:f0:a5:60:57:73:84:
02:e4:b6:d6:88:55:69:53:56:2c:c3:dc:0a:48:47:
2c:92:1c:93:ef:0e:f3:e4:c0:e0:fa:69:65:24:c3:
50:db:b7:6c:41:b5:06:6c:91:14:2c:85:39:40:b2:
25:7e:08:9d:0b:5b:00:72:f4:61:61:2c:e9:d6:ab:
b8:eb:75:50:73:dd:e9:9a:9c:b3:53:55:d3:42:f1:
c0:bc:bf:f5:60:9b:9e:d8:7c:da:e2:c6:d9:e2:14:
bb:54:69:51:b2:40:87:fb:4f:05:e9:82:21:2e:c3:
ba:35:3a:93:23:ca:22:22:bf:86:02:85:a7:ad:fe:
bd:e0:cf:9d:26:2d:1a:67:75:ae:bd:60:06:48:d2:
f8:9f:fa:aa:57:fd:60:c4:1d:3d:ac:0b:20:2e:9f:
f7:2a:ab:e1:c0:87:a0:20:ce:df:7f:2a:53:36:bf:
d4:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:70:37:FA:0C:ED:CF:CA:03:0F:09:17:7A:5A:56:E9:8C:AE:E2:34
X509v3 Authority Key Identifier:
keyid:0B:AC:82:80:47:00:AD:36:53:8B:F8:6F:34:C0:73:E9:71:43:0D:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C6yCgEcArTZTi_hvNMBz6XFDDaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/oHA3-gztz8oDDwkXelpW6Yyu4jQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/C6yCgEcArTZTi_hvNMBz6XFDDaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2550::/48
Signature Algorithm: sha256WithRSAEncryption
7a:80:d2:99:f2:11:bd:40:3f:97:8b:a9:26:37:23:7b:e2:1b:
19:00:22:ea:03:33:10:01:3f:17:f5:d2:62:58:f8:1b:05:66:
59:06:a6:ca:86:75:be:f8:1b:15:09:d7:6f:a5:a1:e7:ca:25:
6a:0d:cd:9b:d5:ad:4a:21:ff:8d:c8:b7:f6:08:5b:f7:a6:90:
91:1d:6e:b3:14:87:5e:89:b7:05:e6:5f:f4:88:0a:4c:c5:0a:
33:6f:6d:9a:79:1e:46:66:6b:96:b1:ca:90:07:99:52:ee:a4:
42:0a:64:b5:65:bc:97:cb:67:fa:f6:8f:31:d2:67:97:c0:f6:
a2:99:ed:35:f8:00:4b:8d:18:19:d6:53:47:56:b9:bb:ca:39:
b2:54:41:bc:16:b4:9d:34:39:45:ad:46:67:8d:f6:6b:36:76:
1e:ab:f2:c7:0b:1d:6b:0d:ac:18:25:ec:d2:fb:92:90:d9:03:
3b:9e:f6:c3:52:12:c7:12:ea:7b:77:b6:22:79:71:97:63:e5:
87:5f:30:fb:f6:f5:81:79:ac:13:17:22:99:c3:80:8e:b5:1b:
75:f5:a3:6e:bb:97:5a:ae:09:5c:a7:c3:c0:9f:21:ae:66:67:
ec:4c:0f:bf:c5:90:17:8c:cb:e4:97:75:7e:7b:e4:03:90:31:
03:c1:80:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:40 2023 by rpki-client on console-ams.rpki-client.org