Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/ca7c4a-f946-49e6-9f41-02f92aa4e2a0/1/glnfxFh156QOAKZ6vjaCMarrIDg.roa
File: glnfxFh156QOAKZ6vjaCMarrIDg.roa (raw, json)
Hash identifier: jG2NCGgjKc1wb9YjzpoZTznlxMVG8gPmkOnTvoV8m4w=
Subject key identifier: 82:59:DF:C4:58:75:E7:A4:0E:00:A6:7A:BE:36:82:31:AA:EB:20:38
Certificate issuer: /CN=bce75c43a41501d35417ae813be29f4227fb2dcf
Certificate serial: 01832141371A08E0F884A4D39963F93D7B1A
Authority key identifier: BC:E7:5C:43:A4:15:01:D3:54:17:AE:81:3B:E2:9F:42:27:FB:2D:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vOdcQ6QVAdNUF66BO-KfQif7Lc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/ca7c4a-f946-49e6-9f41-02f92aa4e2a0/1/glnfxFh156QOAKZ6vjaCMarrIDg.roa
Signing time: Fri 09 Sep 2022 07:57:45 +0000
ROA not before: Fri 09 Sep 2022 07:57:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203785
IP address blocks: 2a13:4b80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:21:41:37:1a:08:e0:f8:84:a4:d3:99:63:f9:3d:7b:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bce75c43a41501d35417ae813be29f4227fb2dcf
Validity
Not Before: Sep 9 07:57:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8259dfc45875e7a40e00a67abe368231aaeb2038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3a:1b:5b:fe:e2:7d:a9:be:7d:31:57:6b:a4:
a8:b0:60:cc:aa:a5:79:59:46:f7:70:3d:8e:01:b8:
97:39:06:62:2f:3c:e0:38:5d:a9:cd:aa:77:e6:77:
4a:e1:4d:4c:1b:a3:51:0e:94:6e:3b:c0:42:f7:48:
97:cb:ec:c0:65:8c:5a:1e:f5:50:55:27:72:67:76:
74:8e:b0:c2:8c:0a:35:9a:07:52:06:62:d7:c7:a8:
37:cf:bc:8c:13:e0:42:d3:17:2e:55:36:eb:1d:54:
a3:56:28:44:81:5a:6d:f6:3c:d6:6c:c0:68:4c:d6:
19:f0:c6:5b:de:63:0b:4a:3c:ec:2d:4f:6d:f5:cc:
fa:a1:8f:0d:be:3f:87:b2:72:05:f0:63:51:ac:e9:
0e:fa:bc:9d:d0:7d:30:35:13:49:ae:f8:7d:79:65:
38:c8:5c:10:d3:2e:d0:44:1b:34:91:92:15:b8:76:
1a:38:43:d8:f3:32:fe:45:dc:a3:b1:59:79:49:2f:
ea:7c:8b:8b:2b:d2:aa:c9:7e:a0:ec:0d:11:29:ec:
c1:5c:5a:52:d2:21:1e:5a:b8:26:aa:fe:20:5a:37:
66:07:bf:2c:eb:99:45:d7:c5:d3:ee:72:6b:fa:58:
9f:45:b0:b4:b2:89:98:63:2b:5c:78:93:1c:5f:21:
a3:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:59:DF:C4:58:75:E7:A4:0E:00:A6:7A:BE:36:82:31:AA:EB:20:38
X509v3 Authority Key Identifier:
keyid:BC:E7:5C:43:A4:15:01:D3:54:17:AE:81:3B:E2:9F:42:27:FB:2D:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vOdcQ6QVAdNUF66BO-KfQif7Lc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/ca7c4a-f946-49e6-9f41-02f92aa4e2a0/1/glnfxFh156QOAKZ6vjaCMarrIDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/ca7c4a-f946-49e6-9f41-02f92aa4e2a0/1/vOdcQ6QVAdNUF66BO-KfQif7Lc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:4b80::/29
Signature Algorithm: sha256WithRSAEncryption
63:16:00:20:41:fa:96:69:bd:87:80:07:b3:a0:b8:ee:95:5b:
bd:47:a4:8c:21:6e:48:26:3b:af:03:7e:0d:19:92:5b:67:83:
38:18:fa:b3:0e:75:c5:07:e6:7a:56:2b:b3:7c:b5:ee:e0:57:
53:9c:f2:26:f9:dd:84:26:e6:0c:a6:28:cf:49:ca:7d:fb:f0:
50:58:ca:35:99:f0:83:70:c5:17:87:ff:8d:6b:0d:4a:d8:1c:
67:40:e7:f4:60:99:8b:3f:bc:00:fb:dd:df:2c:a3:0f:7e:ea:
3f:fb:80:43:fa:ba:55:bf:b5:bd:9b:91:a8:18:d7:01:89:20:
cb:5c:3c:d0:91:4a:96:8f:fc:f2:be:4b:79:14:b5:da:9f:ae:
83:50:81:8d:df:6f:05:b0:d6:5c:04:19:bb:a3:69:57:4c:51:
92:3b:77:d2:c3:34:33:7c:59:36:03:ae:d3:2d:9d:38:0f:87:
b1:c3:d5:19:3d:0d:48:9f:0e:17:34:45:f0:37:da:71:09:b8:
4a:81:6b:b2:bd:20:7d:1c:11:66:8b:96:d5:b9:d3:8d:c7:56:
97:b2:ed:65:e4:32:e0:29:f5:1b:9e:27:8e:ae:87:22:ca:ae:
2c:aa:9f:0c:bd:5d:c4:51:14:1a:28:0d:ab:4b:54:d5:b6:2f:
5a:ca:26:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:27 2023 by rpki-client on console-ams.rpki-client.org