Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/9ef60a-73ee-40e1-9006-c0b3b0f54beb/1/aaE-hRX63oYRU1JI9R16-ZJs6OY.roa
File: aaE-hRX63oYRU1JI9R16-ZJs6OY.roa (raw, json)
Hash identifier: 0Ra9mWkNExcd+DYO7GR7hmn0rffq88AOt/TOmGbCVf0=
Subject key identifier: 69:A1:3E:85:15:FA:DE:86:11:53:52:48:F5:1D:7A:F9:92:6C:E8:E6
Certificate issuer: /CN=e465acc90809efb45ccda250a1057618494b86eb
Certificate serial: 0183371DE7A5A44837AAF01C9B25EA51C5C8
Authority key identifier: E4:65:AC:C9:08:09:EF:B4:5C:CD:A2:50:A1:05:76:18:49:4B:86:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5GWsyQgJ77RczaJQoQV2GElLhus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/9ef60a-73ee-40e1-9006-c0b3b0f54beb/1/aaE-hRX63oYRU1JI9R16-ZJs6OY.roa
Signing time: Tue 13 Sep 2022 13:50:50 +0000
ROA not before: Tue 13 Sep 2022 13:50:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5408
IP address blocks: 2a07:8504:1a0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:37:1d:e7:a5:a4:48:37:aa:f0:1c:9b:25:ea:51:c5:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e465acc90809efb45ccda250a1057618494b86eb
Validity
Not Before: Sep 13 13:50:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69a13e8515fade8611535248f51d7af9926ce8e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:53:cf:fd:90:bd:6a:79:42:bd:fc:06:03:d0:
62:cb:2a:0a:da:0a:db:82:7c:89:9d:49:d4:dc:5b:
98:15:36:83:23:6f:c3:cc:5b:0f:2c:8e:e9:c7:be:
28:18:b0:5e:bd:58:01:5b:37:9a:d8:0d:83:a0:e4:
3b:2c:50:3d:42:d5:07:11:bc:8c:73:76:cc:ba:47:
6b:9d:64:75:05:81:3f:00:81:74:fc:76:84:7c:c1:
5b:af:8a:92:7e:a3:a7:0e:f0:29:07:03:1d:73:ea:
f9:ae:fb:da:f1:16:8c:97:a4:43:73:27:c2:4b:42:
e8:72:3f:bb:93:47:2a:7c:9c:9e:4b:96:3f:78:f0:
57:0b:20:5a:5b:0e:c1:b0:26:aa:72:8c:54:95:3a:
ad:a6:c8:96:ef:e3:13:d1:bb:cc:c5:5f:c0:d6:04:
44:08:66:1b:c6:86:c3:92:2b:0f:5d:11:eb:fd:d9:
93:a3:6e:d2:46:0d:1d:a5:02:dd:a4:b5:96:74:9f:
8c:38:a0:b3:9b:85:a3:3c:71:08:74:99:ee:23:2d:
fb:fd:ab:a1:57:ce:d8:7c:db:a5:09:d7:db:ec:23:
bc:d0:e2:c8:36:d0:a9:1e:f5:00:0a:71:21:3d:ed:
de:ef:74:e8:74:6c:e5:23:6d:e6:5a:bb:68:fd:61:
55:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:A1:3E:85:15:FA:DE:86:11:53:52:48:F5:1D:7A:F9:92:6C:E8:E6
X509v3 Authority Key Identifier:
keyid:E4:65:AC:C9:08:09:EF:B4:5C:CD:A2:50:A1:05:76:18:49:4B:86:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5GWsyQgJ77RczaJQoQV2GElLhus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/9ef60a-73ee-40e1-9006-c0b3b0f54beb/1/aaE-hRX63oYRU1JI9R16-ZJs6OY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/9ef60a-73ee-40e1-9006-c0b3b0f54beb/1/5GWsyQgJ77RczaJQoQV2GElLhus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:8504:1a0::/48
Signature Algorithm: sha256WithRSAEncryption
7d:5d:2a:2d:0c:05:35:cc:f6:c2:98:7d:b5:7f:31:aa:77:61:
3c:7d:72:a7:c9:94:95:7a:56:83:fb:de:0b:cb:3d:2e:2e:9f:
8d:19:25:73:15:e4:6f:6e:ba:e4:e5:be:9e:f5:b6:77:00:37:
72:61:17:6d:44:80:d4:cc:d3:ef:dd:8b:58:16:9b:89:22:62:
58:28:47:6f:1e:01:ec:6e:fc:76:e1:09:fc:7d:d3:15:4e:18:
0b:57:76:e7:07:ff:bc:22:e5:50:3f:92:51:6f:c3:47:e7:49:
56:bc:8b:e9:88:06:4c:a0:31:b5:24:45:4e:26:31:e9:d7:aa:
62:6e:74:7e:39:b9:09:b1:e5:91:67:55:8c:54:42:5b:b7:f8:
ba:2b:cd:eb:96:0a:32:09:bd:ab:08:2c:98:c5:f7:ee:77:de:
de:a7:68:4d:36:b8:e8:30:28:55:6a:49:47:83:49:74:60:3d:
3b:55:f6:96:e2:84:73:ad:e0:5b:61:68:a4:b5:9c:fd:03:8a:
f7:c4:17:c5:9d:1d:4c:97:8c:a5:5a:28:b8:30:d6:38:38:ee:
24:d1:3a:c8:49:75:98:9a:6e:65:fd:40:52:2b:ac:5e:d6:2e:
ac:23:31:13:3b:f5:2a:b2:a8:36:a9:86:6b:1b:ca:ca:26:32:
14:88:4d:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:10 2023 by rpki-client on console-fra.rpki-client.org