Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/GhoRTVaIGM9IHC1j4vvNp5vg1Yc.roa
File: GhoRTVaIGM9IHC1j4vvNp5vg1Yc.roa (raw, json)
Hash identifier: wQNyf4DtruOLXPol32bQkqQgTUnHlN7tHzpPsMH3hbM=
Subject key identifier: 1A:1A:11:4D:56:88:18:CF:48:1C:2D:63:E2:FB:CD:A7:9B:E0:D5:87
Certificate issuer: /CN=ffdec4a46a6e6e4f9a92d0ba2e0b3ab5658be1bd
Certificate serial: 19E0CFBC
Authority key identifier: FF:DE:C4:A4:6A:6E:6E:4F:9A:92:D0:BA:2E:0B:3A:B5:65:8B:E1:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_97EpGpubk-aktC6Lgs6tWWL4b0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/GhoRTVaIGM9IHC1j4vvNp5vg1Yc.roa
Signing time: Sat 01 Jan 2022 04:55:13 +0000
ROA not before: Sat 01 Jan 2022 04:55:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207158
IP address blocks: 2a0b:1c00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 434163644 (0x19e0cfbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ffdec4a46a6e6e4f9a92d0ba2e0b3ab5658be1bd
Validity
Not Before: Jan 1 04:55:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a1a114d568818cf481c2d63e2fbcda79be0d587
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:6e:9a:f9:87:70:2a:43:19:e5:52:ae:f9:5c:
7e:89:c6:7a:de:37:dc:d7:6f:0a:b5:bc:74:d3:fa:
09:08:81:22:c2:7f:ab:84:cf:ae:e6:7b:b8:38:2f:
01:2b:b7:68:fa:7b:61:1c:40:09:84:62:02:9b:82:
8f:0a:8b:d5:a0:83:6a:2b:ac:09:f8:18:89:f1:04:
7c:8c:eb:32:ae:e2:fb:1e:bf:0f:7e:88:57:dd:89:
97:83:9c:3d:20:b0:68:c6:96:24:91:68:5d:dc:89:
53:c4:5c:f4:18:d9:9f:45:8d:28:14:90:79:89:1a:
bc:15:29:dc:91:1b:f5:4f:f2:e6:d8:fa:de:47:a6:
31:73:3f:0e:7e:96:1b:ec:b0:ae:fb:38:e0:f2:9a:
dc:c9:16:14:67:7a:66:7c:54:9e:8f:68:a2:8f:b5:
42:8c:80:c5:88:b0:d4:a9:78:00:a3:49:46:32:e3:
5a:fe:49:04:95:1e:b6:3c:0a:a1:9d:bd:19:70:7c:
5a:2b:2c:09:7e:0b:fb:f9:47:29:0c:54:ca:a8:81:
1a:8b:54:38:6b:2f:5d:ad:20:dd:12:a7:5e:fe:01:
ce:b3:51:bf:a3:97:22:e3:f2:3f:0a:6d:99:67:cc:
98:33:bb:8d:2b:d0:00:d2:a9:e5:44:f0:01:81:9a:
4e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:1A:11:4D:56:88:18:CF:48:1C:2D:63:E2:FB:CD:A7:9B:E0:D5:87
X509v3 Authority Key Identifier:
keyid:FF:DE:C4:A4:6A:6E:6E:4F:9A:92:D0:BA:2E:0B:3A:B5:65:8B:E1:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_97EpGpubk-aktC6Lgs6tWWL4b0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/GhoRTVaIGM9IHC1j4vvNp5vg1Yc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/_97EpGpubk-aktC6Lgs6tWWL4b0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:1c00::/29
Signature Algorithm: sha256WithRSAEncryption
25:59:eb:7e:5f:17:38:0f:1d:28:ae:5d:b0:23:8e:9f:2e:27:
95:c8:8f:ee:1d:63:9f:01:c2:92:aa:e8:c6:e5:8a:5e:d3:ee:
3b:41:52:79:76:5c:91:2e:86:33:ef:df:f0:28:f4:bd:57:81:
5b:73:39:60:b2:a2:82:d8:c8:e5:b6:86:22:d4:6b:b3:1f:dc:
e7:0b:0a:e2:7f:08:0c:18:3e:11:00:7e:6b:47:1f:48:0c:e7:
de:ee:3a:91:84:35:67:16:85:d4:f2:47:48:6d:32:65:15:25:
65:ef:93:da:e4:e6:50:20:2a:97:f9:bc:57:6e:52:45:e9:67:
1a:86:de:67:d7:3c:cb:0f:c1:fb:80:06:6a:6c:4c:02:25:2e:
f2:33:16:c7:0b:7f:78:f2:82:e6:24:5f:66:72:c7:f6:35:9b:
b8:d0:3b:11:73:8a:5f:eb:d2:80:75:3a:53:6b:6e:7f:a5:b9:
87:0b:ee:dd:4f:75:c8:ff:f9:2d:1a:b8:d6:13:d5:6f:4e:b1:
97:73:c3:9d:75:56:fa:ef:14:1c:80:7e:b8:f6:ed:57:a7:35:
6e:75:63:00:10:a0:19:9e:fc:99:6a:0d:e8:6b:a6:eb:ee:83:
86:49:61:2e:32:2f:df:bb:86:f9:cb:c7:f1:31:d0:ce:2b:0c:
52:49:24:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:56 2024 by rpki-client on console-fra.rpki-client.org