Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/uQ-U_MkNOjHXvViSlkWeN_79SYM.roa
File: uQ-U_MkNOjHXvViSlkWeN_79SYM.roa (raw, json)
Hash identifier: 9N1zc9ogzwW2bHpC0REhysSYE8BSWUwbsBg+BwKV/v4=
Subject key identifier: B9:0F:94:FC:C9:0D:3A:31:D7:BD:58:92:96:45:9E:37:FE:FD:49:83
Certificate issuer: /CN=d60f45f7cc4b691fd4a31c1f1c0b4f605d77a6ef
Certificate serial: 08F81BD4
Authority key identifier: D6:0F:45:F7:CC:4B:69:1F:D4:A3:1C:1F:1C:0B:4F:60:5D:77:A6:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1g9F98xLaR_UoxwfHAtPYF13pu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/uQ-U_MkNOjHXvViSlkWeN_79SYM.roa
Signing time: Fri 04 Mar 2022 13:37:45 +0000
ROA not before: Fri 04 Mar 2022 13:37:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212970
IP address blocks: 2a0e:e704:45::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150477780 (0x8f81bd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60f45f7cc4b691fd4a31c1f1c0b4f605d77a6ef
Validity
Not Before: Mar 4 13:37:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b90f94fcc90d3a31d7bd589296459e37fefd4983
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:51:ed:16:6e:96:0c:01:f6:6c:c0:58:19:01:
70:55:61:6f:5b:ac:2f:d8:8b:50:99:8b:6c:cf:13:
16:86:35:65:9f:0f:52:d3:05:24:ec:dc:1d:e3:f5:
30:98:06:fd:59:04:6e:9a:0d:27:b3:08:ed:28:92:
3a:53:0f:81:e5:d5:d9:21:0a:12:2c:72:13:7a:31:
ad:63:dc:9a:5d:be:d5:68:d9:6c:c4:b2:01:26:d6:
a2:4b:9e:27:25:78:99:d1:10:f0:4b:75:d2:84:3c:
68:f9:be:89:04:b2:fa:61:09:c8:c8:bb:28:48:ad:
2f:cb:16:2e:d8:7b:ce:7d:30:06:69:f9:e2:be:d7:
4b:a3:9e:ab:96:b0:ab:b0:87:1e:4c:55:a6:83:96:
3e:9d:ca:1d:e4:dc:87:cd:aa:61:a3:3a:8c:90:43:
51:db:1e:73:24:73:4d:68:8f:dc:57:0b:0e:47:ab:
44:aa:af:02:48:f9:5a:80:25:80:1d:0e:26:f4:34:
9f:17:22:2f:05:95:b4:29:00:5b:93:45:cc:44:8a:
c0:c3:04:08:f9:4e:63:fd:2c:40:d2:e7:7b:f0:dc:
f5:f4:0d:88:f7:4d:1c:1e:50:8d:81:84:ff:b1:85:
5c:c4:98:29:c3:2b:83:bd:15:f8:18:37:5f:ce:62:
d9:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:0F:94:FC:C9:0D:3A:31:D7:BD:58:92:96:45:9E:37:FE:FD:49:83
X509v3 Authority Key Identifier:
keyid:D6:0F:45:F7:CC:4B:69:1F:D4:A3:1C:1F:1C:0B:4F:60:5D:77:A6:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1g9F98xLaR_UoxwfHAtPYF13pu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/uQ-U_MkNOjHXvViSlkWeN_79SYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/1g9F98xLaR_UoxwfHAtPYF13pu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:e704:45::/48
Signature Algorithm: sha256WithRSAEncryption
1e:65:26:92:2d:ba:c1:e7:5f:68:bd:88:6e:cd:07:b9:19:1e:
82:a1:9c:4b:a5:09:2f:2b:db:c6:2c:b3:b1:44:4c:e8:7f:a8:
be:66:10:71:d9:a2:c4:46:e0:34:f9:ab:ae:fa:20:de:41:b0:
49:05:75:2d:cc:75:be:e6:20:dd:19:34:bd:ec:34:44:8b:7f:
c2:28:fe:47:a8:5f:a1:fc:76:b8:a0:b6:fd:52:db:35:48:a1:
e7:f4:9d:99:d4:f2:a9:ff:c5:91:82:4e:79:fa:83:a8:f0:5a:
c3:89:87:ff:12:35:9e:cc:7c:69:b9:37:db:0e:48:be:d4:d8:
54:af:cf:e6:1e:97:92:a5:30:2b:28:8a:5e:98:33:49:a3:4e:
66:71:ae:19:3b:d4:df:5a:b5:33:a3:59:7c:67:df:ec:28:1a:
d6:83:5f:3c:04:7b:38:6c:32:9c:e9:e7:31:bc:af:eb:1c:a1:
18:89:c5:07:e5:a6:4f:89:b4:78:a3:ba:33:04:f1:30:da:ba:
5a:0b:d7:c1:b7:30:0a:f4:90:fe:37:bf:5f:d4:8d:d3:33:26:
b9:36:71:59:48:7d:55:60:5e:ee:78:5a:0e:cd:e4:ea:15:80:
e2:34:4e:65:10:6c:59:5e:4e:be:71:79:fa:ea:44:a3:e2:6c:
86:09:16:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:15 2023 by rpki-client on console-ams.rpki-client.org