Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/2061d9-649a-4136-8c93-2268e97a8bc1/1/GuanW6D_u2GPT8dmHsCycXm6APY.roa
File: GuanW6D_u2GPT8dmHsCycXm6APY.roa (raw, json)
Hash identifier: hEHm2/EzbdNnsE1vypdDnkLh4JXcpDcoOdSx7Ey6FSs=
Subject key identifier: 1A:E6:A7:5B:A0:FF:BB:61:8F:4F:C7:66:1E:C0:B2:71:79:BA:00:F6
Certificate issuer: /CN=3618be04417a6bcb9f33942a631518be533ffaf4
Certificate serial: 0185342057EA7F06807FB7096ED074D79E11
Authority key identifier: 36:18:BE:04:41:7A:6B:CB:9F:33:94:2A:63:15:18:BE:53:3F:FA:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nhi-BEF6a8ufM5QqYxUYvlM_-vQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/2061d9-649a-4136-8c93-2268e97a8bc1/1/GuanW6D_u2GPT8dmHsCycXm6APY.roa
Signing time: Wed 21 Dec 2022 10:00:12 +0000
ROA not before: Wed 21 Dec 2022 10:00:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42346
IP address blocks: 2a00:5480::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:34:20:57:ea:7f:06:80:7f:b7:09:6e:d0:74:d7:9e:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3618be04417a6bcb9f33942a631518be533ffaf4
Validity
Not Before: Dec 21 10:00:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ae6a75ba0ffbb618f4fc7661ec0b27179ba00f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:84:ab:cc:f1:9d:d5:71:ec:35:7d:b5:81:69:
7f:92:9c:3e:7b:d9:4b:a8:36:0a:3e:7f:79:6e:4e:
6e:ac:15:6d:45:53:ce:ae:3b:21:b1:a2:a0:c5:6f:
d3:d4:78:f2:95:26:aa:1e:76:1b:fc:a6:58:4b:31:
46:e8:00:42:ce:d4:55:e7:e2:6a:09:b5:13:01:2f:
d6:d7:3d:8d:66:77:a2:1e:31:0e:df:d1:0e:cd:87:
a6:14:6a:b2:70:4b:55:6a:f6:81:e5:ca:ee:52:a0:
75:11:3f:b7:8d:a1:af:6b:2c:14:e2:59:08:d7:b2:
28:3f:0f:70:45:75:9e:d3:4f:93:90:ff:1e:69:f4:
d8:fc:b3:93:ab:8d:94:8d:cd:cc:0a:9b:72:8c:16:
3e:81:27:de:47:95:9d:d9:ce:14:6d:31:d7:b5:c0:
ea:e7:57:9a:28:0d:20:4f:b8:84:49:e2:76:c4:ca:
2c:96:56:d4:78:2a:bf:1c:bf:82:c9:fc:76:6a:ef:
02:e9:dd:f2:aa:3a:bc:08:5f:5d:f9:f6:3a:cc:76:
0c:28:37:17:e4:68:f5:a7:7d:e2:d7:b9:c7:23:64:
1f:fb:af:be:9b:52:71:f7:b3:44:21:4b:eb:ee:1d:
3b:de:03:f3:59:b3:08:a4:15:ea:35:fd:4d:86:85:
24:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:E6:A7:5B:A0:FF:BB:61:8F:4F:C7:66:1E:C0:B2:71:79:BA:00:F6
X509v3 Authority Key Identifier:
keyid:36:18:BE:04:41:7A:6B:CB:9F:33:94:2A:63:15:18:BE:53:3F:FA:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nhi-BEF6a8ufM5QqYxUYvlM_-vQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/2061d9-649a-4136-8c93-2268e97a8bc1/1/GuanW6D_u2GPT8dmHsCycXm6APY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/2061d9-649a-4136-8c93-2268e97a8bc1/1/Nhi-BEF6a8ufM5QqYxUYvlM_-vQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:5480::/29
Signature Algorithm: sha256WithRSAEncryption
99:5f:8c:a1:9e:f5:2c:20:02:47:9f:3f:ad:94:3d:7b:5b:a9:
cb:f9:00:05:90:e8:90:3d:88:89:3e:5e:75:05:8b:41:b1:f8:
6e:63:8d:cb:33:35:52:a7:fc:06:3a:86:a4:2a:d4:4c:8e:ab:
16:76:8e:b0:92:02:b0:8b:25:6d:5b:17:98:d8:58:6a:2a:02:
0e:17:89:a6:7a:5d:4b:2f:67:d0:3c:c1:0a:e6:97:bc:2d:cf:
d4:22:f8:bd:70:54:d8:58:50:28:16:6b:7c:66:6f:cf:2a:08:
6b:e0:55:32:b5:48:c8:65:3a:15:56:18:c6:4c:05:6d:61:da:
dd:62:ff:a7:74:74:f3:ab:dc:4c:a6:a0:7a:c5:d5:16:66:8e:
dd:44:d6:3c:55:0f:a4:cd:73:6e:bf:af:34:77:e5:4c:a0:be:
71:03:57:7d:5f:2d:6e:5d:68:b5:36:d5:cf:7d:af:fa:2d:21:
72:20:c4:e5:63:ee:83:8d:93:48:ee:68:67:f4:18:fd:cd:61:
e4:18:16:ce:01:42:b5:af:95:18:2e:b7:07:e1:92:95:19:8b:
df:f0:11:78:d6:b4:20:ab:91:0e:76:37:3b:cb:24:70:f5:ff:
ce:4e:ca:0f:29:a7:77:12:4f:e7:14:84:2a:53:93:86:62:e7:
a6:5c:81:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:26 2024 by rpki-client on console-ams.rpki-client.org