Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/16ojTw7P7XjyoDaaaPyh9fCFUgE.roa
File: 16ojTw7P7XjyoDaaaPyh9fCFUgE.roa (raw, json)
Hash identifier: 9z0kwqVQuD6pYSAHOH8YU0/jXJgh+v37Uke5TpYGlrU=
Subject key identifier: D7:AA:23:4F:0E:CF:ED:78:F2:A0:36:9A:68:FC:A1:F5:F0:85:52:01
Certificate issuer: /CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Certificate serial: 08905B50
Authority key identifier: 0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/16ojTw7P7XjyoDaaaPyh9fCFUgE.roa
Signing time: Thu 21 Apr 2022 09:09:49 +0000
ROA not before: Thu 21 Apr 2022 09:09:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43126
IP address blocks: 2a0f:607:1060::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143678288 (0x8905b50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Validity
Not Before: Apr 21 09:09:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7aa234f0ecfed78f2a0369a68fca1f5f0855201
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a5:99:1c:36:3f:a2:12:88:88:6a:b7:d8:5d:
13:cb:fa:da:48:93:1a:4c:7a:42:05:e1:1a:1f:91:
92:f0:c3:68:b2:d4:53:f9:83:ac:35:42:66:a4:be:
c4:54:8d:ce:8d:66:ea:1d:25:c0:d2:c7:1c:b2:a1:
60:0b:89:c7:9f:3a:85:04:ea:2a:1c:3d:23:bf:ae:
40:ad:5c:ce:ed:d4:42:cb:93:e6:00:c5:80:97:bc:
7c:97:48:71:36:25:16:5f:aa:e8:36:90:fe:0d:68:
04:bb:24:27:f6:de:26:da:1a:70:a2:a4:c8:eb:d9:
5b:aa:7b:f0:7b:c4:81:fd:24:52:46:9a:e2:36:95:
19:83:cb:25:1a:cf:c7:11:9e:a9:af:b4:ee:ab:d0:
33:3b:8a:07:12:c0:a9:76:0e:01:0f:12:9c:75:03:
32:0c:e9:68:8c:ec:c2:6d:ca:b4:9f:96:6f:cd:bc:
c4:ae:87:3e:b6:36:1a:c7:ab:bd:2b:db:fc:1c:22:
f8:77:5a:2f:bb:0b:90:3b:ea:96:e8:7d:3c:e2:62:
07:94:04:96:46:da:9c:f5:b0:02:82:36:eb:45:47:
59:1a:9c:25:47:f6:de:db:4f:e6:fb:a0:bd:af:81:
c7:5b:65:ea:a6:2f:46:2a:41:b8:94:e8:c5:a4:26:
f4:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:AA:23:4F:0E:CF:ED:78:F2:A0:36:9A:68:FC:A1:F5:F0:85:52:01
X509v3 Authority Key Identifier:
keyid:0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/16ojTw7P7XjyoDaaaPyh9fCFUgE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:607:1060::/44
Signature Algorithm: sha256WithRSAEncryption
29:24:5a:1c:a0:2f:8f:8b:05:6b:03:6d:d0:12:5b:8f:f9:bd:
b0:e2:4e:9d:a6:bb:d0:07:3a:4e:61:97:29:3f:63:29:64:40:
c7:22:79:eb:7e:f6:0a:27:bf:a3:8a:4c:cd:4d:db:8d:ac:0c:
8c:8c:24:29:1b:fe:af:ef:a1:ad:84:b9:85:6e:ba:31:3c:0d:
6d:5c:38:af:9c:79:f9:9c:4c:88:1f:ea:69:28:cb:4d:bf:40:
58:76:45:dd:85:01:68:0f:81:be:30:f9:00:d4:ab:a6:4b:50:
aa:bf:79:36:b3:ec:64:c7:e1:ca:44:74:d4:12:db:1a:34:eb:
e9:7c:c3:95:28:db:e1:eb:69:5a:0b:d0:dd:47:b7:29:1f:09:
f6:bb:d8:80:98:9e:2e:b1:2c:2c:01:78:9c:96:1c:9e:a6:a8:
04:ca:f0:a0:eb:37:28:57:7b:b7:b3:4d:cb:bb:48:57:2f:a2:
0f:d5:68:97:93:9e:3b:11:23:14:fa:ca:cf:12:87:d9:ed:93:
34:b3:ee:b9:bb:61:c6:36:25:07:45:88:18:d1:23:57:2a:b6:
f6:34:ca:72:36:d9:f5:ac:8a:d0:b8:47:8a:a2:2d:7e:6d:fb:
27:47:ef:53:06:69:f5:bb:c1:8d:a4:76:50:6f:3c:9a:9c:7c:
04:4f:70:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:22 2023 by rpki-client on console-ams.rpki-client.org