Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/gSuHDxA4kpFXGRVzXw9nktabXEA.roa
File: gSuHDxA4kpFXGRVzXw9nktabXEA.roa (raw, json)
Hash identifier: 96FaGxIB5aelxGlt722JOlC6EBvlC/TJM3dAmC/Zs20=
Subject key identifier: 81:2B:87:0F:10:38:92:91:57:19:15:73:5F:0F:67:92:D6:9B:5C:40
Certificate issuer: /CN=c719cad9922115bcfa7452ba0a6e43a6af4e4c24
Certificate serial: 04ADCB8C
Authority key identifier: C7:19:CA:D9:92:21:15:BC:FA:74:52:BA:0A:6E:43:A6:AF:4E:4C:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/gSuHDxA4kpFXGRVzXw9nktabXEA.roa
Signing time: Sat 01 Jan 2022 06:58:10 +0000
ROA not before: Sat 01 Jan 2022 06:58:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41046
IP address blocks: 2001:67c:2d90::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78498700 (0x4adcb8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c719cad9922115bcfa7452ba0a6e43a6af4e4c24
Validity
Not Before: Jan 1 06:58:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=812b870f10389291571915735f0f6792d69b5c40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:7e:b3:fc:03:87:83:15:8f:25:39:da:fe:05:
20:ce:07:f5:1b:db:0b:a4:4d:81:9d:84:95:8f:c8:
9a:8e:1c:3c:59:3a:2c:b3:cc:c6:57:7f:ca:c0:f6:
fe:ea:2b:cd:54:4f:f3:80:1b:3b:8d:cd:d7:a8:ee:
80:48:3e:a0:23:33:18:9e:a6:66:c1:0b:f0:58:34:
5c:25:9e:9e:e4:1a:83:47:de:f9:d6:26:87:f4:ee:
00:d4:38:41:2b:0f:d4:f4:f4:e7:1c:72:e2:39:bd:
94:c6:eb:af:39:f9:c9:fe:9c:cb:e6:d2:cf:36:cb:
73:ba:e4:f3:b3:ca:75:d8:7d:5e:3f:7c:87:1c:6a:
47:9e:03:8f:b7:f2:bb:69:9f:f1:75:c5:a6:27:06:
14:39:e9:22:56:96:7d:96:a2:86:80:a9:71:db:c3:
bf:40:90:1a:aa:46:a1:81:2e:0f:d1:dd:7e:99:f6:
fe:0a:78:23:12:60:ee:84:4b:6b:71:d1:86:ac:9c:
13:ba:72:fb:5a:7c:a9:0f:0b:1c:9e:41:0e:44:a4:
63:a3:f4:ab:af:20:8a:de:8e:69:c3:e3:8e:fb:e2:
17:76:15:1e:9a:16:cd:c2:97:e3:03:46:a8:6e:f3:
38:42:a9:f5:70:cc:58:02:8f:da:60:ff:98:15:b7:
39:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:2B:87:0F:10:38:92:91:57:19:15:73:5F:0F:67:92:D6:9B:5C:40
X509v3 Authority Key Identifier:
keyid:C7:19:CA:D9:92:21:15:BC:FA:74:52:BA:0A:6E:43:A6:AF:4E:4C:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/gSuHDxA4kpFXGRVzXw9nktabXEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2d90::/48
Signature Algorithm: sha256WithRSAEncryption
48:0b:47:32:e4:6b:7d:2f:36:b9:40:4e:7b:76:fc:02:60:25:
75:88:0b:e2:17:f4:b3:5a:fe:7c:ca:bb:f3:81:14:23:62:b2:
c9:fd:a6:ee:bd:24:62:45:2d:e0:13:16:7b:33:f1:c3:3b:12:
3d:2d:29:7b:91:95:f4:64:8f:00:4d:f3:2e:27:b1:70:f8:b2:
9f:a1:c7:89:90:dc:d9:3f:ec:7d:4d:45:37:be:80:2a:7e:b3:
2a:b7:52:c7:97:2c:f6:69:52:d8:f2:f8:d5:35:07:65:70:7f:
47:9a:3b:b4:02:95:21:51:39:b2:44:98:d2:4d:8e:c0:c7:a9:
7e:63:ed:57:0e:d4:1a:fe:e3:13:9e:60:72:d6:de:94:90:38:
f8:50:41:d3:a7:ce:a4:0f:4c:56:28:b5:7e:f2:75:bd:60:2f:
73:67:0e:ae:45:66:6d:8a:05:c4:0a:5f:96:10:3e:55:ef:24:
a6:02:8b:76:19:b5:5d:f0:d6:80:d5:23:b0:8a:96:fa:4e:4c:
43:a5:78:46:b6:1f:80:98:e5:d5:c0:89:a3:40:15:68:45:38:
a5:2f:97:93:cd:b9:4a:ad:9c:14:a2:ff:ed:88:67:45:74:fc:
22:9c:d5:d0:bc:b6:ae:3b:58:d8:32:f1:88:a5:74:ea:56:3d:
56:fc:17:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:49 2023 by rpki-client on console-fra.rpki-client.org