Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/431105-67a2-49cb-b7e0-83ffc80073b2/1/l9VyRrevwrI3uAuOBp5M9Ouv5Io.roa
File: l9VyRrevwrI3uAuOBp5M9Ouv5Io.roa (raw, json)
Hash identifier: UzUnkd1mh3id860I9H93IAHhlk+2f8ErxvnoqpYQ9Xs=
Subject key identifier: 97:D5:72:46:B7:AF:C2:B2:37:B8:0B:8E:06:9E:4C:F4:EB:AF:E4:8A
Certificate issuer: /CN=ecbbf2ba5b32e42e8b6c03b836d764f975b5898f
Certificate serial: 04AFF2F2
Authority key identifier: EC:BB:F2:BA:5B:32:E4:2E:8B:6C:03:B8:36:D7:64:F9:75:B5:89:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Lvyulsy5C6LbAO4Ntdk-XW1iY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/431105-67a2-49cb-b7e0-83ffc80073b2/1/l9VyRrevwrI3uAuOBp5M9Ouv5Io.roa
Signing time: Sat 01 Jan 2022 15:04:10 +0000
ROA not before: Sat 01 Jan 2022 15:04:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212874
IP address blocks: 2a0c:fb00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78639858 (0x4aff2f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ecbbf2ba5b32e42e8b6c03b836d764f975b5898f
Validity
Not Before: Jan 1 15:04:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97d57246b7afc2b237b80b8e069e4cf4ebafe48a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:0c:b2:19:b7:f4:67:21:77:14:62:dd:88:5a:
60:8f:51:37:17:0b:4f:4d:e0:4a:c4:5b:1e:28:90:
b2:c8:cc:75:74:74:19:25:6c:0d:23:48:24:bf:e0:
ba:24:9b:48:69:ce:05:cb:55:ed:a3:d4:01:0f:5b:
e5:a2:4a:5e:54:00:7b:b1:00:fe:88:7c:2b:93:e2:
a9:be:dc:85:39:cc:37:8e:1b:25:57:3c:7e:3f:d6:
ff:fa:04:7e:98:91:0d:49:28:e3:6c:87:98:ef:4f:
a1:0c:78:cd:01:2f:06:40:9c:86:8e:c1:5f:e1:9c:
84:df:6e:a0:66:b9:35:81:b2:13:16:e8:76:7d:65:
8a:66:53:2d:d8:22:67:e4:01:d0:f6:92:16:e4:af:
28:22:a4:94:b8:01:f0:bb:99:f1:61:b7:be:3b:3e:
60:85:e1:e7:f4:1e:33:4a:c0:57:d5:a2:cd:1d:34:
07:21:d3:b8:15:51:e9:d3:c9:bc:78:20:5b:c0:c1:
93:da:aa:a1:40:cb:87:1d:fd:89:20:b6:fd:94:ed:
19:ac:05:db:9b:c7:2e:c2:c9:ea:74:ce:7a:25:3e:
de:ec:6a:65:b9:14:bb:59:37:7c:ba:08:09:b3:39:
7f:32:28:e9:73:a7:f6:e1:4e:03:7e:0c:77:68:23:
bd:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:D5:72:46:B7:AF:C2:B2:37:B8:0B:8E:06:9E:4C:F4:EB:AF:E4:8A
X509v3 Authority Key Identifier:
keyid:EC:BB:F2:BA:5B:32:E4:2E:8B:6C:03:B8:36:D7:64:F9:75:B5:89:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Lvyulsy5C6LbAO4Ntdk-XW1iY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/431105-67a2-49cb-b7e0-83ffc80073b2/1/l9VyRrevwrI3uAuOBp5M9Ouv5Io.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/431105-67a2-49cb-b7e0-83ffc80073b2/1/7Lvyulsy5C6LbAO4Ntdk-XW1iY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:fb00::/29
Signature Algorithm: sha256WithRSAEncryption
73:5e:f2:37:cc:51:c7:22:4e:0e:29:db:0d:fd:b2:6a:ef:31:
5f:00:93:78:a0:7f:b6:57:f0:c6:33:57:aa:84:88:24:90:a2:
12:19:f6:d8:87:01:1d:8c:97:61:a1:52:8e:55:e9:c1:a5:1d:
04:aa:49:95:b0:a1:d5:4c:88:f7:16:24:66:a8:1d:97:e4:54:
ee:41:50:42:59:07:0b:bb:39:e6:c5:6a:13:ed:56:82:e2:d3:
8b:47:a0:7d:60:b6:a1:23:fb:d4:9a:24:3c:d4:b6:7e:a4:8b:
9d:3b:35:9e:5d:42:47:f6:14:1e:96:e9:45:40:ee:05:30:7a:
42:66:aa:b9:75:b4:63:9c:a4:f3:c2:c5:a0:6f:50:18:af:86:
58:16:d5:62:e8:d7:65:55:9a:86:39:09:99:57:77:77:4d:90:
ed:f7:57:c9:79:f8:82:d1:a2:89:5d:7d:6a:7a:3b:b2:df:57:
13:2f:32:53:42:b3:e3:be:2b:02:8d:54:38:45:cc:53:2c:e1:
cb:ca:60:89:8a:cb:74:08:aa:d0:08:f2:75:74:a6:6a:74:de:
c3:d4:af:61:71:b7:90:90:87:87:3a:6f:4d:83:92:a2:82:87:
5d:92:6b:c0:26:c4:02:92:e6:95:69:09:4a:84:d0:25:d8:44:
14:a0:1f:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:24 2023 by rpki-client on console-ams.rpki-client.org