Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/4-jBCNiQZHdVB82_Nn1l2RbzrSs.roa
File: 4-jBCNiQZHdVB82_Nn1l2RbzrSs.roa (raw, json)
Hash identifier: Nbvv9U1QhCThWQeeu7x3KoAHasNpU73N3icsTo1R6XY=
Subject key identifier: E3:E8:C1:08:D8:90:64:77:55:07:CD:BF:36:7D:65:D9:16:F3:AD:2B
Certificate issuer: /CN=ee31367df6d1861071c92bae726523326f45ba2a
Certificate serial: 0830D776
Authority key identifier: EE:31:36:7D:F6:D1:86:10:71:C9:2B:AE:72:65:23:32:6F:45:BA:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7jE2ffbRhhBxySuucmUjMm9Fuio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/4-jBCNiQZHdVB82_Nn1l2RbzrSs.roa
Signing time: Sat 01 Jan 2022 05:06:17 +0000
ROA not before: Sat 01 Jan 2022 05:06:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211998
IP address blocks: 2a0e:1cc0:5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137418614 (0x830d776)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee31367df6d1861071c92bae726523326f45ba2a
Validity
Not Before: Jan 1 05:06:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e3e8c108d89064775507cdbf367d65d916f3ad2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c7:73:43:51:0f:38:60:ad:91:c5:c4:68:45:
f2:ec:05:ce:68:48:d3:01:d5:dc:a6:a1:48:f5:17:
0c:fd:b0:ac:24:f9:d3:49:3b:d2:2c:af:82:83:64:
2d:ce:a1:2c:c2:21:d8:21:3b:a4:b4:e7:a9:63:c4:
ae:64:a5:5c:d9:b2:67:2f:aa:d9:80:ec:26:fe:83:
01:70:50:63:d9:08:66:94:97:fc:78:41:93:c7:21:
b0:4a:4b:12:e9:f6:9f:2a:d8:03:f0:70:bc:7c:ab:
8c:7f:20:7f:f9:d0:6c:a1:7f:0e:93:e0:7b:94:f2:
b0:55:56:5e:21:f3:06:ae:87:a2:8e:af:af:a1:d1:
1c:6a:2e:c7:f2:63:34:a7:3a:a4:92:7a:f1:67:30:
88:01:74:f7:bf:56:ff:ad:4d:0d:e1:37:21:db:81:
53:67:c8:21:2e:5a:c7:af:df:90:01:09:8d:b4:8d:
ff:92:98:b7:c7:6e:2d:3b:6a:73:9c:95:3a:0e:22:
e9:18:19:cd:92:c5:e2:71:a8:99:fa:7c:55:0a:ad:
d0:c2:7e:6c:cc:41:b0:7e:c4:c2:52:16:3e:02:4b:
70:cb:4a:cf:fc:29:5f:12:c0:f5:bb:18:69:f6:12:
df:bc:4e:b2:4b:4c:ec:0c:33:58:4f:4c:51:12:11:
d6:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:E8:C1:08:D8:90:64:77:55:07:CD:BF:36:7D:65:D9:16:F3:AD:2B
X509v3 Authority Key Identifier:
keyid:EE:31:36:7D:F6:D1:86:10:71:C9:2B:AE:72:65:23:32:6F:45:BA:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7jE2ffbRhhBxySuucmUjMm9Fuio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/4-jBCNiQZHdVB82_Nn1l2RbzrSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/7jE2ffbRhhBxySuucmUjMm9Fuio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:1cc0:5::/48
Signature Algorithm: sha256WithRSAEncryption
cf:a6:83:b5:a8:60:5e:1b:43:22:2c:3c:42:72:3b:74:4c:b7:
1d:83:d3:18:31:28:84:26:f9:09:2b:e4:51:95:b4:67:25:c7:
05:79:51:57:f7:c6:37:90:ad:fb:25:78:18:d4:30:08:65:25:
59:26:12:2d:7e:25:bc:ad:6c:76:c9:05:79:1a:66:ac:0a:1c:
2b:d5:6e:a2:54:98:96:5a:2c:db:a5:a0:46:ed:c9:72:27:cd:
fa:7e:c8:b8:5e:b8:fd:98:65:39:0c:da:7e:f3:d1:e7:43:ec:
7e:22:d5:0d:df:b4:d9:5a:d1:c8:28:dc:07:5c:25:30:9f:d6:
54:86:1e:c2:33:09:fe:a0:40:a3:c1:0c:bc:ec:90:3e:70:ed:
5e:e4:3c:4e:71:96:ca:a4:1c:fa:41:36:e0:54:cc:10:92:b8:
ec:a7:f0:05:57:cf:48:2a:da:74:3e:1e:bb:00:5c:12:ee:4c:
32:cc:11:6e:0e:52:ee:bf:5a:73:2d:16:05:e3:32:51:90:8c:
22:df:05:32:59:d7:b8:4e:1b:ea:4d:8f:16:b6:cc:72:6f:58:
26:9a:e8:2a:1d:08:ef:39:91:9c:57:70:be:d3:8b:c4:af:7b:
44:30:25:0a:11:1b:c6:9c:e1:7d:cf:30:ed:d3:c2:21:e4:01:
ad:3b:16:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-fra.rpki-client.org