Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/dUm6_ZnUi-mFc3Vba8JL9dbTsPo.roa
File: dUm6_ZnUi-mFc3Vba8JL9dbTsPo.roa (raw, json)
Hash identifier: pBFb7qhUNQ5hUJ5FKcXTLZJ3+VXhrZc/yKZLjDqaI9U=
Subject key identifier: 75:49:BA:FD:99:D4:8B:E9:85:73:75:5B:6B:C2:4B:F5:D6:D3:B0:FA
Certificate issuer: /CN=827603a93bca31b018f511f6d4b0b7546e963362
Certificate serial: 098BBC66
Authority key identifier: 82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/dUm6_ZnUi-mFc3Vba8JL9dbTsPo.roa
Signing time: Tue 07 Jun 2022 14:02:07 +0000
ROA not before: Tue 07 Jun 2022 14:02:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 10753
IP address blocks: 2a0e:2b03::/32 maxlen: 32
2a0d:4180::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160152678 (0x98bbc66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827603a93bca31b018f511f6d4b0b7546e963362
Validity
Not Before: Jun 7 14:02:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7549bafd99d48be98573755b6bc24bf5d6d3b0fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:07:8e:18:06:1c:3a:39:bb:58:97:6e:d2:14:
5c:54:47:28:11:29:89:0c:46:21:05:38:92:81:97:
7a:de:48:a6:47:fa:ed:27:60:94:2d:c0:b3:a8:a4:
8e:be:7b:e2:02:63:d7:fe:aa:47:09:c8:cf:21:50:
8b:eb:ac:2f:45:4c:94:a7:85:01:90:17:b3:50:5e:
26:c3:d9:b7:07:e0:9b:3c:be:47:d1:86:b5:98:01:
c1:92:9b:3c:63:80:19:b6:48:7d:f2:d9:b9:69:20:
6b:ae:dc:09:c3:78:5d:7f:f5:41:0f:b4:71:4a:bb:
08:87:7a:2b:4e:52:dc:c6:ef:24:1d:43:9f:02:b7:
b0:84:73:8f:09:93:48:55:a1:b4:80:88:ea:c5:e4:
23:67:d8:e1:27:12:0f:27:21:75:7b:b7:a6:ab:f5:
22:7a:cc:cc:19:70:be:32:1e:b5:b9:37:61:ab:9c:
25:6b:33:35:c9:cb:d9:ff:6b:13:bd:34:33:6b:1d:
0e:62:7c:95:1c:8e:fc:a6:0b:b3:27:0d:b5:06:0c:
c8:73:b5:f3:51:ad:65:e6:9b:ca:8a:87:97:17:2c:
84:5b:ce:e6:1f:b1:bf:e8:71:96:79:02:30:af:0e:
f1:55:33:a0:c5:76:39:c7:bf:7a:87:95:36:54:61:
ff:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:49:BA:FD:99:D4:8B:E9:85:73:75:5B:6B:C2:4B:F5:D6:D3:B0:FA
X509v3 Authority Key Identifier:
keyid:82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/dUm6_ZnUi-mFc3Vba8JL9dbTsPo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:4180::/32
2a0e:2b03::/32
Signature Algorithm: sha256WithRSAEncryption
44:af:cc:a5:b9:a1:a6:98:25:5a:2e:f6:d9:74:24:b9:69:12:
59:f3:e5:03:7f:b2:93:18:05:6c:03:85:50:aa:88:ee:06:fc:
a3:5a:81:cb:c0:47:2f:9b:1a:dc:10:b7:d7:f9:ae:f3:a0:23:
df:2a:a3:a7:55:7b:37:a2:4f:49:df:63:20:5b:ab:c5:ca:c0:
e8:56:d3:f7:9a:a1:e9:04:a1:33:c7:a7:19:06:8b:48:88:82:
52:2a:1e:9d:0e:05:8e:27:96:5f:a4:72:e0:1e:f3:cb:a7:13:
81:ba:09:56:51:d0:35:e0:8d:48:84:f5:9d:fe:9e:3f:07:3f:
5e:dd:8c:2a:10:44:36:58:40:13:cf:93:3a:5e:c7:c5:66:01:
89:d6:87:1e:1d:c6:c6:72:fc:b0:1d:8f:39:54:c7:d1:51:90:
bc:45:03:d2:88:1f:0a:49:36:25:8e:e1:fe:b9:f2:9a:7b:8c:
2c:d6:5e:47:1b:f2:f3:86:19:a1:0a:fc:45:1d:9a:7d:87:8e:
0e:84:7a:9d:d3:08:00:f6:1d:17:95:c1:ca:cb:03:ca:9b:a4:
54:43:41:b1:05:cb:75:9a:1e:0d:22:d8:bd:aa:70:92:78:c7:
40:36:95:f3:8e:c8:cc:2f:2a:a3:78:36:cf:f6:4e:92:da:77:
a8:6e:8d:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:44 2023 by rpki-client on console-ams.rpki-client.org