Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/8eda9a-d13c-4430-8cf4-57ec12e8641e/1/TfU7rLjI6fu98if4G-tOmY6AVb4.roa
File: TfU7rLjI6fu98if4G-tOmY6AVb4.roa (raw, json)
Hash identifier: 3Qzm1bOKmUz2JLdrjHRu16PfBsnEGpv3RKXzVCCY4Jg=
Subject key identifier: 4D:F5:3B:AC:B8:C8:E9:FB:BD:F2:27:F8:1B:EB:4E:99:8E:80:55:BE
Certificate issuer: /CN=a499903dab85f6a59772b3edfd4bf0e491af57c4
Certificate serial: 3D89D20B
Authority key identifier: A4:99:90:3D:AB:85:F6:A5:97:72:B3:ED:FD:4B:F0:E4:91:AF:57:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pJmQPauF9qWXcrPt_Uvw5JGvV8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/8eda9a-d13c-4430-8cf4-57ec12e8641e/1/TfU7rLjI6fu98if4G-tOmY6AVb4.roa
Signing time: Sat 01 Jan 2022 11:57:43 +0000
ROA not before: Sat 01 Jan 2022 11:57:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8519
IP address blocks: 2001:638:30d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1032442379 (0x3d89d20b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a499903dab85f6a59772b3edfd4bf0e491af57c4
Validity
Not Before: Jan 1 11:57:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4df53bacb8c8e9fbbdf227f81beb4e998e8055be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:df:ab:ca:a4:c0:59:a2:4b:46:44:21:14:82:
06:29:01:4e:ee:57:f3:da:55:d9:a3:f3:c2:66:10:
c5:6d:c9:2d:15:03:9b:50:20:cf:25:2f:55:b9:96:
76:c6:92:f4:99:7e:26:f2:9f:d0:2a:4e:ec:38:f9:
9a:4d:07:ed:82:da:2e:67:88:39:4c:9e:71:fc:32:
b2:ae:96:3f:b0:e9:70:fe:6f:a9:10:4d:48:30:d3:
c2:c0:71:72:b8:21:80:84:60:88:40:a1:3b:f0:59:
51:5b:d1:cc:e5:5b:d6:92:c5:26:b1:bd:d1:50:7b:
7e:58:72:4a:68:c1:db:f1:71:d8:e1:25:0e:b4:53:
e8:da:e1:87:8c:c6:45:65:06:61:64:56:67:e4:ab:
1d:22:04:86:5e:1e:4a:cb:21:3b:04:e7:92:c7:c6:
9c:ca:25:d3:b4:bb:0e:59:58:31:be:53:10:28:dc:
9b:25:dc:3b:dc:1b:11:a7:56:a7:dd:86:5a:1c:2a:
8a:56:83:85:10:eb:f5:20:f3:35:45:88:53:fb:dc:
dd:45:b7:ad:ae:7d:52:1f:65:ce:0f:3e:bf:e1:27:
de:87:ea:05:50:a1:ad:eb:9c:1b:5e:0e:b7:d6:07:
49:3b:07:0b:23:20:7b:2d:25:2f:06:71:af:e8:8c:
cd:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:F5:3B:AC:B8:C8:E9:FB:BD:F2:27:F8:1B:EB:4E:99:8E:80:55:BE
X509v3 Authority Key Identifier:
keyid:A4:99:90:3D:AB:85:F6:A5:97:72:B3:ED:FD:4B:F0:E4:91:AF:57:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pJmQPauF9qWXcrPt_Uvw5JGvV8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/8eda9a-d13c-4430-8cf4-57ec12e8641e/1/TfU7rLjI6fu98if4G-tOmY6AVb4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/8eda9a-d13c-4430-8cf4-57ec12e8641e/1/pJmQPauF9qWXcrPt_Uvw5JGvV8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:638:30d::/48
Signature Algorithm: sha256WithRSAEncryption
28:1d:fc:df:78:48:cb:5c:32:e6:1a:7f:6a:ed:43:db:73:e0:
2b:8d:60:c6:87:ad:57:a4:16:b8:a1:c2:b0:74:ea:e8:a5:e1:
71:94:7b:1b:ac:e1:c5:be:bc:3b:df:f3:61:e1:51:49:20:5d:
16:f0:e2:e3:22:af:ab:af:77:7f:26:4a:4b:63:3d:25:9e:2d:
6a:56:4f:11:9d:08:ac:6c:3b:00:ca:6a:93:fc:a4:5f:f2:e2:
4b:a4:5e:28:03:67:27:96:79:0d:78:af:82:70:1e:90:52:ab:
b3:e7:f0:c0:b2:4b:ad:c5:b9:86:38:0a:90:a9:ee:8d:98:1e:
63:99:c1:34:a4:9b:4e:02:fe:6d:84:ff:97:4c:ab:39:31:10:
58:ad:92:ad:7c:e4:8b:a2:66:61:33:74:5e:86:77:25:8c:08:
92:d0:c6:34:12:bc:ae:b3:e3:69:9e:4b:d8:c3:cf:aa:e8:d5:
12:be:51:10:08:b3:89:b9:7d:50:88:1b:a5:fe:f9:55:de:11:
2f:65:50:44:20:18:e3:13:c9:fc:99:48:e4:7c:f4:1b:97:e9:
12:57:09:ac:fc:88:27:b5:7c:e9:9e:ac:0e:f7:95:2d:79:43:
c7:7d:8f:57:ac:23:18:6f:b8:ee:00:db:ce:74:67:44:2f:66:
bb:da:17:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:55 2024 by rpki-client on console-fra.rpki-client.org