Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/oMtbUvs5g44F7_S5L9iBGhCi3zw.roa
File: oMtbUvs5g44F7_S5L9iBGhCi3zw.roa (raw, json)
Hash identifier: pUb4Zz8C5957vx62LrAgsE22NAFFol8V0J+RoIJe8Mw=
Subject key identifier: A0:CB:5B:52:FB:39:83:8E:05:EF:F4:B9:2F:D8:81:1A:10:A2:DF:3C
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 0185310717C286D00823BA569B246A7569BA
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/oMtbUvs5g44F7_S5L9iBGhCi3zw.roa
Signing time: Tue 20 Dec 2022 19:33:46 +0000
ROA not before: Tue 20 Dec 2022 19:33:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200398
IP address blocks: 2a06:e881:9740::/42 maxlen: 48
2a06:e881:9720::/43 maxlen: 48
2a06:e881:9710::/44 maxlen: 48
2a06:e881:9780::/41 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:31:07:17:c2:86:d0:08:23:ba:56:9b:24:6a:75:69:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Dec 20 19:33:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0cb5b52fb39838e05eff4b92fd8811a10a2df3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:5c:4e:0b:7d:99:34:2e:26:77:17:b9:65:82:
9f:b9:16:bb:35:b6:82:f4:8a:41:6b:d6:ec:72:75:
21:cd:7e:0d:3e:16:e3:3e:31:2f:f9:77:50:25:72:
77:a5:63:83:f5:f5:35:ed:a7:4b:1f:ff:5f:df:48:
98:30:e0:5c:d5:64:fb:38:05:c0:23:a0:1b:a1:74:
d9:d4:17:f1:f7:5a:ec:7d:20:77:2e:16:0d:1c:f8:
e2:d6:15:2e:50:8d:48:3d:4c:04:a5:86:02:0e:ec:
0c:32:41:c3:92:ec:ea:a4:53:48:aa:15:d4:3f:5b:
74:b6:f2:92:b3:ac:b1:2b:a1:cf:fa:7f:f1:30:2a:
e0:8a:a1:f0:ff:4f:71:56:28:f3:53:49:a4:05:85:
6c:19:2b:0e:8f:fb:27:fc:27:bd:bc:93:bb:c6:bb:
f6:fd:5a:2e:31:34:c2:b2:ec:86:41:ae:25:76:03:
8c:01:24:40:98:3e:84:0e:1a:bd:d3:ad:d7:66:df:
79:64:dc:33:61:50:b4:8c:dc:39:52:28:df:03:bf:
73:83:4b:7f:89:b0:c8:f3:5e:d0:b6:0e:5c:17:75:
42:1f:67:81:06:bd:95:94:a8:7a:d2:3a:a9:0b:93:
9b:20:48:b7:51:c2:6c:c0:5b:a3:8c:96:ba:f6:7f:
8a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:CB:5B:52:FB:39:83:8E:05:EF:F4:B9:2F:D8:81:1A:10:A2:DF:3C
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/oMtbUvs5g44F7_S5L9iBGhCi3zw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:9710::-2a06:e881:97ff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
51:03:ca:fa:99:11:fc:56:e1:01:9e:83:9d:e5:12:2a:13:98:
6d:32:99:b6:13:e4:29:02:e5:20:d8:92:16:36:61:1b:f9:fa:
87:42:3c:43:aa:e4:bd:7f:67:61:20:7c:58:ee:97:8f:73:41:
11:e5:10:e1:f8:0e:8d:b3:2c:7e:aa:d6:5a:eb:b1:3a:82:c2:
a4:62:05:d8:1c:c5:5b:16:7e:bf:c0:8e:96:94:f5:8b:4a:2f:
9a:74:dc:7a:bb:08:ae:19:6b:b7:a7:3e:78:5f:79:65:e5:a0:
fd:09:4f:ae:e5:fc:90:5a:84:d7:90:d3:93:4d:06:65:48:a9:
8c:5a:46:aa:24:b6:a6:13:99:90:11:79:b9:9b:96:7c:a7:60:
03:1f:76:ca:f1:be:a0:65:d3:f0:4e:c0:0a:b8:70:59:08:fa:
4e:2a:7c:33:92:4b:70:24:e7:3a:d0:2a:3d:80:f2:04:0d:33:
29:43:61:40:fa:25:46:dc:45:81:45:15:91:bc:76:0f:bd:ee:
2d:e6:ea:09:05:a6:ea:05:fe:88:cb:27:5c:ce:62:a7:3d:46:
24:f8:2a:2f:dc:c2:c3:c5:8e:44:f9:05:ff:be:07:10:36:74:
1b:de:8e:96:d4:f7:77:1b:22:03:70:5d:ca:30:61:76:75:df:
a6:67:ab:7a
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:55 2023 by rpki-client on console-fra.rpki-client.org