Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/2aab9a-fbe1-4f2a-a95d-ebc7043dbbdc/1/0L_RRq1yBGzsn0rMdgz_YS92eQI.roa
File: 0L_RRq1yBGzsn0rMdgz_YS92eQI.roa (raw, json)
Hash identifier: Xqok295gnsxYUaqsjGy03D0zzHxOLBjCmZSZhPC3nCk=
Subject key identifier: D0:BF:D1:46:AD:72:04:6C:EC:9F:4A:CC:76:0C:FF:61:2F:76:79:02
Certificate issuer: /CN=e93114001872fabc939db6bedc1e6cd691462117
Certificate serial: 018413A59F79419366A09E0726A3ABC1B266
Authority key identifier: E9:31:14:00:18:72:FA:BC:93:9D:B6:BE:DC:1E:6C:D6:91:46:21:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6TEUABhy-ryTnba-3B5s1pFGIRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/2aab9a-fbe1-4f2a-a95d-ebc7043dbbdc/1/0L_RRq1yBGzsn0rMdgz_YS92eQI.roa
Signing time: Wed 26 Oct 2022 09:35:32 +0000
ROA not before: Wed 26 Oct 2022 09:35:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207901
IP address blocks: 2a0f:5740::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:13:a5:9f:79:41:93:66:a0:9e:07:26:a3:ab:c1:b2:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e93114001872fabc939db6bedc1e6cd691462117
Validity
Not Before: Oct 26 09:35:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d0bfd146ad72046cec9f4acc760cff612f767902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:60:4c:33:19:b7:7c:2a:ad:8c:3f:a1:eb:c7:
40:5c:1f:09:d8:a5:dd:cb:73:01:3f:a0:9c:01:62:
df:c0:4e:cc:9d:a1:f7:51:49:26:4b:11:79:43:7f:
6d:ba:ee:d2:b6:0c:51:3a:fb:8f:15:39:21:2b:0d:
2a:cb:19:cd:d9:cb:92:2d:2e:85:87:66:68:f5:93:
8e:53:f0:e1:15:12:8d:38:e0:fb:4e:11:86:82:31:
99:8d:0b:dc:9e:e9:5d:f0:3a:c8:5a:88:78:62:ef:
36:43:cc:68:de:ea:01:54:37:a8:f6:2e:20:42:cd:
f9:f6:3e:8e:88:62:df:cc:fd:f3:40:7c:24:3a:ba:
36:34:74:d7:3b:20:a7:76:1d:9c:bc:2e:79:d7:91:
da:3b:1a:12:5c:d0:07:3b:d0:cd:22:a0:b2:09:97:
67:64:1d:06:38:52:e5:52:c4:de:a5:3e:aa:03:8e:
26:ef:6c:28:ff:34:d5:c9:a3:da:4d:ea:85:94:92:
43:c9:fd:96:85:32:c4:78:fb:88:30:5f:91:88:f1:
11:90:d2:0c:28:72:cc:3e:fd:93:af:e3:f3:d5:ba:
7b:81:d3:8f:7d:42:ba:7a:9f:e9:71:c0:34:31:e2:
72:d6:4d:18:76:16:8b:e0:fb:65:0d:2c:b7:80:5e:
76:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:BF:D1:46:AD:72:04:6C:EC:9F:4A:CC:76:0C:FF:61:2F:76:79:02
X509v3 Authority Key Identifier:
keyid:E9:31:14:00:18:72:FA:BC:93:9D:B6:BE:DC:1E:6C:D6:91:46:21:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6TEUABhy-ryTnba-3B5s1pFGIRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2aab9a-fbe1-4f2a-a95d-ebc7043dbbdc/1/0L_RRq1yBGzsn0rMdgz_YS92eQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2aab9a-fbe1-4f2a-a95d-ebc7043dbbdc/1/6TEUABhy-ryTnba-3B5s1pFGIRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5740::/29
Signature Algorithm: sha256WithRSAEncryption
12:7c:9b:5b:e7:82:84:6c:3a:57:be:6e:28:4c:fe:4c:b5:68:
38:c1:1c:77:b9:45:5a:ac:8b:c0:56:31:ac:a2:b9:2d:52:8b:
3c:87:77:1a:0c:ad:97:eb:c0:4d:68:02:6b:0f:34:0a:44:83:
17:cd:32:47:f9:ef:e9:b4:f0:d4:85:b8:87:85:dd:76:ea:74:
b5:3e:74:9f:df:c8:4d:2b:30:a5:3e:33:80:51:26:15:f3:2b:
96:ae:ae:e5:9e:c7:40:f3:fe:ec:30:2a:72:3c:fc:c3:2d:8b:
3d:d4:34:20:bf:2a:ea:09:5e:62:6f:25:34:c9:46:45:76:f2:
14:d1:88:f6:b8:56:ef:ab:8c:c5:9a:f5:e0:af:cd:0b:dc:04:
d0:ed:18:83:87:d5:71:4c:23:60:d0:4a:eb:df:b7:ca:d9:58:
68:c3:81:16:d3:c9:b9:66:a7:cb:e9:4f:52:3c:0a:40:5f:0d:
3b:18:e2:62:7e:be:a4:10:9f:55:fa:51:6c:a8:c4:ac:2b:6f:
e5:45:8b:b7:d2:fb:9a:9a:19:f6:de:02:e7:4d:fd:b3:af:da:
0a:33:e1:6d:70:95:bd:42:ad:38:75:b1:a2:fd:0d:39:6a:ae:
d8:40:af:61:13:c1:00:c9:06:93:c5:36:9e:69:61:03:28:86:
cb:82:8b:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:46 2023 by rpki-client on console-fra.rpki-client.org