Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/O8iwioE8Et8FWJ-K8vCYkzNgL8c.roa
File: O8iwioE8Et8FWJ-K8vCYkzNgL8c.roa (raw, json)
Hash identifier: 346DPVGFj6BRTAUfAf5OKpcM1rwITSbSpgR7slLQGeM=
Subject key identifier: 3B:C8:B0:8A:81:3C:12:DF:05:58:9F:8A:F2:F0:98:93:33:60:2F:C7
Certificate issuer: /CN=4dd1b2587490ad061cb207176bdeec81a531588c
Certificate serial: 3694A99A
Authority key identifier: 4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/O8iwioE8Et8FWJ-K8vCYkzNgL8c.roa
Signing time: Sat 01 Jan 2022 01:01:07 +0000
ROA not before: Sat 01 Jan 2022 01:01:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38191
IP address blocks: 2a01:3e0:d01::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 915712410 (0x3694a99a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd1b2587490ad061cb207176bdeec81a531588c
Validity
Not Before: Jan 1 01:01:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3bc8b08a813c12df05589f8af2f0989333602fc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:93:22:1b:98:91:9a:6d:6a:e7:94:61:9d:81:
f6:3f:41:80:de:3a:fc:d3:dc:d3:47:64:d8:cc:01:
b2:d2:92:46:3e:8d:09:56:69:9f:3d:10:d7:67:2e:
5d:20:97:b0:a8:a4:c5:3a:7c:ed:01:d9:1a:cf:3b:
cf:ff:48:77:30:66:ab:e9:d3:8b:ca:78:dd:8c:16:
1e:16:b4:11:14:1b:fa:28:85:03:57:35:97:78:5a:
5c:98:a6:49:9c:9b:81:9a:e1:2b:76:df:33:dd:10:
a9:34:56:b4:ec:5a:39:4d:d2:1d:68:f4:1b:69:1e:
eb:96:0f:42:88:9d:50:1d:1e:3d:84:c3:f1:b7:ea:
3e:59:ff:39:06:6f:d1:e9:11:f0:8e:2d:7c:ef:34:
34:e1:23:48:18:3b:85:7a:4e:9a:9b:24:72:ab:80:
2d:ca:9b:b6:f3:43:1e:56:cb:69:ec:d3:7b:77:0b:
67:6d:82:51:e7:39:ed:54:ae:a9:37:96:0c:39:27:
ee:15:b3:e0:79:ae:cc:da:ea:38:2d:06:22:53:c5:
bb:85:a0:7c:11:fa:09:4c:71:e7:25:4e:9e:46:0d:
c6:67:d5:18:9c:ba:df:14:86:ad:39:2c:0f:94:60:
04:cf:49:42:8e:42:e9:aa:8e:67:7f:4b:ba:7e:0c:
03:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:C8:B0:8A:81:3C:12:DF:05:58:9F:8A:F2:F0:98:93:33:60:2F:C7
X509v3 Authority Key Identifier:
keyid:4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/O8iwioE8Et8FWJ-K8vCYkzNgL8c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:3e0:d01::/48
Signature Algorithm: sha256WithRSAEncryption
cb:0f:e0:a6:c4:d0:c1:23:bc:a7:bf:cf:71:c5:10:fc:cd:d7:
1f:1b:fa:1c:63:8a:d9:57:e7:02:35:fb:4a:7b:18:72:7f:dc:
bb:97:ed:a4:ff:60:14:2e:78:4b:24:bd:a3:23:82:d5:2f:de:
e8:08:b0:36:10:cd:ce:b6:d1:4b:90:d4:30:d7:7f:ff:52:b0:
83:e6:51:ba:f5:d2:81:e7:fb:80:35:bc:27:fe:14:57:de:b2:
7a:d3:81:2f:76:b9:ca:3d:f9:4c:c0:b9:6e:7b:f1:10:9b:0b:
90:5b:62:d7:5a:16:b8:f6:69:3c:a8:71:b5:b1:e7:05:48:8d:
24:fa:24:19:7c:f2:32:66:03:a9:ff:92:3a:45:81:d5:51:80:
b0:ee:ea:18:b9:e0:06:1e:d8:77:be:69:46:6a:70:c9:12:cc:
63:57:14:f2:7d:71:2a:a4:ed:d9:5e:aa:f8:b7:c2:e3:03:38:
23:7c:be:35:b3:c9:90:3a:fd:e6:08:bd:8c:e1:3c:30:f1:fe:
56:d6:e6:f6:ce:3d:80:2d:62:79:29:55:aa:e1:82:07:f6:18:
85:bf:cb:e7:1c:3d:bc:26:0e:c6:55:f0:fc:b0:a9:39:43:f7:
5b:cc:01:9b:7a:ed:4c:13:c4:b5:29:17:58:83:ce:6a:08:6e:
66:01:81:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:30 2024 by rpki-client on console-fra.rpki-client.org