Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/_Gh7ToXVLdShAtwQ-m6Zsyb4RBI.roa
File: _Gh7ToXVLdShAtwQ-m6Zsyb4RBI.roa (raw, json)
Hash identifier: N5Ai4wEOO7BLQMdF9583/eh13A0Jj0KG32ZFAmlfSpM=
Subject key identifier: FC:68:7B:4E:85:D5:2D:D4:A1:02:DC:10:FA:6E:99:B3:26:F8:44:12
Certificate issuer: /CN=fbac50f19d9930aeec09cd27f508fc502ea14d1f
Certificate serial: 06E37E7E
Authority key identifier: FB:AC:50:F1:9D:99:30:AE:EC:09:CD:27:F5:08:FC:50:2E:A1:4D:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/_Gh7ToXVLdShAtwQ-m6Zsyb4RBI.roa
Signing time: Wed 25 May 2022 06:16:13 +0000
ROA not before: Wed 25 May 2022 06:16:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213396
IP address blocks: 2a0a:4540:3000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115572350 (0x6e37e7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbac50f19d9930aeec09cd27f508fc502ea14d1f
Validity
Not Before: May 25 06:16:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc687b4e85d52dd4a102dc10fa6e99b326f84412
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:5d:3b:61:8d:fd:a7:2a:ef:fb:bf:5e:55:f4:
1d:60:d0:45:c9:23:0a:da:f9:f5:94:81:66:a6:ae:
34:57:b9:74:41:f0:4c:5e:70:eb:31:9d:cb:31:42:
e8:4f:81:89:ce:6e:b3:d6:75:d6:1e:fa:2d:b3:ee:
c1:e2:ed:c7:f7:61:ad:c8:91:c3:da:82:ad:28:8c:
64:71:00:92:2a:fb:4d:92:61:37:55:e8:93:d2:cc:
ed:99:a6:db:37:50:a1:95:50:77:b0:03:ad:ee:35:
66:7b:4b:7b:d0:3e:09:a5:df:3e:03:58:86:c7:ec:
0d:6d:4d:4b:74:2c:98:47:de:65:c1:69:5c:84:dd:
48:bd:b6:6d:42:2b:ff:ec:5c:ae:c4:62:c1:7d:cc:
7e:59:81:63:8a:b9:0a:dd:1b:f5:61:f3:37:e6:d8:
48:b0:48:10:0f:4c:7a:ce:68:18:58:b9:32:bd:8d:
79:74:84:eb:9c:11:0c:da:7f:cb:18:a1:a5:d4:c3:
e7:17:bd:4b:85:f6:19:e2:9b:60:a8:2d:77:1c:17:
cb:9a:85:de:25:ab:bd:83:35:4c:24:da:6f:f9:1c:
0c:ff:d8:b1:d5:0a:02:41:d7:78:14:e0:9c:12:e5:
ee:0b:ff:0e:57:14:db:cb:db:80:58:64:de:e4:47:
34:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:68:7B:4E:85:D5:2D:D4:A1:02:DC:10:FA:6E:99:B3:26:F8:44:12
X509v3 Authority Key Identifier:
keyid:FB:AC:50:F1:9D:99:30:AE:EC:09:CD:27:F5:08:FC:50:2E:A1:4D:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/_Gh7ToXVLdShAtwQ-m6Zsyb4RBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:4540:3000::/48
Signature Algorithm: sha256WithRSAEncryption
39:13:41:4f:f4:2d:95:7d:d5:7a:7d:24:48:11:89:fa:41:00:
36:b8:e9:47:a0:27:24:37:6b:c2:ff:da:03:a4:a2:00:5a:71:
bc:e4:35:fa:eb:c1:8a:d5:bb:2a:a2:c9:c9:84:54:b5:e8:a2:
89:a8:31:fb:84:29:36:49:85:2e:02:32:dc:5b:bf:04:d0:ed:
22:88:dc:14:3e:af:28:fc:c4:20:81:4a:f4:d9:87:04:a6:89:
84:3c:64:77:ff:9d:f6:c1:c0:d2:96:b3:cb:f4:63:98:24:a7:
39:27:f0:ea:4e:c2:c8:97:c5:9a:25:75:6d:c8:fc:78:92:6b:
41:57:ec:a7:93:44:17:12:48:6f:c9:4d:eb:da:99:a5:f1:04:
ab:75:29:ad:80:7c:2e:22:09:01:a9:c3:0a:5c:5f:d6:6a:96:
ef:1a:b7:3b:01:d9:cf:8c:8b:65:a8:40:ef:5a:2a:33:80:28:
75:ce:0c:ea:2a:91:b3:f9:d6:f9:38:2c:5f:2d:8e:46:1b:54:
76:3e:81:de:0d:a3:6e:d8:e4:b7:ee:d8:48:45:5a:07:75:4d:
3a:f3:47:aa:93:b8:70:b8:a2:d5:b0:71:f4:11:29:61:e4:3f:
1d:29:f1:ba:85:2f:5a:4a:ee:d7:69:01:ee:fc:88:ec:ec:24:
5d:4d:82:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:15 2024 by rpki-client on console-ams.rpki-client.org