Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/GfILzkLRy7FtxO9KoM5T--9yDP4.roa
File: GfILzkLRy7FtxO9KoM5T--9yDP4.roa (raw, json)
Hash identifier: BKvCS+LvgMX3h2JsmRS5omTdSIeUrk8fhOKRO2F4SAg=
Subject key identifier: 19:F2:0B:CE:42:D1:CB:B1:6D:C4:EF:4A:A0:CE:53:FB:EF:72:0C:FE
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 018200BD6E0DF75A3D38D16BC1EB5379BCC2
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/GfILzkLRy7FtxO9KoM5T--9yDP4.roa
Signing time: Fri 15 Jul 2022 07:23:10 +0000
ROA not before: Fri 15 Jul 2022 07:23:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207808
IP address blocks: 2a00:7180:8008::/46 maxlen: 46
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:00:bd:6e:0d:f7:5a:3d:38:d1:6b:c1:eb:53:79:bc:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jul 15 07:23:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=19f20bce42d1cbb16dc4ef4aa0ce53fbef720cfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:1d:6e:9d:c7:20:38:1b:aa:10:40:07:71:46:
9a:51:52:28:4e:ce:2f:db:0b:5c:79:4c:4a:cd:a0:
76:92:c3:4f:0f:cf:28:84:c3:e6:47:25:f5:cf:28:
93:ae:70:dc:53:a2:77:55:b5:30:88:01:b6:16:14:
82:1a:42:8a:b5:1f:91:38:6f:31:16:a7:aa:49:e8:
a2:99:3e:81:be:43:92:d2:2c:06:73:a5:7f:61:2c:
ee:f8:bb:b8:10:38:5a:a1:57:25:7e:7b:0e:67:79:
ce:65:89:02:b0:e9:d9:37:0b:b9:f8:a0:d0:c6:50:
a2:1b:85:a4:5f:00:5a:c2:83:ee:0a:e0:b6:0f:4a:
ef:b3:78:63:74:3b:e4:a2:3c:69:eb:c5:ab:a9:4a:
e4:40:40:57:18:bd:32:5d:94:17:40:5a:47:ff:c2:
bb:6c:41:15:bf:28:da:cb:ca:f4:d7:98:14:b3:be:
99:a9:e2:dd:5c:bb:bc:79:19:27:c5:85:a0:f9:0f:
97:a5:12:24:24:a6:34:94:18:0d:1f:00:e5:64:04:
2e:68:80:d5:a7:de:ee:ef:80:6a:68:02:ce:a1:98:
60:46:6c:e6:dc:94:ed:70:d9:dd:9b:b6:1b:63:f8:
c9:3e:d8:9f:dd:97:21:76:90:0e:be:66:f8:53:c7:
f8:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:F2:0B:CE:42:D1:CB:B1:6D:C4:EF:4A:A0:CE:53:FB:EF:72:0C:FE
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/GfILzkLRy7FtxO9KoM5T--9yDP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:7180:8008::/46
Signature Algorithm: sha256WithRSAEncryption
19:c8:51:6e:0b:97:f9:79:49:24:8c:c8:be:3d:03:4d:9e:f3:
45:ae:a0:1c:64:49:b4:9a:0a:48:24:df:07:23:c7:05:45:98:
d9:bf:e9:b3:5d:d6:d0:04:74:2e:21:d0:8b:ef:33:3c:24:b4:
66:5f:aa:8c:75:47:c1:62:4c:0b:1c:ca:10:d8:13:2f:00:1d:
79:d4:da:06:d2:0e:8f:b7:bb:d2:0b:c9:26:f6:de:64:50:97:
69:79:4b:88:f3:c1:02:9a:37:7b:04:c9:dc:f9:67:dc:2c:ee:
50:da:7a:9f:36:ed:6d:75:45:3d:1a:20:81:59:34:61:b9:b4:
8d:0e:05:27:d8:c0:c9:6f:21:c4:cf:35:f4:0c:72:22:d3:cb:
a5:d7:a5:fd:74:54:1b:19:6b:ce:aa:7f:d6:4c:f9:ac:7d:92:
e8:a7:f4:ff:7e:5f:99:32:6f:06:fe:c2:b2:96:8e:15:e3:4a:
d1:bd:32:3c:d7:c0:bc:91:79:5a:db:40:cc:56:a0:75:8c:a2:
5a:10:14:7f:ac:12:37:78:18:f1:87:da:32:09:2e:29:38:90:
02:22:19:81:0c:28:9f:fd:d4:e0:7a:c3:7f:e8:4a:df:dd:dc:
79:e2:a5:3f:59:5b:01:2a:4a:74:e9:ee:e8:19:f8:bc:5c:a5:
48:ec:aa:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:55 2024 by rpki-client on console-fra.rpki-client.org