Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/266caf-3b43-49e0-b6e1-9c174e53e4fe/1/05kfD7Zb5ibPDEqyzFa_wti8Fg0.roa
File: 05kfD7Zb5ibPDEqyzFa_wti8Fg0.roa (raw, json)
Hash identifier: kaCajVl4bIS071qOgSbHrKpA4i5WB99zlQd7t/IszTE=
Subject key identifier: D3:99:1F:0F:B6:5B:E6:26:CF:0C:4A:B2:CC:56:BF:C2:D8:BC:16:0D
Certificate issuer: /CN=1045dacc837798c3e6cf31f4d27946a33b0de661
Certificate serial: 2B1A50C0
Authority key identifier: 10:45:DA:CC:83:77:98:C3:E6:CF:31:F4:D2:79:46:A3:3B:0D:E6:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EEXazIN3mMPmzzH00nlGozsN5mE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/266caf-3b43-49e0-b6e1-9c174e53e4fe/1/05kfD7Zb5ibPDEqyzFa_wti8Fg0.roa
Signing time: Thu 21 Apr 2022 09:41:19 +0000
ROA not before: Thu 21 Apr 2022 09:41:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212414
IP address blocks: 2a02:d0c2:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 723144896 (0x2b1a50c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1045dacc837798c3e6cf31f4d27946a33b0de661
Validity
Not Before: Apr 21 09:41:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3991f0fb65be626cf0c4ab2cc56bfc2d8bc160d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:1c:8a:09:a9:a5:22:72:17:65:46:73:5c:26:
93:07:59:6a:ec:89:af:85:e3:5d:ce:ee:86:4b:c9:
6d:e1:16:1a:8b:53:99:51:ca:40:2c:0a:40:14:9d:
a4:54:87:3a:ba:59:a8:69:7c:22:74:8c:15:d6:e6:
93:2d:4a:a9:96:77:a2:ae:36:7a:fa:c1:5a:dc:a3:
58:56:88:c0:22:5e:85:9f:9a:5f:30:cf:28:af:65:
26:9c:07:9b:b6:62:2d:8a:38:18:72:d5:f3:77:ef:
0e:8b:87:f0:44:a6:49:95:93:39:43:97:f0:c5:cf:
59:f8:54:39:3f:15:c8:35:90:0a:73:5c:e0:a9:6d:
d1:46:eb:14:17:6e:3f:e7:8c:7a:f6:a6:06:bc:1a:
87:0d:ff:34:5a:14:05:e0:e8:e4:e1:6a:a1:6d:53:
7f:76:b6:4a:9b:a4:16:d1:2c:e5:16:f8:48:8d:00:
e4:8c:06:70:1f:1c:94:d5:76:10:58:d6:dc:ed:79:
af:8c:e9:e5:f6:40:19:01:b0:d8:83:c2:12:2a:9a:
5d:1a:12:60:84:11:4b:01:cb:23:9b:3f:a9:82:9a:
b7:ad:3a:14:80:c8:3b:32:6f:0e:b7:52:8a:86:95:
25:22:67:07:b4:1a:89:7b:3b:8d:da:ee:d6:aa:a4:
92:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:99:1F:0F:B6:5B:E6:26:CF:0C:4A:B2:CC:56:BF:C2:D8:BC:16:0D
X509v3 Authority Key Identifier:
keyid:10:45:DA:CC:83:77:98:C3:E6:CF:31:F4:D2:79:46:A3:3B:0D:E6:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EEXazIN3mMPmzzH00nlGozsN5mE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/266caf-3b43-49e0-b6e1-9c174e53e4fe/1/05kfD7Zb5ibPDEqyzFa_wti8Fg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/266caf-3b43-49e0-b6e1-9c174e53e4fe/1/EEXazIN3mMPmzzH00nlGozsN5mE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:d0c2:2::/48
Signature Algorithm: sha256WithRSAEncryption
4c:ff:cb:7f:0c:5f:2e:83:65:6d:e5:28:1a:9e:36:81:41:58:
88:f8:55:74:fd:f0:4b:0f:a0:6c:65:7b:e5:19:38:05:f6:d3:
99:d6:62:d4:46:ff:a8:51:0a:b6:d0:42:de:28:c3:f5:49:d5:
c2:21:e2:67:03:20:6a:8d:18:d5:bb:d6:5f:bb:1e:e7:c2:d4:
78:59:40:31:41:a2:61:07:1d:fe:4a:2e:71:c8:4a:29:0a:88:
92:ae:5e:00:ad:d2:f7:86:6d:00:43:fd:36:70:50:20:ff:04:
d6:df:82:42:bc:9f:57:7d:11:8c:a1:04:ba:9a:af:77:23:8f:
d2:c3:bd:33:d4:26:a1:9e:7e:ec:93:71:ce:ca:af:15:e3:b1:
40:e7:57:4a:07:2c:d0:36:6d:9e:08:52:ea:a0:ee:f0:b1:a5:
48:d5:e6:01:39:f6:3e:7f:02:3a:9a:a2:06:65:50:8c:81:f9:
fe:53:d7:ee:77:76:bc:47:2a:30:78:de:86:dc:db:96:5f:f0:
f0:41:78:9d:57:12:ce:11:9f:4b:c0:b0:4f:56:a3:21:80:e5:
e0:79:9f:cf:cc:8d:d2:1c:57:86:5a:8b:69:c2:6c:bd:8b:65:
2c:0a:3c:9e:f9:a5:9a:75:7a:e4:67:64:e4:22:39:37:28:f4:
bf:87:34:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:13 2023 by rpki-client on console-ams.rpki-client.org