Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/206ff0-445a-42b4-99f5-7e157bae6c2b/1/R1ulAt_aJv2OFVtfvk4eGhY8JyQ.roa
File: R1ulAt_aJv2OFVtfvk4eGhY8JyQ.roa (raw, json)
Hash identifier: 6TbHFQs0Seb9GbQOXkVkPvagFRZPHrdNCoPFMKTGQO0=
Subject key identifier: 47:5B:A5:02:DF:DA:26:FD:8E:15:5B:5F:BE:4E:1E:1A:16:3C:27:24
Certificate issuer: /CN=087813142b0d3f068dea6dd4341c4e0b907988ec
Certificate serial: 02687757
Authority key identifier: 08:78:13:14:2B:0D:3F:06:8D:EA:6D:D4:34:1C:4E:0B:90:79:88:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CHgTFCsNPwaN6m3UNBxOC5B5iOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/206ff0-445a-42b4-99f5-7e157bae6c2b/1/R1ulAt_aJv2OFVtfvk4eGhY8JyQ.roa
Signing time: Sat 01 Jan 2022 15:05:59 +0000
ROA not before: Sat 01 Jan 2022 15:05:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49825
IP address blocks: 2a0b:8fc1::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40400727 (0x2687757)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=087813142b0d3f068dea6dd4341c4e0b907988ec
Validity
Not Before: Jan 1 15:05:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=475ba502dfda26fd8e155b5fbe4e1e1a163c2724
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f1:7c:3c:83:0c:91:9f:99:fc:2c:95:b9:8e:
f1:31:7f:ca:1b:c2:f4:6a:f9:88:bf:43:1a:13:1d:
53:b3:fe:6a:24:80:0a:d1:44:a9:fa:68:6c:c6:c7:
53:6a:ae:62:cb:8b:bb:f6:9f:a5:e2:b0:f3:5c:35:
d7:0f:bf:4f:08:c3:b3:68:95:b2:b3:60:5c:85:65:
ff:67:00:21:53:9e:b8:a4:16:b5:a7:43:48:64:42:
1f:00:2c:24:b3:f5:5c:19:aa:a8:88:d2:59:0d:ae:
e0:5d:13:c2:d1:aa:5e:5d:e8:9b:97:72:1b:46:7e:
2c:73:12:81:26:2c:4c:ba:5e:13:3b:d3:b0:6e:a7:
18:b1:d4:4e:04:c6:87:8c:b8:8d:14:7d:87:bd:30:
b0:d6:22:c3:0a:a8:f1:30:d0:02:e5:be:a8:fd:71:
fc:68:a1:6a:94:35:62:6f:f0:51:5c:ac:1f:79:1c:
b9:ff:9b:c2:a6:79:39:a4:ed:4a:36:85:c2:c1:66:
64:ac:45:df:37:cc:4f:93:42:74:13:1f:f0:73:91:
31:4b:d0:ce:c3:b1:c0:f0:ba:23:d6:4e:56:14:ca:
b4:9c:7e:35:a3:57:be:be:55:f2:ad:1b:2d:b7:a1:
15:86:fc:dc:8c:80:07:2f:d3:5b:1b:ee:b0:d7:ec:
98:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:5B:A5:02:DF:DA:26:FD:8E:15:5B:5F:BE:4E:1E:1A:16:3C:27:24
X509v3 Authority Key Identifier:
keyid:08:78:13:14:2B:0D:3F:06:8D:EA:6D:D4:34:1C:4E:0B:90:79:88:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CHgTFCsNPwaN6m3UNBxOC5B5iOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/206ff0-445a-42b4-99f5-7e157bae6c2b/1/R1ulAt_aJv2OFVtfvk4eGhY8JyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/206ff0-445a-42b4-99f5-7e157bae6c2b/1/CHgTFCsNPwaN6m3UNBxOC5B5iOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:8fc1::/32
Signature Algorithm: sha256WithRSAEncryption
a1:44:71:52:08:1a:78:05:ff:35:2a:02:f7:44:6e:7e:9e:98:
3d:75:b6:39:3a:ad:5f:a0:ad:2b:e5:eb:af:11:4a:1f:64:b2:
6c:ea:04:1c:1a:c0:8c:67:b6:03:b1:72:10:f2:c4:a1:30:80:
2a:b5:52:bb:7c:e5:36:e3:43:3b:35:ec:c1:d4:a8:be:59:64:
64:9a:10:c8:39:e3:91:1a:3f:f9:7e:cf:23:61:69:dd:3e:2b:
fd:85:42:06:b5:67:50:c0:b6:5f:2d:67:8d:c6:42:ff:48:a6:
34:e0:ab:e4:ee:96:4d:96:f4:4a:dd:d6:df:cf:aa:15:3d:ed:
63:a4:ae:60:d2:2d:8e:c5:da:4f:e1:db:34:57:10:ad:5a:6f:
47:98:33:1e:1f:04:5c:55:7c:66:7a:13:57:a0:e5:b7:9d:c3:
0e:16:90:a0:52:74:29:1f:7a:6b:77:31:74:0d:bc:35:3f:48:
99:70:ed:77:fa:37:52:19:a5:e4:29:22:a5:59:ac:51:eb:b0:
fc:61:45:fc:3b:c3:31:65:18:bd:ab:22:2b:03:82:81:89:01:
04:89:7d:b8:76:dd:83:98:97:9c:68:cc:51:f8:df:fd:99:4c:
72:81:65:a8:c0:09:9e:10:67:f9:de:14:8c:dc:53:7d:fb:e7:
66:a0:71:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:36 2024 by rpki-client on console-ams.rpki-client.org