Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/gqM6V53ApT5-TpOo6Iucbd2SQCY.roa
File: gqM6V53ApT5-TpOo6Iucbd2SQCY.roa (raw, json)
Hash identifier: Sl3FvwT3B+n3GkFotfbatQRWDveenwHIlyLnxHwc4hw=
Subject key identifier: 82:A3:3A:57:9D:C0:A5:3E:7E:4E:93:A8:E8:8B:9C:6D:DD:92:40:26
Certificate issuer: /CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Certificate serial: 0183A9AF
Authority key identifier: C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/gqM6V53ApT5-TpOo6Iucbd2SQCY.roa
Signing time: Sat 01 Jan 2022 05:52:52 +0000
ROA not before: Sat 01 Jan 2022 05:52:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 2a10:3a80:e::/48 maxlen: 48
2a10:3a80:f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25405871 (0x183a9af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Validity
Not Before: Jan 1 05:52:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82a33a579dc0a53e7e4e93a8e88b9c6ddd924026
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:10:c5:f1:9d:dd:96:4a:73:d6:dd:f8:36:60:
de:2f:bb:c4:b7:1e:66:d7:b6:70:c3:c4:16:33:e8:
49:15:ab:ee:fd:2a:24:03:2f:23:45:7a:d3:a5:61:
09:da:92:60:0f:9e:6d:57:73:e3:7d:3f:f5:3e:a0:
b8:d3:6c:14:46:d6:6f:9d:d3:60:02:0a:2e:59:97:
3b:ac:a3:ea:6f:e9:af:13:c2:00:94:13:5d:fb:b3:
3c:4e:76:84:f7:ec:ae:e4:d7:03:b8:ba:78:8c:c3:
e6:3e:97:0a:72:89:ad:9e:a6:e1:57:77:e9:84:9e:
ba:5f:43:a6:26:49:aa:26:15:23:2b:fb:de:c0:94:
31:4f:06:5a:d8:8d:0d:09:a6:a6:ad:08:da:82:2e:
b4:db:52:48:fc:cf:85:22:84:f4:85:2d:65:38:df:
b0:ff:96:18:ad:fe:da:34:60:1a:8b:85:1a:29:d9:
72:9d:6e:02:55:49:5e:90:0b:01:22:6b:f6:8d:ab:
fa:6f:ce:9f:87:7a:37:48:b0:bd:4a:18:b5:a1:a9:
00:ed:31:b2:e8:b6:7e:16:14:c9:fe:75:2b:7b:ef:
96:cb:2d:81:7f:db:dd:7e:cc:de:de:b2:7f:cd:06:
6d:b0:75:62:1e:93:14:db:32:3d:fd:fc:fe:37:10:
bd:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:A3:3A:57:9D:C0:A5:3E:7E:4E:93:A8:E8:8B:9C:6D:DD:92:40:26
X509v3 Authority Key Identifier:
keyid:C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/gqM6V53ApT5-TpOo6Iucbd2SQCY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/yHtZTl5nE6W4ClSBpc5x5lLYRXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:3a80:e::/47
Signature Algorithm: sha256WithRSAEncryption
0b:be:3c:66:32:02:e4:30:04:96:82:ad:1f:79:02:40:e8:7c:
22:9a:cf:c8:9e:d8:a8:0d:f5:df:6e:aa:4a:42:5e:59:15:8a:
13:8c:ab:37:0e:e6:23:88:ae:30:11:e7:2f:eb:1a:66:f1:75:
be:ad:63:1e:09:ae:05:e0:96:45:07:f8:b9:1e:00:26:c1:d6:
b3:fa:94:bf:24:0d:eb:f1:7d:9a:03:fa:72:d7:3d:25:44:47:
f4:af:aa:8e:7d:fb:2c:6d:f3:a0:13:08:56:94:d5:09:b8:1a:
b8:e3:4f:01:c1:e3:a0:e1:63:7f:40:bb:09:70:aa:84:c2:24:
41:2a:64:27:35:bd:9b:ae:a3:62:1a:33:e8:3e:f3:c0:f0:91:
30:17:70:7d:26:0b:2a:10:89:d5:b5:49:50:27:d8:f2:c4:42:
d5:a1:12:31:72:d5:f2:22:5d:5d:86:15:ad:0c:20:17:88:c5:
32:c1:9d:69:09:ea:60:c5:9b:df:5e:b5:9a:f1:a1:78:af:ce:
a0:a9:3b:6e:97:bd:17:8d:1e:d1:83:9f:13:60:f2:12:8b:5e:
dd:82:54:4e:4d:71:78:74:25:9e:86:2e:74:06:cf:38:12:f3:
22:f0:f6:7b:eb:e4:df:62:71:70:e9:75:c2:b1:ad:c8:5f:8a:
b8:d1:ce:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:14 2023 by rpki-client on console-ams.rpki-client.org