Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/oLgFkHTeAwlnlTA3_AoHKRWbBPo.roa
File: oLgFkHTeAwlnlTA3_AoHKRWbBPo.roa (raw, json)
Hash identifier: q7brd38VLssebMaDQPq4zkf0xOQu7iWyrsurNwYAaow=
Subject key identifier: A0:B8:05:90:74:DE:03:09:67:95:30:37:FC:0A:07:29:15:9B:04:FA
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 0FF5E3D4
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/oLgFkHTeAwlnlTA3_AoHKRWbBPo.roa
Signing time: Sat 01 Jan 2022 14:59:52 +0000
ROA not before: Sat 01 Jan 2022 14:59:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211230
IP address blocks: 2a06:e881:79ff::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 267772884 (0xff5e3d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 1 14:59:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0b8059074de030967953037fc0a0729159b04fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:4f:43:0d:08:3a:8f:31:0e:d3:d2:86:71:7c:
93:bb:93:bd:80:04:f4:55:4f:99:fe:f4:da:ff:21:
8d:ce:0d:7e:09:03:16:6b:de:c4:d2:90:35:7d:6c:
cb:cf:4b:f3:4c:26:3e:7a:3d:04:25:66:5f:21:4d:
41:c2:4b:3e:29:48:76:60:5d:28:63:0d:69:c4:f5:
0e:9e:f5:ae:ff:b1:67:15:67:91:c1:70:52:b1:3d:
94:23:7c:27:61:a9:aa:27:f5:e8:97:22:fa:c2:14:
4a:e5:57:0b:bf:5b:14:6b:2c:90:0c:cb:8b:14:84:
cf:54:d0:b7:22:7c:50:47:11:8e:15:74:70:3f:f0:
62:79:72:0b:de:42:9f:e4:e3:16:54:dc:2c:62:d0:
4b:8e:7e:f2:f4:60:5b:20:46:ac:d5:43:84:89:5f:
b7:50:68:ae:d8:1c:c3:13:02:0f:c6:48:f9:f5:55:
28:79:f6:c8:4a:e6:3a:bb:ef:3c:c4:df:f5:a9:e4:
aa:c9:9a:c2:31:49:0f:66:b1:9c:d9:91:ec:2b:9c:
7a:c6:c4:9a:bd:e9:b2:55:fa:b5:91:73:42:d8:6b:
1e:cf:dd:94:7c:24:5f:65:b0:db:1c:de:d0:bf:83:
aa:2d:02:fd:1a:9d:02:ab:11:06:0f:90:52:5a:61:
93:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:B8:05:90:74:DE:03:09:67:95:30:37:FC:0A:07:29:15:9B:04:FA
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/oLgFkHTeAwlnlTA3_AoHKRWbBPo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:79ff::/48
Signature Algorithm: sha256WithRSAEncryption
a9:4c:ff:a0:e1:9f:e3:ab:c9:37:8d:13:75:71:94:b7:cb:35:
7f:b5:24:ba:f8:c3:d7:43:b7:5d:92:88:49:84:34:49:dd:a4:
96:6e:7a:74:48:8e:10:75:c5:06:67:93:56:cb:63:bc:8a:09:
7a:4b:8c:1d:0b:7f:b2:0a:da:7c:30:97:c6:d9:dd:e3:21:83:
4f:cb:14:dc:27:fa:d3:c8:09:8e:c6:af:77:68:5a:3d:30:96:
6a:8b:17:93:55:66:74:8e:00:d2:86:fa:61:6a:22:f9:68:be:
87:cb:4a:7c:60:c8:b7:e1:78:43:bf:3d:32:d5:0f:aa:04:9b:
4a:2f:59:c6:33:80:8d:22:0c:61:c2:35:6b:f4:57:3a:0d:24:
91:e2:4b:27:78:36:43:19:70:b5:fb:ef:91:8d:6c:32:bf:96:
0c:25:9e:ed:41:67:22:70:a2:80:f1:ec:74:2e:cc:17:af:f4:
61:48:cf:0e:2d:6b:52:9b:ae:63:d5:23:7a:dd:b2:f7:6e:a2:
c2:e1:59:59:f6:2d:8a:9f:87:ee:3a:5f:ec:cd:82:3d:09:0e:
ca:3d:b0:6c:08:cd:12:e4:b9:79:4e:dd:05:d9:ea:44:29:28:
46:8f:7d:9f:50:04:b2:a6:86:b5:d1:e8:7b:28:ae:4e:da:ea:
9a:99:4e:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:55 2023 by rpki-client on console-fra.rpki-client.org