Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/RSlcsxFkR9AZYyhygJsH1kuvRZ0.roa
File: RSlcsxFkR9AZYyhygJsH1kuvRZ0.roa (raw, json)
Hash identifier: Kv0ckOJGRQabEy4hK/A1FCdtqriBZO1RMoBicCUHq2Y=
Subject key identifier: 45:29:5C:B3:11:64:47:D0:19:63:28:72:80:9B:07:D6:4B:AF:45:9D
Certificate issuer: /CN=f04eb204f358004788224e2fb18e4d5e74bebf8d
Certificate serial: 01547DFD
Authority key identifier: F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/RSlcsxFkR9AZYyhygJsH1kuvRZ0.roa
Signing time: Sat 01 Jan 2022 03:56:32 +0000
ROA not before: Sat 01 Jan 2022 03:56:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211352
IP address blocks: 2a09:11c0:300::/42 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22314493 (0x1547dfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04eb204f358004788224e2fb18e4d5e74bebf8d
Validity
Not Before: Jan 1 03:56:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=45295cb3116447d019632872809b07d64baf459d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:67:33:68:c3:ed:d6:37:b8:b4:14:56:9c:3b:
ac:ee:f8:16:c8:f8:6b:00:b3:f9:dc:a9:ee:e4:d6:
7f:a3:6d:e1:cd:38:3e:01:4c:03:5d:ef:3f:e4:0c:
d9:c4:2f:c0:67:e7:87:eb:18:6a:ae:b0:8b:d8:c9:
d7:37:b2:ef:bf:e7:be:fa:50:dd:ba:71:57:4e:3a:
b4:07:f2:d1:6d:9f:24:c9:85:1b:68:e2:fc:5f:51:
44:e1:13:9f:56:75:03:16:70:0e:60:9a:e2:d5:ea:
3d:b2:30:44:77:30:6c:95:aa:9c:24:69:d1:21:75:
7c:9f:63:aa:b9:8d:97:c5:1c:37:61:5a:98:a2:57:
36:ed:d2:c4:0b:a3:6d:6a:01:b4:2e:53:4a:2c:37:
9f:fa:74:c0:ed:3c:98:a2:e7:4f:b7:c6:45:b6:0c:
11:57:da:3d:be:00:e6:a3:58:44:96:c6:41:1c:4d:
6f:a6:fe:54:82:97:a0:92:be:1a:5a:ef:45:81:15:
d5:0b:b1:72:e9:f2:d5:84:0d:6d:eb:0e:2e:e7:d6:
ff:95:ef:03:31:c0:60:90:61:75:9c:d2:ce:01:5e:
90:37:7c:64:0b:72:42:50:e9:df:7b:f2:5e:26:09:
d7:5b:86:7f:7f:e5:e6:6f:b2:b4:40:27:82:cd:e2:
02:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:29:5C:B3:11:64:47:D0:19:63:28:72:80:9B:07:D6:4B:AF:45:9D
X509v3 Authority Key Identifier:
keyid:F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/RSlcsxFkR9AZYyhygJsH1kuvRZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/8E6yBPNYAEeIIk4vsY5NXnS-v40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:11c0:300::/42
Signature Algorithm: sha256WithRSAEncryption
34:94:25:b1:0e:a7:1a:85:a1:a8:0e:8b:8b:e6:a0:81:26:46:
10:73:25:01:2d:77:dd:28:2c:4d:0d:aa:ab:cf:4b:c7:fe:e2:
4a:d5:21:73:06:78:1a:32:95:ae:a5:7d:4d:a7:d4:f8:21:1d:
50:eb:c4:13:b9:7e:aa:a3:4f:f7:8a:07:e1:b0:9e:23:0b:7d:
88:16:81:2d:aa:3a:0a:ab:c6:b5:80:b0:ee:85:3a:0b:c5:2e:
dd:fa:93:d1:ab:9c:9c:e2:74:20:9e:4c:00:0f:97:25:9b:33:
e6:86:53:60:2a:c7:58:f2:8a:cb:08:24:fa:f1:13:f9:81:b4:
00:ec:91:f9:61:5a:42:68:e5:59:8e:94:10:b8:f1:08:c1:87:
1b:61:ee:a4:1d:ac:fd:3d:65:0a:22:d7:92:1a:2a:dd:1b:14:
c5:f9:02:da:d8:03:61:b8:47:34:be:d3:d1:74:12:88:0a:cd:
a7:82:d9:7d:7b:94:c8:25:00:87:da:00:27:be:40:d9:5d:0c:
36:a6:60:33:db:21:53:69:12:1c:08:eb:58:ad:b9:a7:a7:62:
13:99:15:8f:bf:87:f7:ae:e6:9b:53:1c:dd:22:2b:72:ed:6d:
18:79:4f:6d:b8:20:e8:6f:19:9a:e2:8b:9b:32:d2:42:26:4c:
77:f8:35:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:32 2023 by rpki-client on console-ams.rpki-client.org