Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/1abe8a-45a2-4156-98d7-6806e3d4ce4f/1/UYI6qFjB17SiTfuYR0s_69PYXTU.roa
File: UYI6qFjB17SiTfuYR0s_69PYXTU.roa (raw, json)
Hash identifier: pW3OvSmC2g+Po3f/tET9MijFsr4Uig3rmCBtP3lat0w=
Subject key identifier: 51:82:3A:A8:58:C1:D7:B4:A2:4D:FB:98:47:4B:3F:EB:D3:D8:5D:35
Certificate issuer: /CN=0b4cfabe47e9285f65f1f2d686baaf15b8b41773
Certificate serial: 387ECB67
Authority key identifier: 0B:4C:FA:BE:47:E9:28:5F:65:F1:F2:D6:86:BA:AF:15:B8:B4:17:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C0z6vkfpKF9l8fLWhrqvFbi0F3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/1abe8a-45a2-4156-98d7-6806e3d4ce4f/1/UYI6qFjB17SiTfuYR0s_69PYXTU.roa
Signing time: Sat 01 Jan 2022 12:04:29 +0000
ROA not before: Sat 01 Jan 2022 12:04:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64520
IP address blocks: 2a02:d58:200a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 947833703 (0x387ecb67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b4cfabe47e9285f65f1f2d686baaf15b8b41773
Validity
Not Before: Jan 1 12:04:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51823aa858c1d7b4a24dfb98474b3febd3d85d35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:40:dd:d8:af:00:90:51:6a:5e:bc:23:5e:7e:
4b:5a:36:6d:d8:07:62:5b:23:7c:8e:e1:2d:52:8b:
66:91:7b:14:44:34:0b:06:c4:32:9e:67:4e:be:db:
b5:75:9c:ce:d7:e7:48:b7:0c:46:92:88:a8:ab:e6:
dc:55:55:7f:06:cf:2a:54:4d:08:9d:62:28:cd:c6:
7b:95:14:60:f4:66:8d:9a:59:4b:9d:70:de:98:21:
6d:e9:8e:f3:6e:18:82:3d:bc:ea:25:64:a9:46:6c:
27:e9:18:d0:ef:ea:b0:53:bf:bb:d5:e4:f9:bf:3c:
e3:74:89:14:bd:0d:26:4b:b3:b9:39:cb:43:7a:4f:
52:b8:18:df:50:45:2d:94:fc:f2:c4:11:b9:33:fc:
0b:90:f1:31:90:67:b5:94:a9:2e:36:b1:55:d9:40:
da:4f:9a:53:0f:98:2f:82:d7:61:15:33:51:6e:6c:
97:14:cc:d6:43:dc:78:34:60:d7:44:24:31:82:b1:
77:5c:13:c7:1f:2a:fc:b7:d5:c2:24:40:64:cb:64:
66:0f:43:0f:11:4b:f0:05:22:f2:73:c6:ee:48:7b:
36:b5:00:07:5c:81:6a:37:40:18:57:d8:a7:6b:92:
57:5e:67:f1:73:2a:07:1a:cb:f7:80:3c:6b:a7:49:
b6:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:82:3A:A8:58:C1:D7:B4:A2:4D:FB:98:47:4B:3F:EB:D3:D8:5D:35
X509v3 Authority Key Identifier:
keyid:0B:4C:FA:BE:47:E9:28:5F:65:F1:F2:D6:86:BA:AF:15:B8:B4:17:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C0z6vkfpKF9l8fLWhrqvFbi0F3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/1abe8a-45a2-4156-98d7-6806e3d4ce4f/1/UYI6qFjB17SiTfuYR0s_69PYXTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/1abe8a-45a2-4156-98d7-6806e3d4ce4f/1/C0z6vkfpKF9l8fLWhrqvFbi0F3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:d58:200a::/48
Signature Algorithm: sha256WithRSAEncryption
72:39:51:06:4b:47:bb:12:d7:f6:be:4f:18:15:c1:5e:68:e5:
ff:28:2f:3e:90:6e:89:05:9f:a2:a9:8f:21:f9:33:cf:dd:21:
60:3c:c7:b8:6e:fd:25:86:a7:e7:d8:bf:f7:c9:98:c9:22:ff:
56:00:b9:33:88:11:7c:0d:c9:a6:b9:38:e5:4f:c0:c2:95:54:
f3:98:90:a3:55:b2:84:50:c3:fb:24:6b:17:ea:bf:1a:fb:4e:
b8:0b:e6:be:db:6f:b3:13:b9:d4:49:72:b9:1d:55:ac:a6:f5:
93:0c:e6:58:c9:fb:b2:9d:b4:76:bc:e2:82:9d:ca:6f:78:40:
99:9a:5b:1e:90:f2:07:0a:7a:a3:54:68:83:bb:89:42:8f:21:
c6:fa:d9:38:05:0c:68:be:17:95:95:34:64:0d:85:c0:25:1c:
1e:cc:e8:f3:cc:d1:6a:32:01:84:ad:a3:2c:a9:24:77:7a:71:
94:99:92:b7:ee:ea:01:6e:97:1d:c6:5e:d8:a9:1d:76:e1:40:
be:bb:40:82:a1:1b:a2:f2:1d:00:8f:2f:2a:ba:b5:6e:b8:ca:
80:86:4f:8f:f2:dd:cc:c7:a7:76:dc:62:92:c2:48:a2:4a:a4:
66:64:25:02:10:0f:9f:f6:04:28:84:37:85:e2:d6:74:c9:41:
8b:16:c6:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:46 2023 by rpki-client on console-ams.rpki-client.org