Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/6f0269-834e-47c5-98e1-f1f802e6613b/1/GGIcmtz8eFlx_OqDlmy8i-XT3RI.roa
File: GGIcmtz8eFlx_OqDlmy8i-XT3RI.roa (raw, json)
Hash identifier: pXksz6/0/znShrSV4xbI2YfDJGnGIWQkJdbrkIds28o=
Subject key identifier: 18:62:1C:9A:DC:FC:78:59:71:FC:EA:83:96:6C:BC:8B:E5:D3:DD:12
Certificate issuer: /CN=cc2eb5b38bb62ede5c98cbfbcff9532852180516
Certificate serial: 081473BD
Authority key identifier: CC:2E:B5:B3:8B:B6:2E:DE:5C:98:CB:FB:CF:F9:53:28:52:18:05:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zC61s4u2Lt5cmMv7z_lTKFIYBRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/6f0269-834e-47c5-98e1-f1f802e6613b/1/GGIcmtz8eFlx_OqDlmy8i-XT3RI.roa
Signing time: Sat 01 Jan 2022 02:52:57 +0000
ROA not before: Sat 01 Jan 2022 02:52:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 2a07:e02:41::/48 maxlen: 48
2a07:e00:19f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135558077 (0x81473bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc2eb5b38bb62ede5c98cbfbcff9532852180516
Validity
Not Before: Jan 1 02:52:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18621c9adcfc785971fcea83966cbc8be5d3dd12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:77:6e:f1:ba:2c:8c:bd:4c:b0:12:21:7a:52:
82:89:fc:c3:d6:5f:d3:de:c1:27:a6:3d:7c:cf:1c:
8e:fc:05:4d:76:47:6c:6b:0a:7e:12:4d:ba:fd:87:
4c:bb:69:ec:c0:87:fa:92:dc:44:73:99:a5:45:9b:
97:25:97:27:74:be:ae:3b:8f:d8:d9:cc:1d:78:ed:
d8:45:da:37:0f:c1:39:5f:a2:b7:e8:17:37:11:35:
3e:f4:8b:3b:66:54:7e:44:e7:2f:bf:dd:14:6d:bd:
9e:8c:dc:49:ed:d0:e0:f4:c5:78:0d:46:4d:b3:5c:
6f:39:d1:3f:11:c7:74:91:5d:fb:1e:48:c0:0a:71:
4d:09:7c:47:23:bf:e7:a6:79:62:e5:84:2f:3c:36:
83:c6:f1:0a:b6:7b:c2:75:98:66:af:9e:3d:f9:03:
2a:17:49:69:40:cf:2c:ba:fb:c8:89:03:1e:21:ca:
9a:28:69:8c:70:f9:42:40:84:bb:0a:ad:86:e6:09:
6b:2e:f4:2b:1e:2c:aa:cc:d5:c3:3c:d2:95:b3:ad:
c7:c2:0e:bd:15:b6:fa:02:60:b2:54:41:8b:03:43:
bf:41:4b:54:cd:ae:8a:e0:bf:97:ff:53:e0:2b:49:
a2:77:96:17:71:ba:36:8c:89:f7:8f:35:a3:3a:97:
fa:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:62:1C:9A:DC:FC:78:59:71:FC:EA:83:96:6C:BC:8B:E5:D3:DD:12
X509v3 Authority Key Identifier:
keyid:CC:2E:B5:B3:8B:B6:2E:DE:5C:98:CB:FB:CF:F9:53:28:52:18:05:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zC61s4u2Lt5cmMv7z_lTKFIYBRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/6f0269-834e-47c5-98e1-f1f802e6613b/1/GGIcmtz8eFlx_OqDlmy8i-XT3RI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/6f0269-834e-47c5-98e1-f1f802e6613b/1/zC61s4u2Lt5cmMv7z_lTKFIYBRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:e00:19f::/48
2a07:e02:41::/48
Signature Algorithm: sha256WithRSAEncryption
86:b2:0c:6c:98:b1:c0:92:f9:fb:a8:4c:e4:96:56:5a:0b:c7:
3d:72:18:80:8c:ea:54:f4:89:31:44:0f:b4:45:04:c0:05:2d:
70:bc:dc:41:8d:d9:d9:6d:df:c4:0e:0c:1f:ab:d8:14:fc:e9:
48:a9:f9:c4:4c:a8:3a:f5:85:a2:3c:57:12:24:d7:2e:0c:24:
6d:08:00:b7:af:50:ef:23:d0:27:7d:c5:de:e7:8c:5e:01:56:
1a:66:d1:2c:72:95:67:05:3c:16:ab:7b:dc:e2:0b:d5:71:dc:
a9:01:d6:1f:6d:92:4b:02:ea:3e:12:72:42:96:a9:23:c8:fd:
a1:bd:f3:f9:04:f9:d8:51:71:7d:ca:f7:f3:af:4a:1a:c8:a0:
2b:32:6a:c3:43:d0:4a:f5:98:1d:e0:4e:e4:05:12:4d:59:dc:
46:87:bb:80:39:3e:50:d6:47:fe:fb:a6:37:d6:2b:2f:60:44:
e0:de:aa:d9:d5:39:d7:a2:89:df:8f:ee:11:49:9b:4b:d5:e8:
93:60:b6:63:88:62:38:eb:38:e2:69:b6:d7:38:6f:e2:5f:21:
a3:0d:90:95:c6:e6:c0:38:2f:2f:1f:60:96:08:db:f1:70:c5:
09:4f:c4:6a:b7:00:2e:f9:3a:5f:5d:7f:2a:f7:dd:83:31:04:
15:9f:6f:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:13 2023 by rpki-client on console-ams.rpki-client.org