Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/Izo02W2z5utrcyHu88CTOpuYECI.roa
File: Izo02W2z5utrcyHu88CTOpuYECI.roa (raw, json)
Hash identifier: riQe7+9kzRsygGWdFOSFJVoUtO60PWPKe8+MenSBOkc=
Subject key identifier: 23:3A:34:D9:6D:B3:E6:EB:6B:73:21:EE:F3:C0:93:3A:9B:98:10:22
Certificate issuer: /CN=827603a93bca31b018f511f6d4b0b7546e963362
Certificate serial: 01852125FA44DACABD616D1F3E1DE0460A33
Authority key identifier: 82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/Izo02W2z5utrcyHu88CTOpuYECI.roa
Signing time: Sat 17 Dec 2022 17:33:34 +0000
ROA not before: Sat 17 Dec 2022 17:33:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 2a10:12c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:21:25:fa:44:da:ca:bd:61:6d:1f:3e:1d:e0:46:0a:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827603a93bca31b018f511f6d4b0b7546e963362
Validity
Not Before: Dec 17 17:33:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=233a34d96db3e6eb6b7321eef3c0933a9b981022
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:7a:f9:56:f1:b7:a2:03:f0:08:93:b5:3c:ac:
ac:fd:81:2a:66:8a:dc:cd:bb:b2:ad:0c:53:cc:87:
1d:ab:49:6a:ee:4b:9b:7a:12:0b:3e:f9:00:43:15:
e3:0a:e5:1f:46:0b:49:81:ac:6f:01:6a:ba:68:a1:
5c:5d:16:4c:92:b8:19:d4:bd:55:9a:d2:79:fd:db:
54:46:3a:ac:db:43:92:de:0b:0f:83:4a:d9:c6:c3:
43:a0:98:b0:26:f8:ab:d9:6a:f2:ab:9e:e3:90:12:
67:c0:51:31:43:b2:49:0f:81:96:57:5f:f1:6c:af:
fb:12:cf:f6:3a:6b:18:6b:60:9b:02:6f:f7:a5:40:
e2:77:02:e0:eb:2c:f0:0c:ba:e7:30:43:9a:67:e1:
68:33:48:e3:ee:22:d7:64:6d:3a:37:b3:89:c5:54:
e2:e8:17:70:ba:ca:39:71:a8:eb:24:88:6a:d9:e6:
97:e4:0a:b3:88:ae:ef:b8:11:99:9f:cf:4e:91:45:
c8:07:0a:98:73:9e:38:23:e4:77:09:a8:0c:52:5c:
95:f4:82:ee:b2:15:ad:1b:a6:68:4a:c6:b7:3d:54:
de:ea:d3:28:53:da:e4:5a:c7:2d:5e:56:3a:9d:2a:
1f:d3:a5:b7:6b:43:1e:1e:d2:c7:a2:02:a5:0a:ad:
0f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:3A:34:D9:6D:B3:E6:EB:6B:73:21:EE:F3:C0:93:3A:9B:98:10:22
X509v3 Authority Key Identifier:
keyid:82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/Izo02W2z5utrcyHu88CTOpuYECI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:12c0::/29
Signature Algorithm: sha256WithRSAEncryption
26:09:84:b9:6a:87:32:fe:6c:d8:ef:e7:5a:4a:36:0f:22:11:
72:34:2e:2d:44:8e:8c:cf:ea:5e:22:bd:cd:75:cf:3c:05:f5:
83:1e:00:d7:ec:3e:d1:14:f8:91:e9:0e:39:68:d4:25:c4:fb:
b9:4d:99:71:da:32:8e:82:56:d8:46:3c:5a:a5:62:4e:28:d8:
4e:a6:fe:df:65:35:88:20:da:98:c5:44:42:42:8f:3d:0d:04:
e9:2f:e6:e5:3d:ab:ae:ea:f6:7d:0d:67:60:8a:3a:b1:ad:b7:
13:09:71:92:b9:63:f2:ab:92:49:15:63:68:88:7b:28:cb:06:
e3:f6:bc:55:6d:3e:89:4f:a3:15:a9:39:aa:39:fe:dc:43:82:
01:51:95:24:64:e8:b8:f0:e3:c3:c3:ba:c8:ab:c5:5d:20:45:
9f:62:d9:c8:7d:e5:35:88:20:d7:a2:63:d4:ac:ec:ea:2e:85:
c4:a9:83:0f:dc:f7:7f:ed:6f:8c:19:db:87:8e:3e:be:0b:f7:
c9:65:13:39:6d:f7:ed:54:f6:cc:27:42:da:2b:7d:14:c1:0a:
dd:ce:34:12:66:56:1e:c4:ab:c2:8b:71:5a:74:44:db:31:06:
d2:f8:c3:e9:89:9e:d5:56:dc:06:a5:04:59:8d:d8:e0:22:13:
7a:b7:d8:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:44 2023 by rpki-client on console-ams.rpki-client.org