Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/_xfs83vEqIJ0wbV5YTKASvUVe0Y.roa
File: _xfs83vEqIJ0wbV5YTKASvUVe0Y.roa (raw, json)
Hash identifier: ccZeHMUOy53qhSeXpZsheWzkxiMup5v4hL8KBp84pgo=
Subject key identifier: FF:17:EC:F3:7B:C4:A8:82:74:C1:B5:79:61:32:80:4A:F5:15:7B:46
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 0FEA44F4
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/_xfs83vEqIJ0wbV5YTKASvUVe0Y.roa
Signing time: Sat 01 Jan 2022 14:59:46 +0000
ROA not before: Sat 01 Jan 2022 14:59:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207036
IP address blocks: 2a06:e881:1600::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 267011316 (0xfea44f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 1 14:59:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff17ecf37bc4a88274c1b5796132804af5157b46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ba:44:ee:2c:cd:c4:64:e6:d7:0b:03:09:5f:
07:db:22:76:85:38:8e:71:2a:c2:b5:63:c8:10:db:
99:dd:a7:57:85:f1:c0:a8:38:2c:6a:08:ad:a0:fb:
57:5e:fc:8f:6d:08:32:e5:47:c0:cc:a8:ad:c1:82:
7a:27:91:4a:ed:ce:3d:63:13:17:98:e0:b3:49:e5:
a1:11:60:ac:eb:8f:9e:be:71:aa:58:ac:9d:d3:f5:
e5:3a:80:82:52:36:db:b0:38:5e:d3:df:01:11:30:
e7:f2:ab:45:42:1d:94:ea:e5:4c:25:ce:79:0c:e4:
d8:94:50:3a:b4:71:e4:6b:62:0f:c1:70:77:4d:23:
fd:f0:d4:af:d8:ca:ac:70:10:48:e0:48:41:07:7c:
0d:47:a9:0a:aa:71:8c:eb:04:63:6e:4f:0b:a3:a5:
32:75:1b:b3:64:db:28:7b:33:d9:93:98:3d:64:02:
5b:1b:8b:d8:df:d2:ff:2c:91:6b:a5:d5:9d:f1:07:
5d:6f:0c:a6:94:40:9a:76:4b:fe:35:4a:d6:25:a2:
1d:63:11:4d:d6:dc:d1:85:66:af:80:fe:e5:8e:82:
d4:c4:09:7f:34:c0:3d:1a:ed:b8:0c:ea:f8:f4:46:
d7:b5:10:84:12:f8:a0:27:3c:54:9d:a0:fc:51:2a:
cc:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:17:EC:F3:7B:C4:A8:82:74:C1:B5:79:61:32:80:4A:F5:15:7B:46
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/_xfs83vEqIJ0wbV5YTKASvUVe0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:1600::/44
Signature Algorithm: sha256WithRSAEncryption
1c:43:b8:9c:ae:dc:3b:d1:85:a3:84:d5:ed:01:57:23:5f:60:
6b:bd:e1:7e:fd:9c:35:7a:12:e5:1a:ea:54:0b:95:ba:c7:c2:
4b:54:2a:84:22:7d:93:db:8e:54:dd:06:fc:54:b4:26:d3:d7:
93:fd:d8:ef:f2:a2:73:e4:e8:82:ac:2d:a7:01:48:e8:65:12:
f0:a7:0c:31:8a:f8:77:55:f7:aa:fb:33:6e:a9:28:6a:39:72:
7f:60:b6:3a:c4:6b:94:e9:e1:fc:fc:ff:b9:9f:11:7c:a9:ac:
b4:00:97:bd:43:ca:64:86:35:ed:3c:45:58:b2:23:57:ca:f7:
5e:e0:62:3a:bb:f4:d2:65:4c:11:a2:39:a9:9c:05:74:94:7e:
dc:5c:5e:43:c9:bc:38:7b:34:ef:f7:6b:17:a8:7a:9c:7f:f1:
1c:79:c6:92:38:49:80:a1:88:12:ab:8b:52:e3:b6:5f:09:90:
60:ac:3d:a7:c5:77:5c:f8:2b:95:4c:9a:98:a0:68:db:6f:5e:
cc:ea:1b:17:cb:3f:60:86:49:65:5c:29:82:dd:a9:9f:85:d9:
39:63:7f:89:cb:82:00:a2:24:c2:60:fd:2b:c7:e1:d8:ad:f0:
23:73:a1:53:44:82:b8:ae:56:25:3a:3a:28:a9:0b:ac:11:14:
43:01:77:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:42 2023 by rpki-client on console-ams.rpki-client.org