Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/HXCjjiC-qwGo1FHsgwazKKtI3gA.roa
File: HXCjjiC-qwGo1FHsgwazKKtI3gA.roa (raw, json)
Hash identifier: lHm0U6gyvF2g6gqlKG3gl4cLF4f4Gilz+SQ3/6lWlIs=
Subject key identifier: 1D:70:A3:8E:20:BE:AB:01:A8:D4:51:EC:83:06:B3:28:AB:48:DE:00
Certificate issuer: /CN=827603a93bca31b018f511f6d4b0b7546e963362
Certificate serial: 080B1635
Authority key identifier: 82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/HXCjjiC-qwGo1FHsgwazKKtI3gA.roa
Signing time: Tue 11 Jan 2022 16:49:00 +0000
ROA not before: Tue 11 Jan 2022 16:49:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210662
IP address blocks: 2a0d:e0c0::/29 maxlen: 29
2a09:7240::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134944309 (0x80b1635)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827603a93bca31b018f511f6d4b0b7546e963362
Validity
Not Before: Jan 11 16:49:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d70a38e20beab01a8d451ec8306b328ab48de00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d5:09:43:5c:aa:30:1b:2b:0c:06:7b:78:8d:
ac:77:5e:39:5c:33:19:c2:e1:d2:10:96:8c:d3:ad:
25:8c:71:57:48:78:4e:11:4f:96:70:e4:98:93:c4:
a8:54:27:9a:ce:e6:d5:36:3e:b4:f2:01:d5:79:e5:
dd:87:93:21:e8:16:6e:64:c3:3a:55:d2:f2:77:ae:
f6:bc:1f:51:62:a8:4f:0a:38:75:26:a0:fe:9c:1d:
32:d9:03:4e:b4:60:4e:d0:a0:4f:06:91:2f:3c:2c:
03:f9:d6:26:ca:3e:f4:92:0f:21:a3:ca:7f:06:bd:
c0:dd:69:ea:36:29:f7:3a:fa:ac:59:38:d7:68:7d:
3a:66:75:a9:63:c4:2b:ca:6e:8c:24:b8:28:66:2b:
32:73:34:86:b2:28:13:94:d3:74:f3:97:dd:a1:33:
04:96:ed:bf:ca:06:3b:be:9e:88:06:65:51:9d:9f:
68:29:e5:c5:f0:89:ed:ff:ba:69:f8:5c:f2:1d:cf:
53:a4:60:89:55:d3:d7:a8:fa:12:e5:77:42:fe:34:
34:41:14:97:cb:d2:3c:0f:0d:9b:04:17:50:1b:10:
de:0b:05:97:92:82:24:84:4e:42:28:98:20:28:8d:
63:23:22:85:8a:38:bb:45:6a:32:fc:00:c5:4b:97:
02:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:70:A3:8E:20:BE:AB:01:A8:D4:51:EC:83:06:B3:28:AB:48:DE:00
X509v3 Authority Key Identifier:
keyid:82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/HXCjjiC-qwGo1FHsgwazKKtI3gA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:7240::/29
2a0d:e0c0::/29
Signature Algorithm: sha256WithRSAEncryption
39:a9:82:10:c5:cb:46:38:a2:cb:07:da:8e:ca:8b:b8:d8:7f:
4e:2a:8c:42:8b:7a:d0:25:44:8b:fa:bd:69:73:b6:47:9c:60:
d8:8a:82:01:10:fe:fb:16:01:86:1d:77:a5:e8:01:7a:8f:44:
dd:6f:f6:e5:bd:eb:54:e9:0e:3a:0b:58:61:26:8e:5d:fb:fb:
83:1e:c3:aa:08:7d:91:fc:ca:9c:55:6a:b7:dc:0a:60:7d:36:
75:a0:8c:e8:0a:fa:6a:bb:75:7e:05:be:2e:df:13:fd:c9:ff:
84:97:6a:ea:c6:d1:3a:45:83:45:cb:77:02:b1:d4:f7:c1:a3:
18:d2:3f:26:cf:b5:2b:02:f2:b1:fe:ad:41:c3:7a:d1:52:b8:
14:47:c3:9f:0c:b5:37:69:72:3a:74:0b:e2:3c:dc:e4:98:1d:
d6:0b:5b:a4:98:46:35:5a:2b:00:3d:46:35:52:2e:a8:f2:69:
dc:5a:92:79:3d:20:f4:1e:5d:88:94:50:49:31:17:b5:67:2d:
39:ac:0e:4b:14:bf:b4:81:70:bc:dd:c1:f2:4b:69:b1:64:fc:
0f:05:16:23:24:ad:7e:a3:67:a8:07:d9:e5:74:13:59:51:23:
bd:16:2f:49:7a:65:f5:f5:73:80:ab:79:1b:ba:4d:f2:5e:74:
8e:18:b6:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:44 2023 by rpki-client on console-ams.rpki-client.org