Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/17vRQ40TkzGugy34Sg51cORFpig.roa
File: 17vRQ40TkzGugy34Sg51cORFpig.roa (raw, json)
Hash identifier: zmLhYJUJ5Lnpaxzc59q3X3wf6dEs4UXvLspcShT1jEw=
Subject key identifier: D7:BB:D1:43:8D:13:93:31:AE:83:2D:F8:4A:0E:75:70:E4:45:A6:28
Certificate issuer: /CN=fbac50f19d9930aeec09cd27f508fc502ea14d1f
Certificate serial: 05929D8A
Authority key identifier: FB:AC:50:F1:9D:99:30:AE:EC:09:CD:27:F5:08:FC:50:2E:A1:4D:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/17vRQ40TkzGugy34Sg51cORFpig.roa
Signing time: Sat 01 Jan 2022 04:53:07 +0000
ROA not before: Sat 01 Jan 2022 04:53:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213396
IP address blocks: 2a0a:4540:1000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93494666 (0x5929d8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbac50f19d9930aeec09cd27f508fc502ea14d1f
Validity
Not Before: Jan 1 04:53:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7bbd1438d139331ae832df84a0e7570e445a628
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:57:f6:11:2a:31:48:be:5a:46:3a:64:e7:40:
45:49:da:16:2a:80:9c:7b:a9:82:28:6a:86:09:e1:
10:a0:87:40:3c:7b:4d:88:18:ad:30:12:2f:1c:a1:
46:6c:c1:79:eb:95:2d:a8:16:c3:12:a8:0f:bc:3e:
9b:81:93:b8:27:76:4d:26:47:84:48:e9:c9:56:a9:
3b:ba:49:82:87:6f:79:79:06:63:67:be:d2:9b:bc:
ef:45:31:dc:be:73:33:5e:00:e1:f8:4b:a3:1f:ff:
92:30:03:0b:45:7d:10:f8:33:92:fc:4c:f4:ba:eb:
39:97:de:31:79:d4:0d:39:9a:cd:3f:d1:73:1b:55:
01:97:56:2d:c3:f5:d6:20:2c:e7:94:06:ca:cc:54:
2c:76:12:fe:da:0b:23:7c:a3:5d:fb:82:b1:27:33:
25:66:38:cd:2d:61:88:3a:a6:7a:fb:de:f0:95:4c:
bb:62:82:75:9a:26:f7:f3:74:c3:2d:13:79:c8:84:
83:0c:1f:a4:17:9a:ef:a3:33:c0:f2:98:ec:ab:76:
de:fd:42:8c:f0:6d:85:69:1b:12:8b:63:fc:5c:e7:
9b:d4:d7:6c:51:f2:38:48:fb:c5:3c:f5:02:68:34:
19:a4:4a:53:18:8d:e5:47:35:ea:ea:cd:e7:41:bd:
a5:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:BB:D1:43:8D:13:93:31:AE:83:2D:F8:4A:0E:75:70:E4:45:A6:28
X509v3 Authority Key Identifier:
keyid:FB:AC:50:F1:9D:99:30:AE:EC:09:CD:27:F5:08:FC:50:2E:A1:4D:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/17vRQ40TkzGugy34Sg51cORFpig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:4540:1000::/48
Signature Algorithm: sha256WithRSAEncryption
5d:35:6d:53:83:24:3c:8c:98:3d:0f:b7:9c:05:c6:e8:7f:b8:
50:4a:88:96:05:f4:e0:a9:b7:80:8e:2e:1c:f0:ac:b7:6a:db:
ad:6f:2d:94:48:6e:16:19:c6:3f:30:3a:e1:99:b7:e4:9c:37:
80:6f:e8:7a:8d:2c:a0:34:36:84:30:37:df:ba:03:89:1a:95:
ae:91:eb:93:2e:63:3c:9b:ba:d3:47:a4:47:1c:90:62:21:57:
7b:41:9b:ee:1e:3b:7e:19:03:56:e1:fd:7c:d2:d3:be:f0:f2:
34:15:3f:ef:03:57:88:04:e3:35:75:5d:97:8a:35:ac:06:c2:
20:87:4c:d9:ee:c5:e3:5f:54:02:75:cd:7d:ab:a6:c7:1d:92:
9a:9c:a6:d6:6a:15:1a:4f:69:f5:21:d6:0a:01:e8:42:bb:a4:
d6:85:5c:02:3a:11:ed:15:35:73:cb:96:56:f9:58:1c:6e:c8:
a8:1e:ef:2f:83:0f:57:38:22:22:67:f9:75:1b:69:58:6c:c0:
46:ef:95:2e:1e:7f:f0:c3:bb:4e:cc:c1:d8:3f:f5:d8:0d:96:
3a:4a:a5:41:5b:f5:ed:5f:19:dd:25:e0:14:48:92:70:64:4f:
f9:6e:b8:f6:c7:a4:d8:05:ae:79:28:be:68:b4:ff:fa:b7:f9:
ab:e7:bf:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:15 2024 by rpki-client on console-ams.rpki-client.org