Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/ace18f-ed7c-479f-855d-e409260015ef/1/3c9pxGNBOC_gLvZZl3rHPoCitso.roa
File: 3c9pxGNBOC_gLvZZl3rHPoCitso.roa (raw, json)
Hash identifier: rno2et89PaTPclLqSmA4jzU/r9Hn+JVk9mxw0RINsDU=
Subject key identifier: DD:CF:69:C4:63:41:38:2F:E0:2E:F6:59:97:7A:C7:3E:80:A2:B6:CA
Certificate issuer: /CN=18e1732f2c80e3ea4d7279d252b874a6164c35b4
Certificate serial: 03FF65A3
Authority key identifier: 18:E1:73:2F:2C:80:E3:EA:4D:72:79:D2:52:B8:74:A6:16:4C:35:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GOFzLyyA4-pNcnnSUrh0phZMNbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/ace18f-ed7c-479f-855d-e409260015ef/1/3c9pxGNBOC_gLvZZl3rHPoCitso.roa
Signing time: Sat 01 Jan 2022 15:06:48 +0000
ROA not before: Sat 01 Jan 2022 15:06:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16262
IP address blocks: 2a0e:c147::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67069347 (0x3ff65a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18e1732f2c80e3ea4d7279d252b874a6164c35b4
Validity
Not Before: Jan 1 15:06:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ddcf69c46341382fe02ef659977ac73e80a2b6ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:9f:ac:e7:71:e6:5c:c8:19:e2:fe:1d:bd:ff:
8e:50:70:f1:41:98:75:2f:ac:85:0d:f5:c3:75:ac:
8c:58:1b:f1:06:55:11:de:a1:5d:56:c2:c3:d1:7a:
e3:ff:a7:fb:5e:6b:43:49:66:66:80:04:cd:42:71:
7f:50:5b:f2:6d:02:59:55:a0:22:d4:f3:6d:76:ff:
2b:70:22:b4:5b:35:3b:b4:8c:c4:2b:3b:94:3e:68:
e8:4e:b0:b9:1d:c4:7d:08:53:90:49:ab:d7:42:af:
c1:41:59:a4:0e:58:ce:6b:26:51:0f:3a:e7:1b:be:
91:64:20:e9:a4:65:c2:80:f8:eb:a6:5b:43:54:c0:
44:81:14:dc:77:b8:30:b3:d1:7f:13:3b:39:b9:81:
79:8d:de:05:56:b9:30:f0:8f:31:fa:1c:e6:ac:05:
19:73:30:07:ad:b2:31:f2:3c:7b:51:17:a2:30:b6:
0c:be:93:c4:a1:7f:e3:27:6e:63:f2:f8:b8:de:97:
8f:1e:be:1e:c1:2c:31:c7:9e:d2:92:6a:82:85:9d:
bd:2e:08:c6:7f:bb:ac:b2:63:53:8c:97:94:43:bf:
ed:28:20:9b:20:4b:40:5e:3d:8c:cb:f5:6a:28:2d:
1a:76:82:24:8d:d5:bb:b2:af:e2:23:21:be:f3:bc:
6c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:CF:69:C4:63:41:38:2F:E0:2E:F6:59:97:7A:C7:3E:80:A2:B6:CA
X509v3 Authority Key Identifier:
keyid:18:E1:73:2F:2C:80:E3:EA:4D:72:79:D2:52:B8:74:A6:16:4C:35:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GOFzLyyA4-pNcnnSUrh0phZMNbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ace18f-ed7c-479f-855d-e409260015ef/1/3c9pxGNBOC_gLvZZl3rHPoCitso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ace18f-ed7c-479f-855d-e409260015ef/1/GOFzLyyA4-pNcnnSUrh0phZMNbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:c147::/32
Signature Algorithm: sha256WithRSAEncryption
14:39:46:4b:66:3c:f5:9e:81:bb:d7:1b:d8:2f:9c:c2:e6:81:
18:9c:c3:92:dd:a8:90:6d:2d:1b:b7:2a:c4:21:a8:0a:37:d1:
13:97:1b:46:6f:e6:c9:8b:73:c1:f3:80:f6:6e:21:62:53:6d:
8b:40:2e:4e:db:90:2a:bc:b7:26:ed:8d:69:6f:c2:ff:b6:fa:
40:fa:c6:c3:ad:c2:88:d4:f6:56:6b:f2:f1:3f:bf:05:f6:12:
87:f3:9b:47:55:01:a6:77:3e:9a:53:f6:5a:d4:5e:4a:3e:1c:
f3:5c:69:09:e0:42:a9:eb:5a:f0:8f:25:ab:6d:1d:7a:23:62:
16:21:54:9f:45:44:df:60:33:7e:8c:a5:c2:61:7b:d8:4d:86:
1e:63:50:3e:fe:58:35:43:de:cb:64:04:7b:f4:ad:66:9e:52:
95:74:37:9d:1a:94:fe:0c:ae:ca:ed:fb:a6:0e:c8:e7:9c:21:
9c:46:08:0f:02:ee:0a:04:23:f6:18:eb:ac:73:b3:75:4a:ae:
58:40:75:d6:4f:73:23:67:d9:c3:5a:71:11:b5:a6:ca:06:fb:
d0:90:2e:05:1d:73:c9:ad:0a:08:b2:4d:04:1c:60:97:f4:8b:
c6:1a:0d:0f:3f:13:94:84:26:6d:59:41:7c:fe:ee:4a:ac:45:
fd:30:c7:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:58 2023 by rpki-client on console-fra.rpki-client.org