Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/70YtLZUhFjdTnM7WtRp2RrcR54c.roa
File: 70YtLZUhFjdTnM7WtRp2RrcR54c.roa (raw, json)
Hash identifier: fbCFFn3QE8AfifivgxSXwdag8kvfs7QF/KKGe54RVFI=
Subject key identifier: EF:46:2D:2D:95:21:16:37:53:9C:CE:D6:B5:1A:76:46:B7:11:E7:87
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 0FDAFF4D
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/70YtLZUhFjdTnM7WtRp2RrcR54c.roa
Signing time: Sat 01 Jan 2022 14:59:38 +0000
ROA not before: Sat 01 Jan 2022 14:59:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31798
IP address blocks: 2a06:e881:3200::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 266010445 (0xfdaff4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 1 14:59:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ef462d2d95211637539cced6b51a7646b711e787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:76:76:13:ff:8b:b4:f5:8f:ef:d4:ab:33:60:
38:88:c5:97:70:1c:bd:e6:4b:05:15:aa:0f:d4:d4:
48:22:42:26:b9:7c:c4:91:56:01:7d:b1:33:06:dd:
b9:5e:2f:f7:12:f0:ba:62:77:4c:e2:04:51:9d:c6:
df:e5:f6:db:34:27:a1:6d:74:bc:ca:55:0d:25:ec:
ec:0f:b0:ea:77:88:14:cc:19:0a:7f:4f:a5:4f:24:
8a:36:fb:48:60:39:a5:d9:ee:5b:f7:68:c4:98:c6:
95:47:d4:8a:84:9c:82:8e:29:26:4b:cb:b9:0e:08:
9d:0b:14:3e:14:e6:50:d2:a4:2f:46:12:00:03:7d:
cd:39:38:bc:3c:bc:e5:6c:6e:61:92:8f:a4:7b:97:
56:f1:b3:c6:c5:de:05:6c:0b:9c:18:a1:ac:75:90:
a3:66:85:01:c6:d8:07:be:9f:02:df:af:c3:9f:5c:
77:a2:24:ae:d7:d2:ba:e6:57:94:75:5c:16:35:25:
bf:b4:bc:ca:2d:11:70:2f:2c:9c:2a:c6:29:aa:96:
c0:6e:d1:ce:b1:b4:36:a1:c4:a3:ed:4a:fc:4a:c6:
5b:82:6c:78:50:19:e2:2e:10:97:48:b4:7e:11:d5:
de:9b:0d:7a:3e:9c:80:a4:41:12:90:f1:25:28:46:
1d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:46:2D:2D:95:21:16:37:53:9C:CE:D6:B5:1A:76:46:B7:11:E7:87
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/70YtLZUhFjdTnM7WtRp2RrcR54c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:3200::/44
Signature Algorithm: sha256WithRSAEncryption
93:71:8b:2a:64:bc:27:97:6e:93:2e:d1:ea:4a:37:e4:22:fe:
88:66:6e:04:4f:f0:65:ef:be:9b:9c:f5:ed:92:36:36:0a:06:
73:fe:05:d8:68:bb:7c:b1:f5:e7:87:4a:cc:a3:22:b6:fe:30:
f6:1b:c5:d1:ec:ff:8d:bf:3b:93:e2:f5:3c:fb:41:86:64:03:
28:54:13:55:4e:1b:9a:7c:dd:83:8c:ce:46:d5:a7:b9:29:d2:
c9:57:c5:a8:bf:3f:24:fc:2b:e3:0c:7f:2a:20:86:d1:2c:d8:
9f:10:4c:c6:0a:80:a0:6f:b1:a4:d8:1e:9e:f4:01:bc:3c:07:
2c:80:7d:31:63:61:39:1a:89:31:ae:d0:62:18:36:df:12:10:
b2:e7:26:84:bf:39:be:f8:d1:c4:37:bf:17:56:6a:96:1e:aa:
e2:5c:b4:37:be:55:b5:d6:7f:22:27:aa:ee:51:1d:1d:14:13:
82:83:4c:fb:e3:51:87:2d:37:ea:37:5d:05:84:23:15:fd:13:
3a:b0:fc:64:16:ea:fc:85:35:2e:d9:da:db:32:7d:16:de:12:
7a:46:86:82:0a:d5:e7:6c:16:64:6b:4d:35:4b:31:52:4b:d6:
b9:60:42:12:0b:af:ce:d5:ce:37:01:dc:da:da:f4:da:e0:ce:
5a:b2:86:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:42 2023 by rpki-client on console-ams.rpki-client.org