Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/8AfSaWpRI-3eI8p4llRIBFEUdgY.roa
File: 8AfSaWpRI-3eI8p4llRIBFEUdgY.roa (raw, json)
Hash identifier: qdbUEjpDGJ3Q+OOR8Gq47GtN+LtQxFXZYoKBGA/TijE=
Subject key identifier: F0:07:D2:69:6A:51:23:ED:DE:23:CA:78:96:54:48:04:51:14:76:06
Certificate issuer: /CN=8ad9281aafefc8375ad8b4b7e604899555952237
Certificate serial: 07F824DF
Authority key identifier: 8A:D9:28:1A:AF:EF:C8:37:5A:D8:B4:B7:E6:04:89:95:55:95:22:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/itkoGq_vyDda2LS35gSJlVWVIjc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/8AfSaWpRI-3eI8p4llRIBFEUdgY.roa
Signing time: Sat 01 Jan 2022 11:03:20 +0000
ROA not before: Sat 01 Jan 2022 11:03:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35365
IP address blocks: 2a07:bbc0:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133702879 (0x7f824df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ad9281aafefc8375ad8b4b7e604899555952237
Validity
Not Before: Jan 1 11:03:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f007d2696a5123edde23ca789654480451147606
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:a6:45:62:70:6b:ee:f6:dd:e4:26:d8:5f:bd:
e6:68:f4:26:6e:d9:65:6a:7d:f1:ef:a6:e8:44:f9:
cd:57:8c:b9:3a:91:5d:ad:0d:62:6f:3d:34:f3:40:
70:c3:0a:0b:7b:fa:73:3c:3a:85:fd:9e:6f:d0:80:
e5:8a:bc:20:30:bd:84:fe:d8:4e:e4:35:b1:e0:d3:
83:a3:1b:78:d5:91:e8:02:f4:aa:d3:10:17:df:42:
f6:ed:2b:b7:79:80:37:8b:66:a4:31:6b:ba:07:e3:
c0:40:96:35:f5:f3:2b:39:ec:5e:87:75:c5:e5:ad:
93:ac:d4:c9:47:89:de:32:10:d4:51:d9:63:ba:15:
3b:b6:2c:ef:0d:93:6f:6a:08:90:f1:95:ed:56:f9:
c0:1a:f2:c2:67:13:7c:fe:ca:8c:a9:7e:93:a4:e1:
0f:1c:c2:20:d2:a5:b1:e6:ba:f9:c3:e7:c2:5d:21:
2b:ab:95:27:06:bf:a1:40:b6:cf:74:73:43:0e:c7:
41:eb:41:d8:1d:94:7a:cd:97:0f:66:9b:20:d9:8e:
af:9d:73:4f:18:83:c9:89:f6:9e:ed:42:51:8d:1f:
85:ed:64:a5:38:ee:e2:50:b4:6a:4a:f4:0b:8a:7b:
41:23:06:63:91:77:ee:75:f9:55:4a:32:69:e3:6a:
65:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:07:D2:69:6A:51:23:ED:DE:23:CA:78:96:54:48:04:51:14:76:06
X509v3 Authority Key Identifier:
keyid:8A:D9:28:1A:AF:EF:C8:37:5A:D8:B4:B7:E6:04:89:95:55:95:22:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/itkoGq_vyDda2LS35gSJlVWVIjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/8AfSaWpRI-3eI8p4llRIBFEUdgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/itkoGq_vyDda2LS35gSJlVWVIjc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:bbc0:1::/48
Signature Algorithm: sha256WithRSAEncryption
97:70:f4:68:11:4f:f1:fa:70:f6:b7:04:a1:05:8c:85:82:0c:
b1:66:9e:26:76:dc:61:55:00:d3:8c:b8:e3:1f:81:43:4f:6e:
66:84:75:e7:be:2c:0c:72:e1:58:c6:7f:41:22:d3:5d:8e:b9:
93:29:3a:d5:26:dc:8c:e4:e1:2e:a5:c0:c9:a4:cc:72:ce:17:
08:68:33:79:28:a9:e2:db:83:fc:d7:d5:9f:bd:27:b1:00:95:
c6:60:1c:3a:1e:20:d2:c0:6b:32:d4:92:ed:a6:cd:a0:d0:1c:
37:58:6d:47:b1:03:e3:f9:b1:f2:a2:6d:43:14:3a:6e:5f:d2:
d8:99:64:f7:a5:56:4b:c3:04:cb:df:ef:0a:f7:75:a7:c2:ee:
a7:1a:c4:2d:be:81:84:9f:37:96:94:e1:e4:7e:ea:de:e9:f0:
ee:8e:ef:65:bf:93:5b:44:29:fc:bd:7b:db:5e:3c:12:be:41:
e8:14:10:ea:83:bc:a0:0c:2d:fd:35:1f:ab:72:5e:f9:a1:7c:
bc:67:28:09:1f:3a:7c:10:b8:20:f3:15:19:f2:49:b8:62:8b:
b5:d7:1d:22:4f:15:08:fb:6b:31:cb:eb:6b:5d:55:5d:fd:36:
d7:a6:a4:a2:fc:4c:f1:93:10:52:ad:07:4a:11:8e:4b:8b:3a:
81:5b:c6:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:16 2024 by rpki-client on console-fra.rpki-client.org