Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/266caf-3b43-49e0-b6e1-9c174e53e4fe/1/EA7a0JBRhqVVVSGY-oa1_cJIzds.roa
File: EA7a0JBRhqVVVSGY-oa1_cJIzds.roa (raw, json)
Hash identifier: yY2AJzP2ccHGMgtFBvMWiKTaorw9LXzJZNilNSLzk7A=
Subject key identifier: 10:0E:DA:D0:90:51:86:A5:55:55:21:98:FA:86:B5:FD:C2:48:CD:DB
Certificate issuer: /CN=1045dacc837798c3e6cf31f4d27946a33b0de661
Certificate serial: 29F22066
Authority key identifier: 10:45:DA:CC:83:77:98:C3:E6:CF:31:F4:D2:79:46:A3:3B:0D:E6:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EEXazIN3mMPmzzH00nlGozsN5mE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/266caf-3b43-49e0-b6e1-9c174e53e4fe/1/EA7a0JBRhqVVVSGY-oa1_cJIzds.roa
Signing time: Sat 01 Jan 2022 13:54:27 +0000
ROA not before: Sat 01 Jan 2022 13:54:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200557
IP address blocks: 2a02:d0c2:2::/48 maxlen: 48
2a02:ec41::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 703733862 (0x29f22066)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1045dacc837798c3e6cf31f4d27946a33b0de661
Validity
Not Before: Jan 1 13:54:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=100edad0905186a555552198fa86b5fdc248cddb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:79:69:5f:01:29:cc:e8:6a:1b:a6:47:85:88:
0a:fb:37:de:9f:1f:bc:de:0a:c4:6c:1a:f7:9f:a2:
f0:eb:08:78:24:73:c8:80:f8:77:b0:a5:75:be:b4:
f6:85:af:85:e5:0d:e6:d3:1b:68:df:0b:45:d1:30:
ba:62:f6:69:60:44:3e:c4:f5:eb:0d:da:34:9f:c2:
63:67:40:fd:4f:1e:46:79:f3:b9:d8:98:af:bd:58:
e8:24:2d:ce:2f:91:47:0b:30:4c:69:be:6c:df:c8:
10:8a:0c:e3:99:7c:b6:0b:73:0c:5e:82:3a:d4:66:
8c:03:70:99:75:ed:da:50:8b:c3:ac:0e:04:7c:f1:
6c:aa:1e:c9:46:db:1e:a5:9c:7c:8d:ff:4a:20:48:
7b:58:b2:9d:be:51:c9:37:cb:18:00:cf:af:ee:ff:
bf:b5:9d:54:52:20:19:d0:af:4d:44:bb:57:2d:ed:
15:e9:60:b1:9b:64:c0:86:03:5b:fe:2e:70:32:ff:
db:0c:7f:7c:3a:7d:59:59:14:67:49:2a:c6:8e:2d:
6c:3e:d1:25:bf:9f:58:2b:6f:98:f6:18:1d:e0:71:
af:b7:54:85:92:af:b7:8b:0a:79:44:4c:f1:75:d9:
e5:cc:85:a7:51:1d:fd:ad:a8:f6:37:9a:3b:d2:60:
86:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:0E:DA:D0:90:51:86:A5:55:55:21:98:FA:86:B5:FD:C2:48:CD:DB
X509v3 Authority Key Identifier:
keyid:10:45:DA:CC:83:77:98:C3:E6:CF:31:F4:D2:79:46:A3:3B:0D:E6:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EEXazIN3mMPmzzH00nlGozsN5mE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/266caf-3b43-49e0-b6e1-9c174e53e4fe/1/EA7a0JBRhqVVVSGY-oa1_cJIzds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/266caf-3b43-49e0-b6e1-9c174e53e4fe/1/EEXazIN3mMPmzzH00nlGozsN5mE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:d0c2:2::/48
2a02:ec41::/48
Signature Algorithm: sha256WithRSAEncryption
21:7f:0c:09:25:78:f0:09:cb:2f:26:10:8e:63:71:df:92:54:
26:6f:34:08:1e:13:18:17:97:53:86:0b:79:29:c7:b6:52:ff:
bc:de:1a:12:75:c8:8c:66:b7:99:7b:1b:c1:5a:dc:30:0f:41:
46:33:39:3e:51:82:4f:7f:77:b6:ef:14:1d:ba:42:b6:a0:85:
4f:b6:41:cb:ba:b3:61:da:b4:9f:e0:bb:ff:70:f7:d5:54:a3:
5b:10:b5:14:4e:ff:df:42:c9:a9:a6:07:4c:9b:11:74:ba:73:
6a:d7:48:28:16:ef:ec:0d:f2:ba:79:4d:c9:2a:f3:67:3e:07:
b1:b0:da:ee:d8:7f:3d:67:8a:87:a3:c3:f2:dc:ae:e4:00:eb:
77:10:06:36:65:06:dc:4c:17:8b:be:22:e6:a0:73:65:8c:a7:
a5:e9:18:a2:2a:78:f1:96:b0:f8:3b:44:54:c4:7b:92:60:ac:
9b:e5:19:6b:c5:a1:f0:c3:95:4f:33:b8:fc:c7:17:67:e2:75:
0d:4c:e6:8e:77:c2:3b:3e:16:c1:01:70:b0:b1:a2:28:95:d4:
b6:a8:2f:2c:0a:ca:6c:d0:8e:d6:2e:a0:c1:13:14:ce:ca:52:
fb:ca:fa:36:e4:d3:0e:f6:05:6f:26:96:08:dc:c5:d6:51:5b:
c7:79:1f:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:13 2023 by rpki-client on console-ams.rpki-client.org