Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/itD_m15vn4zw2_YDpA9avK1icoc.roa
File: itD_m15vn4zw2_YDpA9avK1icoc.roa (raw, json)
Hash identifier: 98jWiRR547Q8S6Hio2kxJXc3pbU5E+XOhWGoYe//c9g=
Subject key identifier: 8A:D0:FF:9B:5E:6F:9F:8C:F0:DB:F6:03:A4:0F:5A:BC:AD:62:72:87
Certificate issuer: /CN=fbac50f19d9930aeec09cd27f508fc502ea14d1f
Certificate serial: 0659744B
Authority key identifier: FB:AC:50:F1:9D:99:30:AE:EC:09:CD:27:F5:08:FC:50:2E:A1:4D:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/itD_m15vn4zw2_YDpA9avK1icoc.roa
Signing time: Wed 30 Mar 2022 06:06:01 +0000
ROA not before: Wed 30 Mar 2022 06:06:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 2a0a:4540:220::/48 maxlen: 48
2a0a:4540:1000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106525771 (0x659744b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbac50f19d9930aeec09cd27f508fc502ea14d1f
Validity
Not Before: Mar 30 06:06:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ad0ff9b5e6f9f8cf0dbf603a40f5abcad627287
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:85:b1:b4:83:17:fc:e0:e5:f5:79:b0:60:05:
ee:9e:01:e1:d8:96:90:b4:e4:f6:de:4c:b4:33:0a:
48:90:1b:db:81:e0:fe:1e:2d:ef:7f:51:de:37:50:
68:e9:e7:ff:c0:72:82:e2:ae:5a:4d:65:4f:ff:ce:
e5:7c:ae:41:02:b7:fa:dd:7c:7a:98:22:49:de:bd:
44:3b:ae:ff:2a:aa:8e:f6:10:d3:3c:90:eb:16:52:
d3:a1:0a:c3:53:c1:00:2b:8e:f2:6e:00:74:32:63:
78:d5:91:b8:84:3f:a9:33:e2:d3:41:b6:9c:22:95:
41:c1:c6:f2:b7:83:56:73:e9:72:99:4f:8e:df:e8:
98:a6:a2:1c:57:68:14:45:7e:7a:ee:2f:c6:32:ca:
d7:a3:ae:69:f7:c9:4f:ce:2d:ab:39:5e:3c:92:d5:
aa:71:71:4b:f6:d9:5d:9c:06:43:d2:90:7e:b7:c8:
fe:37:84:f8:40:e0:c0:ff:d3:93:3f:d7:27:12:2d:
f4:a3:91:4f:69:3f:3e:6b:cb:be:49:fe:ac:19:45:
24:e7:27:84:6b:1b:32:a9:10:7d:e0:72:a4:7a:68:
b9:44:06:a7:de:12:08:60:c6:15:a2:53:33:a3:49:
2b:c5:86:08:01:29:85:ba:71:e5:58:02:66:c3:e1:
c8:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:D0:FF:9B:5E:6F:9F:8C:F0:DB:F6:03:A4:0F:5A:BC:AD:62:72:87
X509v3 Authority Key Identifier:
keyid:FB:AC:50:F1:9D:99:30:AE:EC:09:CD:27:F5:08:FC:50:2E:A1:4D:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/itD_m15vn4zw2_YDpA9avK1icoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:4540:220::/48
2a0a:4540:1000::/48
Signature Algorithm: sha256WithRSAEncryption
63:01:9e:49:5e:26:00:3e:d5:49:78:0a:57:49:fa:cd:bc:b5:
0f:ec:95:3b:cb:50:12:9d:ff:3a:ee:d1:c4:7d:0d:5c:92:f4:
f9:73:d0:96:5e:9e:aa:30:44:22:59:7f:ee:9d:b7:6a:f5:c2:
66:c7:34:e9:75:d4:83:91:93:6f:94:e1:74:d5:e2:91:d9:d3:
72:9b:2e:33:45:7e:5c:b6:a3:ec:08:1b:90:97:77:0f:e3:7a:
85:48:55:1c:a9:ab:be:ce:23:63:6a:57:b0:9e:2d:57:78:1c:
17:fb:a5:1e:f3:57:68:26:95:56:bb:82:00:84:57:9d:f8:aa:
11:ba:11:cc:6a:e5:4f:c0:9d:ea:be:f4:29:2c:2c:f4:90:06:
8d:ad:c2:f6:88:0d:90:42:0c:de:8a:43:0e:f2:4b:70:79:17:
99:3c:db:c0:b5:96:4d:42:9f:f4:3b:c6:31:55:3a:92:56:47:
ae:2f:f3:23:70:20:4e:39:02:1c:22:f7:59:a3:3b:68:bc:de:
05:b8:48:c0:0e:0a:3a:8e:c9:6e:3b:16:f3:09:6a:c3:46:97:
74:24:64:ee:30:f7:49:c0:b3:87:96:22:de:d7:b0:ff:dc:4e:
16:77:42:9c:03:44:7f:35:57:bd:cf:eb:43:b1:8e:e6:2d:3b:
75:30:37:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:15 2024 by rpki-client on console-ams.rpki-client.org