Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/deeb1f-1f35-4c61-ab30-cbfa17e326fb/1/IX8zeasCywom-JRnQAhvj2eI4yY.roa
File: IX8zeasCywom-JRnQAhvj2eI4yY.roa (raw, json)
Hash identifier: iOXDBJ+zV117yjNztFUuBlPgcfMdWrLBykPA0lADF2E=
Subject key identifier: 21:7F:33:79:AB:02:CB:0A:26:F8:94:67:40:08:6F:8F:67:88:E3:26
Certificate issuer: /CN=7b7645c8328f39afcdd079fa54a0ba3be78d4287
Certificate serial: 018340D750B9E4E5CF9805A48CD24762A334
Authority key identifier: 7B:76:45:C8:32:8F:39:AF:CD:D0:79:FA:54:A0:BA:3B:E7:8D:42:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e3ZFyDKPOa_N0Hn6VKC6O-eNQoc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/deeb1f-1f35-4c61-ab30-cbfa17e326fb/1/IX8zeasCywom-JRnQAhvj2eI4yY.roa
Signing time: Thu 15 Sep 2022 11:09:56 +0000
ROA not before: Thu 15 Sep 2022 11:09:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 2a11:1ac0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:40:d7:50:b9:e4:e5:cf:98:05:a4:8c:d2:47:62:a3:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b7645c8328f39afcdd079fa54a0ba3be78d4287
Validity
Not Before: Sep 15 11:09:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=217f3379ab02cb0a26f8946740086f8f6788e326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d3:be:26:d7:3f:5d:55:4f:8b:c5:bb:ff:b3:
09:e0:f6:dd:bc:1e:c2:9e:11:d3:7e:26:2d:8f:2a:
78:17:8b:6f:cb:da:1c:aa:76:c0:e4:84:f5:38:52:
eb:51:f3:62:cd:c9:28:dd:57:07:71:40:ef:71:5c:
97:ce:c9:a6:c1:fc:18:d8:5a:64:0e:3e:bf:d3:c6:
ea:9f:de:2c:c4:55:2d:16:61:97:a6:df:d6:8d:e1:
4b:80:f5:85:d0:6f:30:9c:34:f3:aa:b3:56:ac:68:
fa:c4:a1:ab:d4:e8:25:34:85:a1:6b:cb:9f:23:cb:
72:98:38:90:69:93:04:91:54:28:75:46:ad:5e:0e:
ba:67:36:33:e4:b1:83:f7:36:38:ed:9f:71:66:b6:
0f:1e:3d:d1:00:60:87:b4:dd:22:41:cd:fb:29:cd:
f4:f5:28:38:32:37:61:ec:34:14:26:0d:17:c3:65:
d6:0c:a3:5f:02:1a:cf:15:af:e5:5a:0a:8b:e3:5b:
3d:0b:88:98:1e:02:7a:67:bb:f6:f6:d7:df:23:31:
de:79:ca:01:03:9a:1d:d1:89:a3:6c:83:d8:9d:f4:
84:2c:2e:55:39:71:58:e2:34:cf:89:94:e5:50:6c:
86:a2:3d:61:f9:ce:a7:6c:41:02:fd:32:31:e1:0c:
dd:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:7F:33:79:AB:02:CB:0A:26:F8:94:67:40:08:6F:8F:67:88:E3:26
X509v3 Authority Key Identifier:
keyid:7B:76:45:C8:32:8F:39:AF:CD:D0:79:FA:54:A0:BA:3B:E7:8D:42:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3ZFyDKPOa_N0Hn6VKC6O-eNQoc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/deeb1f-1f35-4c61-ab30-cbfa17e326fb/1/IX8zeasCywom-JRnQAhvj2eI4yY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/deeb1f-1f35-4c61-ab30-cbfa17e326fb/1/e3ZFyDKPOa_N0Hn6VKC6O-eNQoc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:1ac0::/29
Signature Algorithm: sha256WithRSAEncryption
b2:aa:b4:0a:e9:54:4c:a6:03:12:e1:5c:ac:28:4c:db:4b:fc:
b0:b4:87:a5:76:33:5a:a2:02:67:da:5c:d0:7d:84:96:a4:83:
46:60:07:0d:25:06:ce:34:1a:8c:83:ea:fa:34:87:ed:79:a4:
e2:43:d2:53:2c:d7:ec:b6:e8:b5:94:69:56:0a:74:0e:f1:2d:
4f:bc:8c:c0:5b:88:9e:ad:7d:6d:bd:e8:71:08:87:1b:48:f7:
45:52:38:af:78:f6:73:ba:57:15:00:c8:be:74:de:91:9d:a3:
69:16:64:c6:aa:61:94:64:e1:23:d4:c3:9e:41:9a:cf:a5:58:
2a:32:ca:e1:ea:19:5f:51:10:13:bd:3c:1e:c6:65:64:0b:a9:
4a:8d:2d:4d:9a:f0:42:23:c8:fe:22:d0:bc:26:5e:e2:b0:06:
6b:d8:01:f6:93:b5:af:8f:8a:27:a0:9f:a0:e0:2a:f7:c6:30:
9f:2f:7a:51:bc:e9:38:d1:99:90:8f:b5:86:77:8e:f6:02:ad:
68:97:7b:a5:d1:26:4b:57:6a:85:0d:a3:d4:f4:14:f4:8c:f4:
8c:19:5d:0b:c5:89:5f:a6:bd:0c:16:99:e5:d3:22:70:5b:e0:
bd:2c:97:32:fa:ef:50:c9:80:78:89:d2:29:fe:0c:e2:c7:e5:
5a:23:ff:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:53 2023 by rpki-client on console-ams.rpki-client.org