Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/cd0b2c-29e2-4737-9eb7-8cd55b03d22d/1/0aveyrdGZVT9Km8Jgq5k4q6yUFw.roa
File: 0aveyrdGZVT9Km8Jgq5k4q6yUFw.roa (raw, json)
Hash identifier: rRmKaoS4f5C2MKy2BpER4T++JKTWOzCq9KZFsaoH02Q=
Subject key identifier: D1:AB:DE:CA:B7:46:65:54:FD:2A:6F:09:82:AE:64:E2:AE:B2:50:5C
Certificate issuer: /CN=cfc7ef2b766594892d78928cbe781779fdce67d0
Certificate serial: 37EB78DF
Authority key identifier: CF:C7:EF:2B:76:65:94:89:2D:78:92:8C:BE:78:17:79:FD:CE:67:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z8fvK3ZllIkteJKMvngXef3OZ9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd0b2c-29e2-4737-9eb7-8cd55b03d22d/1/0aveyrdGZVT9Km8Jgq5k4q6yUFw.roa
Signing time: Sat 01 Jan 2022 06:05:19 +0000
ROA not before: Sat 01 Jan 2022 06:05:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 4410
IP address blocks: 2a02:6a0:4ffe::/48 maxlen: 48
2a02:6a0:4fff::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 938178783 (0x37eb78df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfc7ef2b766594892d78928cbe781779fdce67d0
Validity
Not Before: Jan 1 06:05:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d1abdecab7466554fd2a6f0982ae64e2aeb2505c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c9:d7:e6:d9:42:51:72:58:5c:12:63:fd:cf:
b4:5a:f2:80:44:6f:60:53:84:7d:49:a2:0d:b6:95:
e1:ec:fa:11:6e:36:71:7e:10:ac:c9:77:1c:89:ea:
20:4e:3a:e3:11:d3:6b:fd:91:c4:2b:2d:4b:c4:a9:
d3:84:59:d8:6e:35:b2:b7:ac:5c:69:a8:5a:25:89:
5a:e7:63:72:ea:e3:08:e9:ef:cb:dd:db:66:8b:37:
40:a3:53:41:f0:1c:8c:b6:40:1c:5b:8d:4f:c2:4f:
b5:19:43:6e:77:9a:be:07:8b:9e:16:33:78:f3:fb:
ef:42:68:a8:0e:60:35:66:72:36:6d:42:8f:a6:db:
1c:40:79:c0:08:da:e6:19:30:3d:3e:c3:be:53:0b:
3e:39:69:a9:b6:ae:99:be:15:58:f3:dc:de:e9:68:
65:7f:f0:2c:e7:09:7d:82:d3:72:74:f7:6e:65:16:
97:df:37:b7:fd:55:ba:a9:51:dc:1c:5d:70:52:f8:
6b:e5:62:d8:53:81:1f:a3:42:ea:ff:5a:51:57:d8:
52:7e:44:f5:14:2b:8f:29:69:b7:af:d0:30:d5:49:
d8:b3:34:e2:d0:c4:a6:4c:bc:04:b9:35:fc:bd:c6:
79:f0:ef:a7:19:8b:09:ce:f5:6d:89:84:50:34:6c:
1a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:AB:DE:CA:B7:46:65:54:FD:2A:6F:09:82:AE:64:E2:AE:B2:50:5C
X509v3 Authority Key Identifier:
keyid:CF:C7:EF:2B:76:65:94:89:2D:78:92:8C:BE:78:17:79:FD:CE:67:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z8fvK3ZllIkteJKMvngXef3OZ9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd0b2c-29e2-4737-9eb7-8cd55b03d22d/1/0aveyrdGZVT9Km8Jgq5k4q6yUFw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd0b2c-29e2-4737-9eb7-8cd55b03d22d/1/z8fvK3ZllIkteJKMvngXef3OZ9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:6a0:4ffe::/47
Signature Algorithm: sha256WithRSAEncryption
4a:c5:a5:8d:77:a4:58:ba:f2:98:2d:6a:96:23:b1:2b:14:c4:
2d:07:63:d9:51:1f:b5:ed:3f:f8:d5:f5:79:a7:11:f5:7c:fa:
5c:c5:d5:58:c7:25:c1:16:2e:4b:07:c4:f8:f0:d1:47:f0:00:
b9:c6:c8:23:a5:23:6d:57:5c:7b:9e:2b:67:bf:d7:da:cc:9d:
8d:90:3e:ae:72:3e:91:40:36:55:10:2f:19:0d:cd:dc:fd:13:
e8:2c:29:46:c4:96:44:bb:66:ff:46:c1:96:cc:e6:52:c1:bd:
7b:7c:85:14:39:4f:f4:55:ff:e4:c4:c6:65:e6:8f:d9:1e:34:
20:41:0d:c5:8d:7a:d3:8b:02:65:73:6b:91:c1:4b:54:80:59:
b9:2b:3a:da:a1:74:87:f8:38:bf:05:34:0e:91:43:c5:f2:55:
07:c6:6d:21:cf:d8:3a:c4:c5:8c:d3:d6:a3:15:e4:1f:a0:d6:
82:24:15:c3:df:07:a2:4a:e0:34:d5:aa:01:a7:f5:3c:62:5c:
69:74:52:c7:25:38:11:23:bd:9b:bd:48:47:10:ba:92:cd:6d:
36:f5:85:a2:51:a7:a3:0c:85:72:c1:ab:c2:b4:66:e4:e5:14:
1c:8e:b3:ff:45:2f:2c:a2:a5:e0:f6:b5:b8:63:04:7b:3f:98:
3e:96:d0:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:26 2023 by rpki-client on console-ams.rpki-client.org