Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/x9QnNflw_zIJELGmhFMBXCqVcwk.roa
File: x9QnNflw_zIJELGmhFMBXCqVcwk.roa (raw, json)
Hash identifier: ZmN7bsTXWg4wM77xaVt5UHyYsNXUEpKWTdC5t9xnRqY=
Subject key identifier: C7:D4:27:35:F9:70:FF:32:09:10:B1:A6:84:53:01:5C:2A:95:73:09
Certificate issuer: /CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Certificate serial: 089565DF
Authority key identifier: 0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/x9QnNflw_zIJELGmhFMBXCqVcwk.roa
Signing time: Thu 21 Apr 2022 09:09:52 +0000
ROA not before: Thu 21 Apr 2022 09:09:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212057
IP address blocks: 2a0f:607:1056::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144008671 (0x89565df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Validity
Not Before: Apr 21 09:09:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c7d42735f970ff320910b1a68453015c2a957309
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:eb:6e:0c:50:05:c0:bb:8d:8b:e8:b5:08:93:
4d:d9:6e:8a:0a:5b:fc:72:35:39:26:69:86:44:bc:
64:b7:f1:d7:7c:5e:b5:ad:e2:50:b0:62:f8:0e:5e:
e4:38:3f:4f:f1:7a:bd:b1:af:0e:c0:67:5e:85:da:
c3:a4:46:d8:16:3f:03:05:0e:dd:1d:10:9f:c7:04:
0a:42:58:ee:7e:16:ef:6a:38:f0:1d:5e:4b:a9:d0:
9d:ae:34:2c:f3:e3:ff:d2:78:27:c1:e8:9d:ac:eb:
5b:20:e6:ec:28:d5:85:d8:7f:5f:59:08:e9:35:41:
90:63:64:37:fa:ba:e7:65:3f:8f:d9:ee:3b:cd:56:
0e:41:ad:d1:4a:31:25:b9:b2:73:4b:0c:f3:a9:0e:
fb:bf:b6:4b:b7:09:a1:fe:95:ab:22:94:a4:70:d0:
9e:49:67:f3:07:79:51:8a:3f:8e:39:bc:2f:56:7d:
ed:59:89:ea:0d:a1:83:49:9d:f6:f3:96:0e:6f:a0:
c4:7e:a1:ae:82:b7:4c:a0:f0:25:5a:ed:5e:03:1d:
a0:29:e6:47:f6:d6:8a:98:aa:de:cd:75:07:af:51:
86:0e:36:20:97:cd:e1:56:95:16:fd:9d:14:91:9f:
de:5a:0b:01:7a:f0:d7:bb:dc:70:eb:a2:e2:6a:ff:
08:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:D4:27:35:F9:70:FF:32:09:10:B1:A6:84:53:01:5C:2A:95:73:09
X509v3 Authority Key Identifier:
keyid:0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/x9QnNflw_zIJELGmhFMBXCqVcwk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:607:1056::/48
Signature Algorithm: sha256WithRSAEncryption
40:38:c5:a7:a9:11:32:4c:c8:6a:3e:24:14:cf:8a:78:86:1b:
e2:fc:ab:17:55:fa:88:2f:49:f8:d7:7a:57:d6:db:94:04:9c:
0d:a5:6d:e8:0f:5a:ee:97:e8:d0:cb:b2:66:6a:3b:af:d3:55:
e0:66:c1:c5:9e:ce:c1:4b:e8:76:cd:17:a3:1d:ed:b6:36:62:
59:8e:68:c8:b6:d1:c4:60:85:c5:8c:60:1d:e7:12:0b:1e:6e:
9d:39:64:4d:2f:c9:d9:7c:a3:78:0a:cd:47:44:dd:b1:0a:f6:
b1:ac:fc:1c:c6:ec:c9:e6:2f:0d:37:8c:22:54:7d:a9:14:88:
69:17:34:96:26:da:fa:e3:f9:b5:0b:d9:98:91:66:3a:b5:6e:
f8:3f:bf:5b:a9:7e:f8:d7:0d:e4:db:ae:32:f0:83:98:6c:4c:
57:84:00:10:2d:19:04:4e:d8:cf:8c:ca:6f:a8:50:22:30:67:
55:28:e1:8f:9c:b6:8f:5e:ea:c9:bf:63:c4:92:09:3d:ec:ab:
dd:39:41:f7:54:3a:bc:ed:22:f9:56:9e:65:87:97:12:75:11:
df:3e:42:34:8d:6f:c2:6a:21:09:f9:68:b3:29:31:da:46:94:
f4:fe:fa:f0:bf:10:ef:b9:c5:45:44:8c:f5:f8:74:06:7b:3b:
a6:9c:9b:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:28 2023 by rpki-client on console-fra.rpki-client.org