Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/f_m02Rae3yu-gAw-fP8DMSBbkVY.roa
File: f_m02Rae3yu-gAw-fP8DMSBbkVY.roa (raw, json)
Hash identifier: efHed9K+FINA6OLn4fPxPdYGfejf/EPwJocjFnD0iT4=
Subject key identifier: 7F:F9:B4:D9:16:9E:DF:2B:BE:80:0C:3E:7C:FF:03:31:20:5B:91:56
Certificate issuer: /CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Certificate serial: 01A62537
Authority key identifier: 0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/f_m02Rae3yu-gAw-fP8DMSBbkVY.roa
Signing time: Wed 09 Feb 2022 08:34:12 +0000
ROA not before: Wed 09 Feb 2022 08:34:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6939
IP address blocks: 2a0e:da40:da40::/48 maxlen: 128
2a0e:da40:1::/48 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27665719 (0x1a62537)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Validity
Not Before: Feb 9 08:34:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ff9b4d9169edf2bbe800c3e7cff0331205b9156
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:5b:0c:44:38:ca:98:e3:66:12:e2:f1:06:97:
05:27:4d:19:24:fd:d9:e5:a4:06:f2:a8:67:65:9d:
55:b7:57:5d:bb:fd:28:0b:23:66:a8:3a:dc:3b:c1:
3c:22:7f:7f:b1:35:84:ed:da:3d:37:72:99:79:8a:
5c:ce:a1:cb:ca:57:f0:45:e0:c7:f3:1f:18:e4:43:
35:fe:46:57:d8:ac:04:6b:99:9c:14:7a:1c:d9:c9:
6f:94:b4:ca:b0:01:c4:a1:b1:38:2c:84:7f:8d:93:
46:43:77:24:7f:ca:48:fc:69:88:3e:85:d5:6d:7d:
23:d8:9f:95:06:65:e9:ce:b5:1c:0c:6d:74:8f:ac:
80:cf:18:79:3f:0f:88:60:42:1f:40:67:e0:42:38:
37:a3:76:df:a4:24:6c:bb:42:ea:ba:59:aa:1e:e3:
7b:fe:67:ae:6b:fa:b8:64:b7:0c:e1:c3:4d:86:de:
1f:90:26:58:44:cd:18:a5:a6:d3:d3:14:3f:cb:42:
ac:0e:f3:c7:69:d1:f3:47:6c:b3:a9:b9:89:e6:96:
3b:ca:58:50:ae:1a:d2:75:93:ca:2e:53:76:92:bf:
e7:e8:5b:9e:58:fa:5d:c3:87:42:57:f4:21:90:72:
52:50:28:b5:d7:91:0b:f3:ee:6c:e9:89:a2:45:0d:
8f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:F9:B4:D9:16:9E:DF:2B:BE:80:0C:3E:7C:FF:03:31:20:5B:91:56
X509v3 Authority Key Identifier:
keyid:0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/f_m02Rae3yu-gAw-fP8DMSBbkVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/DbZ8XH-n_iSS7sN89CdkK3HUJbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:da40:1::/48
2a0e:da40:da40::/48
Signature Algorithm: sha256WithRSAEncryption
8d:9d:bb:81:7a:3e:f3:75:53:1f:c1:8b:f3:6b:e7:1a:42:51:
9f:19:ed:80:c0:d9:5b:90:a7:10:88:84:ca:70:2e:f2:04:cd:
bf:c8:c5:7d:c9:5b:9f:00:f2:a9:e1:a4:2b:e1:80:f3:37:fa:
af:03:b7:27:8b:da:44:15:87:b9:24:61:21:5e:bc:90:a7:3f:
67:11:c5:b5:32:5e:e8:69:bb:97:8e:6b:b6:23:6e:89:c3:e5:
ea:37:8a:5f:02:30:c2:56:ce:78:5f:f4:23:15:da:88:92:91:
67:8d:d2:07:6c:d4:5d:20:4a:6d:99:ef:bf:3b:97:13:9c:55:
17:57:7b:f6:a1:d2:6f:e4:fe:a5:5e:a1:b7:47:77:1a:23:c3:
4b:e3:f8:eb:57:f0:18:52:94:2c:63:07:2b:47:02:c0:2a:1b:
10:6c:b9:28:8d:15:a2:6c:1d:23:4a:10:e6:c1:f9:e2:8c:c1:
39:a5:ce:3b:bb:57:e9:eb:10:53:c2:a5:e4:4a:ee:29:62:1c:
58:5b:a3:b3:82:ad:26:87:17:bc:44:5e:89:39:92:02:e1:19:
fa:eb:10:fe:fc:1d:71:f0:3f:26:60:dc:79:87:f9:78:37:d7:
5c:82:1b:a4:d8:1b:b4:43:82:7f:72:6b:88:cd:5f:c7:74:6d:
23:42:f4:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:48 2023 by rpki-client on console-ams.rpki-client.org