Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/i9_4nsaf27_IfcarOKYppMBN4wY.roa
File: i9_4nsaf27_IfcarOKYppMBN4wY.roa (raw, json)
Hash identifier: 7Lampg92REOi37TK2nsaXu8rDselhfxQ0U6y0C3+GB4=
Subject key identifier: 8B:DF:F8:9E:C6:9F:DB:BF:C8:7D:C6:AB:38:A6:29:A4:C0:4D:E3:06
Certificate issuer: /CN=c2d2a234e224bf87996f2f0df559ead882f9e651
Certificate serial: 17DEC4BC
Authority key identifier: C2:D2:A2:34:E2:24:BF:87:99:6F:2F:0D:F5:59:EA:D8:82:F9:E6:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtKiNOIkv4eZby8N9Vnq2IL55lE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/i9_4nsaf27_IfcarOKYppMBN4wY.roa
Signing time: Wed 08 Jun 2022 08:12:05 +0000
ROA not before: Wed 08 Jun 2022 08:12:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200549
IP address blocks: 2a00:5ac0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400475324 (0x17dec4bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d2a234e224bf87996f2f0df559ead882f9e651
Validity
Not Before: Jun 8 08:12:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8bdff89ec69fdbbfc87dc6ab38a629a4c04de306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:85:d3:bf:55:28:02:57:42:c4:e6:82:a0:cc:
f9:19:b0:68:15:62:88:39:d8:0d:96:a7:19:6a:b0:
3d:1c:c4:eb:e1:04:aa:3a:92:f3:16:b5:ca:5e:38:
a7:69:af:4d:2a:54:c8:ff:b2:ab:52:2a:ab:65:77:
ec:bb:ca:12:83:f7:f7:77:65:d7:09:80:9d:eb:15:
dd:b1:c3:51:e4:b5:1b:e5:65:0d:43:4a:a8:14:25:
4a:1e:fb:3e:8b:cb:5a:c0:8d:ad:07:71:90:0e:03:
cc:d6:98:b4:0a:69:74:d7:32:2d:17:2b:69:d2:10:
04:12:d0:13:01:45:88:49:ac:71:5a:40:1a:b7:61:
26:08:b8:61:e1:a2:34:c5:0a:cb:5f:dc:8e:9c:fa:
5e:ae:17:76:b4:0b:3f:1b:75:13:a7:f9:f1:35:bc:
00:f8:90:19:bc:64:46:75:b2:fe:cc:2e:20:ea:1e:
6c:bd:e1:4a:8e:43:08:23:a5:44:04:c8:a6:1c:97:
a4:5f:55:93:45:ea:0b:e0:cc:f3:2f:4b:4a:35:93:
58:4b:56:e1:e4:7d:14:da:9b:c0:c9:39:96:56:41:
ed:aa:51:c0:6a:7e:92:ae:e0:30:d7:be:1a:d9:60:
db:2d:da:8e:73:42:66:55:6e:c2:dc:6f:89:aa:42:
87:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:DF:F8:9E:C6:9F:DB:BF:C8:7D:C6:AB:38:A6:29:A4:C0:4D:E3:06
X509v3 Authority Key Identifier:
keyid:C2:D2:A2:34:E2:24:BF:87:99:6F:2F:0D:F5:59:EA:D8:82:F9:E6:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtKiNOIkv4eZby8N9Vnq2IL55lE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/i9_4nsaf27_IfcarOKYppMBN4wY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/wtKiNOIkv4eZby8N9Vnq2IL55lE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:5ac0::/48
Signature Algorithm: sha256WithRSAEncryption
30:58:68:68:ad:3f:74:58:f6:40:ad:8d:d9:c4:80:fc:53:80:
26:2f:20:a6:64:bf:50:2b:52:0b:a0:f3:a2:a6:26:c3:a5:83:
56:92:60:66:e4:96:86:02:21:8b:09:1a:e2:ce:22:e2:21:bc:
09:cf:98:96:b0:8c:e2:29:3a:bf:73:1e:e4:d6:12:0d:fb:82:
f5:7b:6a:a6:1a:a7:b2:fc:10:86:6b:3a:d2:d9:cb:db:b8:e2:
17:d5:8a:52:35:d4:4d:76:0a:fa:58:95:0e:b0:46:f7:4e:a7:
67:90:38:38:45:0d:21:08:1d:71:1e:a8:eb:0d:a5:99:0d:d6:
ef:4a:21:80:06:0f:ca:7e:0d:a6:85:05:d3:72:2f:54:e9:57:
2b:f0:11:60:81:f0:e3:56:22:46:a8:6d:34:1b:cb:1a:66:65:
4e:71:72:ea:d6:92:c8:31:3e:38:5c:ff:7d:ba:31:20:41:16:
3d:06:8b:b0:54:a9:7d:bd:e4:bc:7b:61:91:1c:d2:4f:fb:69:
41:0b:05:18:1f:41:99:34:0f:fc:af:ce:fa:31:a8:76:73:bb:
2a:7b:80:f9:e4:ea:e4:fd:89:fa:38:08:24:09:c8:7e:2f:a6:
00:e6:68:cb:e1:91:3f:c5:95:9a:b2:c8:6a:d2:ba:42:43:d8:
75:8a:a9:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:04 2024 by rpki-client on console-fra.rpki-client.org