Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/EGQ-aogueAdba1LSWNIqfd3WFVk.roa
File: EGQ-aogueAdba1LSWNIqfd3WFVk.roa (raw, json)
Hash identifier: //EJehCkcmTGgLc/0SxzIguMrkdh6WtL/UNSU2alN+4=
Subject key identifier: 10:64:3E:6A:88:2E:78:07:5B:6B:52:D2:58:D2:2A:7D:DD:D6:15:59
Certificate issuer: /CN=d9fc0bec60d0bace1889677bd9bb90190cc4fd22
Certificate serial: 33FAEE2E
Authority key identifier: D9:FC:0B:EC:60:D0:BA:CE:18:89:67:7B:D9:BB:90:19:0C:C4:FD:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/EGQ-aogueAdba1LSWNIqfd3WFVk.roa
Signing time: Sat 01 Jan 2022 13:59:50 +0000
ROA not before: Sat 01 Jan 2022 13:59:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2613
IP address blocks: 2a02:2528:2613::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 872082990 (0x33faee2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9fc0bec60d0bace1889677bd9bb90190cc4fd22
Validity
Not Before: Jan 1 13:59:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=10643e6a882e78075b6b52d258d22a7dddd61559
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6c:38:db:d9:57:b6:82:f7:2b:c4:67:80:30:
6f:ba:cc:cd:81:42:70:a7:34:c1:82:c3:00:9d:50:
0d:b0:57:c1:e3:83:56:e6:4f:49:73:94:37:5c:3f:
3f:0c:86:a9:65:c3:6d:99:8d:76:0e:2a:33:30:aa:
d5:e4:d9:9f:c6:b8:1d:59:db:fb:9d:e3:5f:f4:e9:
f9:f2:04:e8:2e:a9:81:d6:12:74:e9:45:80:0c:86:
f4:3e:3d:81:65:3b:53:ac:92:5e:7b:0c:75:b2:e4:
5d:20:91:b6:a5:1b:b8:5b:ae:51:05:7e:7a:b4:20:
c9:80:aa:43:52:85:68:b1:55:3b:f1:00:a0:20:3c:
f7:c3:e1:e7:b9:b4:4f:a0:b5:ef:9b:ed:e5:80:58:
fd:36:d9:e8:4c:c0:3e:77:d6:94:4f:1a:ff:aa:0f:
51:63:dd:37:df:16:ac:a5:63:92:1b:09:be:e5:61:
e1:ea:2e:4b:8b:71:6b:1c:6d:14:64:c3:9f:24:ac:
fd:90:77:7c:25:7b:44:66:da:5e:b4:d6:ad:8b:e1:
cf:aa:de:57:1d:77:0d:4c:c4:57:e6:c6:25:be:7e:
76:7b:f7:e1:b7:fb:c2:60:78:28:72:12:a2:b2:80:
63:da:7e:e8:1f:0c:d8:1d:f6:ae:9f:e2:6f:85:ba:
a1:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:64:3E:6A:88:2E:78:07:5B:6B:52:D2:58:D2:2A:7D:DD:D6:15:59
X509v3 Authority Key Identifier:
keyid:D9:FC:0B:EC:60:D0:BA:CE:18:89:67:7B:D9:BB:90:19:0C:C4:FD:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/EGQ-aogueAdba1LSWNIqfd3WFVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:2528:2613::/48
Signature Algorithm: sha256WithRSAEncryption
43:a4:b9:6e:52:b0:ae:f5:b2:6e:1d:18:11:64:a4:e1:0d:f8:
62:78:fa:b5:2f:4a:bf:61:6f:00:7e:0b:18:9e:ec:39:39:f4:
3c:9e:6d:ee:27:1a:66:e6:d5:06:98:36:bb:ae:54:12:16:87:
60:27:79:08:d5:16:63:2f:ab:b5:b8:8d:a1:ab:16:cb:ec:35:
ba:db:8f:d8:c1:b3:43:63:a5:00:ad:1c:0d:79:0c:1b:94:48:
a1:c7:94:c3:16:12:ac:65:bf:ca:8b:02:a6:d1:cf:17:81:b8:
85:16:69:7f:52:5d:d3:c7:e0:71:b5:8f:f7:bc:8e:53:da:5c:
83:f2:63:c6:ab:0a:65:ab:13:0f:ba:2b:4f:ab:67:6d:26:40:
9a:e3:37:91:36:db:bf:e2:16:c0:0e:c7:bb:96:8d:61:57:50:
c9:0b:b0:d7:57:c6:4d:69:fa:5a:ca:3d:d1:7e:6d:8b:46:d4:
b8:9a:94:56:46:77:d1:47:da:e4:0f:87:16:23:8c:37:f4:a8:
11:29:bf:61:32:9a:28:fa:c3:54:59:bd:71:3e:0c:35:6b:01:
33:b8:4a:75:e7:c6:ee:f2:23:3b:00:4c:23:48:2c:64:5e:ad:
7c:70:3e:75:e2:77:1c:e0:07:80:9b:50:2d:47:e7:5f:f9:3c:
8d:6e:8e:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:43 2023 by rpki-client on console-ams.rpki-client.org