Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/ESwA7wXR-58Ug6llJFEbds6yErk.roa
File: ESwA7wXR-58Ug6llJFEbds6yErk.roa (raw, json)
Hash identifier: 3/eLec1CsGlS6lKUOYVOcAu2nnla8XwfVsHTICPwS4o=
Subject key identifier: 11:2C:00:EF:05:D1:FB:9F:14:83:A9:65:24:51:1B:76:CE:B2:12:B9
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 0FED032F
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/ESwA7wXR-58Ug6llJFEbds6yErk.roa
Signing time: Sat 01 Jan 2022 14:59:49 +0000
ROA not before: Sat 01 Jan 2022 14:59:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208340
IP address blocks: 2a06:e881:5608::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 267191087 (0xfed032f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 1 14:59:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=112c00ef05d1fb9f1483a96524511b76ceb212b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:28:50:cb:f0:96:8f:0e:ae:9c:21:e1:4d:f1:
af:2b:30:00:1b:ee:91:4e:50:d1:01:42:9e:0f:45:
2b:00:5a:f9:0f:f4:29:38:9b:0b:b5:f1:54:27:de:
01:c6:bd:e5:99:13:7d:9d:37:c2:11:db:da:fe:b0:
5a:de:a4:fa:95:cc:a6:b0:0f:ea:8e:5b:5f:a1:4e:
12:be:42:6c:da:50:20:10:2c:54:69:a5:e8:2e:2a:
50:b9:3b:37:0f:29:4c:6e:fd:e3:1b:78:f2:a4:48:
13:ae:a6:bc:39:a4:7f:87:83:19:e5:af:6c:58:94:
78:d2:1d:a2:66:c5:6f:e5:7f:83:63:50:16:bc:38:
3a:30:1f:ba:02:60:73:fd:c8:dd:f4:3b:56:7f:28:
6c:24:5e:7b:62:b5:83:66:c6:32:aa:c5:7e:53:98:
75:7f:56:3d:07:23:4b:9d:77:9c:9d:3f:62:4d:34:
3c:f4:da:de:a3:c1:89:95:90:6b:0c:a2:e2:02:b6:
49:01:0c:6d:44:cc:e2:ed:ba:61:09:f3:77:cf:b8:
58:44:36:a3:7d:96:bd:18:b9:94:21:59:f7:ed:ce:
6a:eb:cc:1e:89:e5:46:b1:f2:5b:93:61:ef:57:86:
74:1b:78:7f:07:3c:15:33:c8:a6:e2:b5:9b:25:fc:
60:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:2C:00:EF:05:D1:FB:9F:14:83:A9:65:24:51:1B:76:CE:B2:12:B9
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/ESwA7wXR-58Ug6llJFEbds6yErk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:5608::/48
Signature Algorithm: sha256WithRSAEncryption
68:30:d0:47:bc:5a:27:b7:c0:08:fd:57:30:83:a6:67:ce:ba:
9b:41:15:28:b6:de:1c:31:ec:76:b8:0f:5c:e7:1f:a2:fe:35:
23:4d:5c:fa:03:8d:eb:97:93:28:3b:4f:4f:8f:51:3d:b1:ea:
64:6b:f6:de:d6:9e:26:b5:83:6f:7f:e1:8a:ed:c8:04:75:bb:
35:0e:a0:95:d4:ff:a0:51:f7:45:3e:d5:fe:b8:cd:68:e0:d8:
9e:8e:8e:a3:ca:6a:55:fc:2a:06:bd:e1:e5:b0:8e:af:fc:75:
5a:9b:e1:65:87:37:57:61:61:d1:c8:cc:92:fd:ca:44:96:e9:
9d:21:a9:1d:6d:53:6d:6c:76:1b:e4:23:97:c2:06:f6:94:10:
f2:4a:f4:2e:f2:69:16:e0:d9:19:73:cc:b3:59:8c:ea:09:0b:
04:3d:22:95:e0:cc:b0:b8:b4:ae:56:0b:61:ed:10:6d:73:1a:
04:7c:ff:c5:38:75:ce:80:dc:bb:92:ec:46:0a:9b:6d:5b:ba:
a9:b5:16:d6:bf:a2:65:34:38:66:2c:d4:2b:19:b6:df:71:ff:
ef:83:ee:9f:a9:ae:24:90:fe:95:4c:5e:68:ae:25:7f:97:71:
94:15:d2:97:95:47:ee:7f:a9:a1:0c:eb:e8:48:a4:a1:44:ee:
b0:4c:93:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:42 2023 by rpki-client on console-ams.rpki-client.org