Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/73e52f-42e3-4a31-9736-a6b7600871a6/1/lROFwml_DbPXnvrtvnawO7UbokY.roa
File: lROFwml_DbPXnvrtvnawO7UbokY.roa (raw, json)
Hash identifier: 1x/ePvkpdgTwDdh5eVZWTABQWwAKEDMn8GWE/pQBEoY=
Subject key identifier: 95:13:85:C2:69:7F:0D:B3:D7:9E:FA:ED:BE:76:B0:3B:B5:1B:A2:46
Certificate issuer: /CN=9c28a6ed0f5cfce772d5ce5b03bb42932c8a64d0
Certificate serial: 018428C5042AB6948847804F5FBC42BE8D94
Authority key identifier: 9C:28:A6:ED:0F:5C:FC:E7:72:D5:CE:5B:03:BB:42:93:2C:8A:64:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nCim7Q9c_Ody1c5bA7tCkyyKZNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/73e52f-42e3-4a31-9736-a6b7600871a6/1/lROFwml_DbPXnvrtvnawO7UbokY.roa
Signing time: Sun 30 Oct 2022 12:01:51 +0000
ROA not before: Sun 30 Oct 2022 12:01:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206075
IP address blocks: 2a07:e041::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:28:c5:04:2a:b6:94:88:47:80:4f:5f:bc:42:be:8d:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c28a6ed0f5cfce772d5ce5b03bb42932c8a64d0
Validity
Not Before: Oct 30 12:01:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=951385c2697f0db3d79efaedbe76b03bb51ba246
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:93:78:90:a0:e7:fb:b8:d3:a7:3b:1a:bc:ac:
29:75:47:7b:e0:8f:a3:f3:10:ca:86:43:8b:0c:42:
90:44:6d:7c:9a:06:da:08:07:93:c8:c3:97:79:7c:
39:5c:57:c1:fe:35:3e:fe:29:14:59:64:d4:69:ec:
c3:c8:4c:7f:ee:95:a5:b2:41:3d:c3:2b:58:6f:a1:
7f:e5:eb:c5:72:26:b5:50:46:13:fa:e7:13:0e:40:
91:8d:3a:94:a3:2c:fd:f4:fb:3c:c5:90:23:52:64:
29:6c:53:33:91:7f:63:4c:a1:2b:5a:a6:59:f7:7d:
af:b4:2d:10:7d:5e:34:f0:9d:b9:6d:61:e4:21:ca:
d5:97:3f:16:f7:be:be:69:eb:5b:07:b5:8e:a1:f6:
f5:a7:46:21:08:2d:e6:01:b5:4e:30:0f:2f:1b:10:
55:20:c8:f1:3e:3a:e2:83:2d:56:39:b8:db:62:2c:
f6:6c:7f:02:85:78:06:c7:b4:39:ee:88:f0:95:1d:
e0:e9:2b:15:6e:14:d2:52:2f:38:ed:53:87:48:ca:
89:dc:0a:24:fd:10:ab:75:7d:70:41:1a:72:55:96:
5c:b6:38:40:17:d9:79:9f:b7:8b:98:3f:1a:d3:46:
22:e3:3b:0b:fd:e4:57:e4:d8:ee:b7:0f:ee:91:0a:
39:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:13:85:C2:69:7F:0D:B3:D7:9E:FA:ED:BE:76:B0:3B:B5:1B:A2:46
X509v3 Authority Key Identifier:
keyid:9C:28:A6:ED:0F:5C:FC:E7:72:D5:CE:5B:03:BB:42:93:2C:8A:64:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nCim7Q9c_Ody1c5bA7tCkyyKZNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/73e52f-42e3-4a31-9736-a6b7600871a6/1/lROFwml_DbPXnvrtvnawO7UbokY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/73e52f-42e3-4a31-9736-a6b7600871a6/1/nCim7Q9c_Ody1c5bA7tCkyyKZNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:e041::/32
Signature Algorithm: sha256WithRSAEncryption
14:77:7e:ff:0e:b9:22:0a:24:7e:62:2a:05:4a:db:c7:2f:1b:
4a:57:b1:2a:43:d6:8d:54:94:6e:93:25:c0:a6:c6:29:d5:96:
96:9e:f0:67:cb:bd:19:46:54:9e:c4:7f:3f:f2:ff:1d:f0:ef:
1f:b9:0c:27:28:e1:3e:eb:11:4a:63:31:40:43:4d:db:a9:f6:
be:ff:00:4b:b6:43:f6:93:21:34:d4:14:a9:d6:d0:93:15:68:
85:70:d7:f8:ff:b6:9d:ae:57:62:a8:b3:b7:a0:cd:ce:a3:82:
21:20:08:f2:39:58:99:80:3e:2a:77:8f:ad:f2:66:63:a2:df:
b5:e8:4f:fa:28:37:32:a1:2d:cf:be:fe:9f:8a:45:2f:9b:4e:
04:e1:78:90:d6:e1:ad:c3:1c:26:5b:a4:b2:dc:07:eb:51:1a:
37:f2:14:f0:9e:5a:bb:ca:89:00:61:07:40:4d:cb:ac:75:22:
82:06:64:35:c6:68:02:b9:85:8b:46:39:bd:36:b7:61:e5:ed:
12:0b:23:fd:fe:6e:83:c2:0b:4a:08:85:ad:d3:d8:0b:bf:95:
d3:16:42:49:1b:37:0b:d7:c9:c0:db:4c:56:66:72:b6:77:49:
57:fe:d4:44:2b:da:07:80:cd:58:12:6e:ba:a2:17:ba:7d:9d:
37:59:d0:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:30 2024 by rpki-client on console-ams.rpki-client.org