Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/a604cf-1947-4b12-9a6b-3eb9134ec79d/1/TAm6GQBvKLSRNa7z8AaqXxru8Ac.roa
File: TAm6GQBvKLSRNa7z8AaqXxru8Ac.roa (raw, json)
Hash identifier: Adn26vB+qKf7aMe6Thr/RaaWlXySK3iObEi2B/VRruo=
Subject key identifier: 4C:09:BA:19:00:6F:28:B4:91:35:AE:F3:F0:06:AA:5F:1A:EE:F0:07
Certificate issuer: /CN=e390f2ee0a70bcaefe0195a3d8b377d34297a943
Certificate serial: 1A528B45
Authority key identifier: E3:90:F2:EE:0A:70:BC:AE:FE:01:95:A3:D8:B3:77:D3:42:97:A9:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/45Dy7gpwvK7-AZWj2LN300KXqUM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/a604cf-1947-4b12-9a6b-3eb9134ec79d/1/TAm6GQBvKLSRNa7z8AaqXxru8Ac.roa
Signing time: Sat 01 Jan 2022 10:59:17 +0000
ROA not before: Sat 01 Jan 2022 10:59:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206583
IP address blocks: 2a04:71c4::/32 maxlen: 32
2a04:71c3::/32 maxlen: 32
2a04:71c7::/32 maxlen: 32
2a04:71c2::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 441617221 (0x1a528b45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e390f2ee0a70bcaefe0195a3d8b377d34297a943
Validity
Not Before: Jan 1 10:59:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c09ba19006f28b49135aef3f006aa5f1aeef007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:c0:21:b3:12:74:9a:25:c2:38:07:95:92:35:
6b:a7:b7:d1:51:da:f0:2d:b5:3a:7c:f1:1a:11:90:
34:a9:95:c7:1e:0e:df:ea:c5:8e:27:8e:7e:93:4f:
06:34:e1:ed:47:de:88:a2:d1:f9:ed:c0:fd:f8:e6:
3d:ba:76:e0:7e:54:a0:d7:14:fa:9e:6d:c2:5c:0b:
4b:95:4e:63:a7:8e:ee:41:d2:46:ec:84:88:a7:81:
f7:03:f3:25:2d:8b:ff:8d:93:10:71:5f:49:b1:7e:
da:12:f0:35:d9:16:86:e4:53:47:46:a8:40:37:67:
d1:50:d2:23:80:01:e9:00:15:8b:f5:46:6d:e5:94:
4b:1e:89:eb:42:bd:03:7d:38:e6:97:7c:63:9a:de:
f1:6e:f2:21:d8:0d:f9:36:f0:cb:17:58:d1:1a:d5:
35:f1:cf:ba:e3:e9:d8:97:0e:09:b4:5b:80:39:d2:
ac:e8:27:6b:66:b4:f7:62:c0:2a:a3:6b:32:6e:53:
93:06:58:9d:58:93:11:7d:7e:71:97:5e:10:66:9f:
a3:21:8e:9a:35:1b:81:2b:bf:e4:e8:be:ce:f2:50:
3e:18:75:c5:95:b4:82:ba:c1:2e:ce:07:30:42:a4:
ec:ad:99:59:9b:34:1b:aa:b9:f7:c6:9a:9d:58:9d:
d0:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:09:BA:19:00:6F:28:B4:91:35:AE:F3:F0:06:AA:5F:1A:EE:F0:07
X509v3 Authority Key Identifier:
keyid:E3:90:F2:EE:0A:70:BC:AE:FE:01:95:A3:D8:B3:77:D3:42:97:A9:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/45Dy7gpwvK7-AZWj2LN300KXqUM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/a604cf-1947-4b12-9a6b-3eb9134ec79d/1/TAm6GQBvKLSRNa7z8AaqXxru8Ac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/a604cf-1947-4b12-9a6b-3eb9134ec79d/1/45Dy7gpwvK7-AZWj2LN300KXqUM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:71c2::-2a04:71c4:ffff:ffff:ffff:ffff:ffff:ffff
2a04:71c7::/32
Signature Algorithm: sha256WithRSAEncryption
03:7d:af:41:07:70:20:2b:a1:00:23:e5:27:93:c6:de:b8:d4:
d5:fe:8e:d4:41:93:13:a8:f5:60:15:e3:e5:d9:8a:5b:ba:60:
48:cc:bb:89:3e:f3:b2:cb:f7:40:42:80:11:de:62:b5:e0:d6:
18:33:24:48:87:12:a3:4d:ff:38:a3:87:d2:3b:6b:cb:b5:5d:
a0:0c:13:a7:f2:4f:96:e2:5f:09:84:86:d5:88:4b:dd:81:88:
35:14:44:9a:59:3c:91:49:52:78:47:20:05:0d:bf:e0:06:cb:
1b:18:d8:21:30:ac:47:dd:32:85:d4:f2:ee:63:c6:99:a5:04:
cc:1f:0e:57:59:fe:fd:fc:23:ed:2f:7b:d3:77:a2:17:78:12:
7e:b7:3a:5b:63:89:74:42:b1:be:1c:0a:d2:b4:f8:a6:75:af:
95:f2:b9:aa:91:0b:fc:4e:e4:1a:dc:32:a9:6c:68:bf:4d:b0:
6a:67:d5:4e:8d:8a:1c:e8:8a:19:fa:25:4a:56:a8:8d:ed:b6:
d0:59:fd:02:00:0c:c2:29:48:59:b7:d9:43:c0:9d:a4:07:1d:
bb:d8:a2:ef:44:3c:93:81:f5:34:32:47:31:c8:c3:6f:72:6f:
90:88:c0:77:9f:6b:39:8e:d2:4f:31:c1:56:d3:c3:eb:6f:22:
05:cf:7e:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:25 2023 by rpki-client on console-ams.rpki-client.org