Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/1uj4QTVQE78tmC88b1ejrZR8Co0.roa
File: 1uj4QTVQE78tmC88b1ejrZR8Co0.roa (raw, json)
Hash identifier: NkxgYHskCxFIsumhJMZH9nsnPoabKfo8UNnf1mtIX8M=
Subject key identifier: D6:E8:F8:41:35:50:13:BF:2D:98:2F:3C:6F:57:A3:AD:94:7C:0A:8D
Certificate issuer: /CN=b05d28d16626bc5dcabf2e915435782b96e14071
Certificate serial: 21B7F6E2
Authority key identifier: B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/1uj4QTVQE78tmC88b1ejrZR8Co0.roa
Signing time: Mon 28 Feb 2022 10:02:23 +0000
ROA not before: Mon 28 Feb 2022 10:02:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1136
IP address blocks: 2a07:3500:1b48::/48 maxlen: 48
2a07:3500:1bc0::/48 maxlen: 48
2a07:3500:1b30::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 565704418 (0x21b7f6e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b05d28d16626bc5dcabf2e915435782b96e14071
Validity
Not Before: Feb 28 10:02:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d6e8f841355013bf2d982f3c6f57a3ad947c0a8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:83:91:e4:db:b4:6a:c7:91:1c:67:5a:4b:cf:
45:d2:0d:e3:94:2c:8d:bb:fe:56:66:c8:32:09:d6:
dc:48:04:83:a9:40:89:3d:6d:8a:0e:6d:13:a4:ec:
51:e5:83:18:c4:48:92:f4:96:9f:c9:34:b2:f6:b7:
49:4a:86:0c:8a:5a:c2:c3:f8:54:e7:6c:98:ad:97:
09:79:64:08:45:75:0a:77:22:9b:e3:12:66:17:dc:
a3:eb:4e:b8:64:c0:c6:46:5d:9a:bc:bb:3f:7b:4e:
e1:8d:c4:8a:d8:83:1a:47:50:86:da:9f:89:53:a6:
58:da:37:eb:54:6c:e6:0b:59:d9:41:2c:00:d8:e5:
8d:fc:87:58:11:9c:21:c9:55:3c:83:35:fc:19:ab:
ea:45:03:94:82:0e:44:e1:b3:fc:b0:a3:cd:9e:94:
ea:0e:d0:ed:f0:44:9f:b0:58:59:1c:be:2b:f1:df:
e4:8e:b8:31:bf:92:93:f3:e4:f2:8e:84:72:a9:e3:
15:a9:1f:f5:c3:74:40:54:f1:d1:14:f7:e2:7a:a8:
8f:05:57:33:e7:cc:d6:47:be:ed:8b:7f:93:37:93:
95:69:ce:a0:60:93:7c:d3:93:f3:ef:30:2c:35:10:
ac:db:ce:62:61:02:2b:c7:e2:40:07:34:fd:12:ad:
d8:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:E8:F8:41:35:50:13:BF:2D:98:2F:3C:6F:57:A3:AD:94:7C:0A:8D
X509v3 Authority Key Identifier:
keyid:B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/1uj4QTVQE78tmC88b1ejrZR8Co0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:3500:1b30::/48
2a07:3500:1b48::/48
2a07:3500:1bc0::/48
Signature Algorithm: sha256WithRSAEncryption
07:04:82:49:ea:f2:d3:e1:22:66:3a:d0:69:3a:d8:4c:2f:2c:
dd:f3:2e:89:82:3f:38:ac:87:18:ea:08:80:fe:ad:e3:0f:fd:
46:30:cc:03:d7:2a:7f:75:28:7d:3d:12:96:09:6a:b2:c9:cf:
a2:95:ae:d3:4f:d9:20:84:01:4e:41:31:20:2a:e3:9b:c9:72:
54:07:0d:f9:11:4c:28:1b:4f:1a:79:87:05:52:af:73:40:ee:
dc:6c:12:b6:f5:b0:a2:8e:02:ac:80:63:54:e5:ed:1e:b8:0d:
d8:8b:14:3e:3e:bc:15:42:df:3f:e7:56:49:9e:0b:a5:97:0c:
f7:3d:d1:bc:c4:03:29:23:8d:c2:a8:fa:12:cd:11:28:eb:2f:
7e:b9:2d:e4:5a:0a:c7:c4:80:fd:9b:3d:c4:c5:d6:b7:7a:47:
26:7b:b8:f2:bc:f2:f8:2c:11:02:4e:2a:22:a2:a7:c0:0f:20:
18:fb:fe:c3:9e:86:91:40:c4:68:69:8c:0d:c1:c1:34:1d:20:
d6:99:e0:40:37:94:eb:a4:47:40:1e:c0:24:ab:13:d6:0f:02:
80:e6:72:c3:eb:d2:61:b7:c9:f3:d2:87:82:ba:5e:86:f9:1b:
f7:cf:65:04:02:fa:31:8e:8a:b4:53:b6:c4:9d:51:67:12:09:
15:37:4c:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:23 2023 by rpki-client on console-ams.rpki-client.org