Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/v9gjFeIludSUDwTH8G6su8nEMS8.roa
File: v9gjFeIludSUDwTH8G6su8nEMS8.roa (raw, json)
Hash identifier: fx8ew492zub2xC9RD4A1F3MSz6BQ6k2Z3EdOhdKUyUs=
Subject key identifier: BF:D8:23:15:E2:25:B9:D4:94:0F:04:C7:F0:6E:AC:BB:C9:C4:31:2F
Certificate issuer: /CN=94d98e8fec680775a157266e0c6b78b141a34f5e
Certificate serial: 01837F4EE109E52E992BB3167DFD58A654D3
Authority key identifier: 94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/v9gjFeIludSUDwTH8G6su8nEMS8.roa
Signing time: Tue 27 Sep 2022 14:16:59 +0000
ROA not before: Tue 27 Sep 2022 14:16:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15626
IP address blocks: 2a05:9407::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7f:4e:e1:09:e5:2e:99:2b:b3:16:7d:fd:58:a6:54:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94d98e8fec680775a157266e0c6b78b141a34f5e
Validity
Not Before: Sep 27 14:16:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bfd82315e225b9d4940f04c7f06eacbbc9c4312f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:f3:1b:0c:4b:77:92:f0:b0:3b:30:b8:07:b3:
ae:e8:a8:a9:ee:de:b7:cc:60:0f:6f:97:94:e8:f3:
f4:54:dd:08:5f:ce:25:f8:b1:56:b2:8b:36:f5:5a:
2d:67:28:00:a2:53:62:36:34:4a:34:e1:e6:aa:a1:
64:1f:d1:34:23:7a:f8:86:7f:8a:81:e1:a2:6d:89:
12:2c:90:20:ac:d5:00:a1:5e:45:ac:b6:5a:4e:66:
64:e2:55:c1:1f:ac:48:ac:ae:04:48:09:bf:60:fe:
51:70:70:57:8b:a5:bc:54:80:9e:68:b8:87:fd:2b:
26:c6:39:5d:2d:db:a4:33:73:2f:9d:de:05:b9:b5:
f2:e4:33:46:4d:52:56:10:5d:2d:64:e7:16:7e:94:
c9:72:af:3b:4f:2a:01:d0:83:e0:9e:1e:ae:a6:04:
ec:c6:92:78:36:19:5b:12:fa:bd:b2:5c:66:e8:55:
c1:e0:e1:75:63:9a:1a:32:ee:e7:c5:d0:b2:1b:52:
b0:54:72:c3:37:96:bf:81:ae:1f:ad:e6:fe:bb:8c:
62:43:d4:ea:91:03:f9:d0:49:75:49:c4:3e:5e:ef:
ce:cd:16:40:0c:6d:e9:4c:cd:2e:24:36:af:76:10:
5c:38:cb:af:9d:c2:07:69:7a:79:81:26:56:b0:8a:
80:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:D8:23:15:E2:25:B9:D4:94:0F:04:C7:F0:6E:AC:BB:C9:C4:31:2F
X509v3 Authority Key Identifier:
keyid:94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/v9gjFeIludSUDwTH8G6su8nEMS8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:9407::/32
Signature Algorithm: sha256WithRSAEncryption
3a:82:96:70:79:b4:57:91:b1:b3:a8:d3:6f:e7:80:b8:d0:ca:
ac:9f:01:c1:32:4a:60:5a:9c:66:dd:86:35:51:39:16:92:5a:
85:21:8f:38:67:03:b6:de:2c:81:2c:ca:24:8e:ed:1c:11:ea:
03:2c:e8:ac:8c:06:4f:ce:f4:54:3c:cd:5c:1d:7c:a3:9c:e3:
05:43:fc:ce:b3:42:a4:b0:c2:7c:51:13:bc:6f:10:d9:c4:80:
d2:e2:c2:78:ee:ff:92:0e:4f:22:c1:6f:6c:a7:26:63:73:60:
90:e1:01:56:3a:60:13:bc:0f:39:83:bf:4a:85:2e:40:99:c2:
24:bf:15:7a:b5:44:3f:87:e9:68:5e:f0:f1:aa:87:50:2f:6c:
20:94:bf:e6:56:1f:7e:51:46:ad:30:c7:47:90:ad:63:d1:17:
15:26:2f:a4:c8:b7:c1:d1:a8:3f:b7:79:63:37:a0:05:ec:e2:
65:9e:e4:96:b7:ae:6b:ec:45:06:1b:c3:45:6b:10:95:d2:a1:
a1:17:85:39:0f:fb:67:e5:07:93:a8:bd:79:55:ac:4e:69:77:
3f:cd:4b:ff:dd:d9:ef:9c:dd:4c:db:01:d3:e0:ad:3d:29:3e:
30:a6:78:54:19:0c:c8:c9:5b:30:41:ff:46:38:0f:0d:c4:6d:
a8:26:33:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:52 2024 by rpki-client on console-fra.rpki-client.org