Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/iiGmEADtqAooZciMsGsie5HB1dY.roa
File: iiGmEADtqAooZciMsGsie5HB1dY.roa (raw, json)
Hash identifier: Xzw/C5kAzCjvoa7PEncAC1DuLcgAawWIVDGzH16skzE=
Subject key identifier: 8A:21:A6:10:00:ED:A8:0A:28:65:C8:8C:B0:6B:22:7B:91:C1:D5:D6
Certificate issuer: /CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Certificate serial: 0895CFA9
Authority key identifier: 0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/iiGmEADtqAooZciMsGsie5HB1dY.roa
Signing time: Thu 21 Apr 2022 09:09:52 +0000
ROA not before: Thu 21 Apr 2022 09:09:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212331
IP address blocks: 2a0f:607:1057::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144035753 (0x895cfa9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Validity
Not Before: Apr 21 09:09:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a21a61000eda80a2865c88cb06b227b91c1d5d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:2e:33:40:00:87:2c:e9:51:f4:a8:f5:08:c8:
9e:09:28:76:0e:f8:87:8f:81:4a:51:e2:da:63:0e:
6a:a9:03:a5:f5:0e:b0:21:94:40:76:c0:d0:f5:d5:
ac:f0:95:c1:be:7f:e8:4a:e8:dc:9f:58:25:96:3c:
bf:0b:2a:a4:98:e2:a2:a1:65:da:7a:3a:8c:2b:3b:
59:f8:95:e5:bc:b3:20:b2:ba:9f:53:72:cc:65:0f:
72:48:e9:3f:f5:17:93:db:37:7a:6b:aa:12:e6:69:
c6:6f:9d:28:fd:97:86:04:36:e6:b1:97:d5:b1:af:
72:9e:f7:ab:76:30:5f:24:d1:77:36:4c:25:e1:30:
3b:38:cb:89:0b:c2:7f:b6:da:99:e1:a4:a8:15:6b:
f4:ba:d4:05:fc:55:a5:a1:86:26:30:3f:58:c9:0d:
d5:a3:3a:8c:b9:18:9a:37:5d:1e:65:3e:01:9e:64:
94:4e:69:b4:f3:08:9a:92:8c:0b:2d:7a:d2:95:a6:
22:5c:82:aa:ab:45:4d:9e:e7:d5:6d:8f:a0:f6:08:
86:00:d9:81:9b:88:a8:f8:b6:e5:77:5f:a3:ca:95:
ee:5e:ae:a0:8e:31:f1:00:b5:69:81:98:52:cd:2a:
a5:ac:a2:b4:8f:d9:24:7b:b6:4b:ef:f6:e5:05:da:
cc:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:21:A6:10:00:ED:A8:0A:28:65:C8:8C:B0:6B:22:7B:91:C1:D5:D6
X509v3 Authority Key Identifier:
keyid:0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/iiGmEADtqAooZciMsGsie5HB1dY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:607:1057::/48
Signature Algorithm: sha256WithRSAEncryption
6a:c8:f5:f3:2b:92:a9:f9:f3:01:fd:21:c4:35:32:3b:91:37:
98:f0:63:24:dc:70:68:0e:bc:a5:94:e6:59:e1:e3:93:57:4f:
9b:1b:54:f2:7c:dc:77:0e:d7:58:3f:bd:9b:05:02:3b:a3:7d:
dc:f4:0a:00:d4:83:05:44:80:5f:40:b1:64:c5:ca:b2:8d:84:
c8:8b:42:24:47:b9:08:5d:23:7f:6b:a5:c9:ad:4c:3b:de:7b:
e7:f9:ae:29:1b:db:35:38:65:37:37:fb:fe:a4:1a:9a:6c:eb:
68:28:13:f5:99:89:6c:87:5f:3b:82:68:aa:5d:5e:fd:51:de:
c7:a6:78:eb:5b:1c:1f:c1:cf:3d:56:bc:8b:d1:f4:a6:83:95:
94:b9:11:5e:eb:b6:d2:7d:f6:eb:86:e6:f3:90:8b:48:77:c9:
11:81:0e:f8:94:0b:93:3b:01:21:e2:ac:38:95:f6:d9:39:bc:
c6:62:d5:8c:10:94:f5:dd:13:8a:35:53:ab:8b:bf:68:dd:bf:
3e:73:4c:af:e2:15:10:e2:c8:31:91:82:09:8c:38:56:cc:a1:
8f:03:d2:fa:88:5d:bf:de:e2:da:01:26:21:ae:79:38:a7:26:
f9:02:48:0c:37:58:15:f4:4c:73:e0:64:72:86:82:04:05:52:
d4:2a:61:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:22 2023 by rpki-client on console-ams.rpki-client.org