Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/LqK0Z6MwUQdEmCKlyU5Xn8bThiw.roa
File: LqK0Z6MwUQdEmCKlyU5Xn8bThiw.roa (raw, json)
Hash identifier: Cc+RoGuPwayAyRnqcLR0+89BU287Btwkq3/NKUUMe5U=
Subject key identifier: 2E:A2:B4:67:A3:30:51:07:44:98:22:A5:C9:4E:57:9F:C6:D3:86:2C
Certificate issuer: /CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Certificate serial: 01851338E1893761E92F8E415CB3A4FDEE67
Authority key identifier: 37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/LqK0Z6MwUQdEmCKlyU5Xn8bThiw.roa
Signing time: Thu 15 Dec 2022 00:39:32 +0000
ROA not before: Thu 15 Dec 2022 00:39:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212008
IP address blocks: 2a0e:46c4:2300::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:13:38:e1:89:37:61:e9:2f:8e:41:5c:b3:a4:fd:ee:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Validity
Not Before: Dec 15 00:39:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ea2b467a3305107449822a5c94e579fc6d3862c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:85:46:34:2f:0e:77:9f:f4:44:3a:11:ff:a0:
c7:a8:65:5d:ed:20:4f:97:e0:ac:ae:f0:61:cb:54:
24:9b:cc:27:ac:a4:5e:75:d3:6b:b6:ec:ce:0b:b8:
7f:80:ac:4c:d6:7f:df:48:9d:57:ca:24:9c:84:d1:
0f:ca:3d:bb:06:ba:d3:be:7f:8b:cb:0e:2b:36:4f:
66:97:9d:36:09:ef:15:75:97:cb:77:86:58:7c:8b:
9d:86:35:4c:6c:4a:4e:03:18:89:be:cf:8c:9e:ce:
30:ad:d9:77:64:11:0a:e7:63:cc:12:9f:00:ab:cb:
a8:f5:4a:7e:60:97:5d:b1:a3:5f:a1:3c:2f:ee:83:
b7:5a:57:56:85:2e:13:32:78:b3:73:d5:7c:a3:5a:
8b:b4:4c:78:1a:0c:9b:25:4a:a8:8d:e0:7d:e3:32:
91:9a:c1:da:fa:b5:a3:91:b2:0d:6a:f4:62:d9:67:
ea:c1:7e:ce:1f:7d:88:1a:0c:7f:40:db:9e:66:02:
52:87:21:07:25:d6:1a:ce:7d:65:45:ff:52:5f:b0:
a1:71:91:23:7e:d6:fe:33:bd:01:b0:1d:b2:56:8d:
70:7b:55:cb:40:00:74:17:f6:73:e0:be:df:93:8c:
ab:a6:d3:69:94:7b:0c:ea:97:95:58:61:34:8c:74:
02:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:A2:B4:67:A3:30:51:07:44:98:22:A5:C9:4E:57:9F:C6:D3:86:2C
X509v3 Authority Key Identifier:
keyid:37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/LqK0Z6MwUQdEmCKlyU5Xn8bThiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:46c4:2300::/40
Signature Algorithm: sha256WithRSAEncryption
2b:b0:0b:a6:ef:48:52:b4:8e:92:6b:54:e3:e7:74:7b:f2:61:
52:e8:f2:cd:10:a5:80:c4:4f:6b:03:54:60:6e:db:d2:86:ca:
ca:01:97:2c:84:22:f7:d6:f6:1c:b9:15:f4:e8:89:91:4a:46:
f3:05:a5:44:98:1a:a3:28:10:66:96:9a:02:17:0d:fe:63:bb:
d6:60:e4:ca:10:28:0b:e4:fe:56:28:0b:50:56:4b:dc:71:22:
77:59:98:89:3a:cc:76:7c:ec:e8:07:55:e2:e1:09:60:a0:83:
04:71:ba:ba:e5:31:ca:3f:87:03:65:a5:f9:a8:4d:b8:76:4c:
cd:ac:0f:04:78:4f:81:b7:f3:16:b8:2b:f0:b2:e9:1a:cc:03:
d1:29:bb:aa:a3:6f:e4:48:35:81:15:0e:d2:83:40:0b:56:e3:
f2:c5:66:04:d4:fc:17:66:cc:67:d3:0d:70:99:ea:a2:e4:78:
c9:77:83:78:81:56:ba:8d:a7:7e:09:ec:08:95:b8:d4:ba:27:
26:73:8c:05:bb:62:bd:93:22:2e:38:98:c5:2b:80:a4:e5:80:
8b:36:9e:d4:53:21:09:3b:48:7d:ed:e8:e0:2b:c6:5a:08:a4:
d9:2f:2c:be:2a:d3:8d:4f:be:f0:c3:29:cf:d6:c2:b9:71:36:
ec:a9:9b:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:09 2023 by rpki-client on console-fra.rpki-client.org