Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/RAE2Dp8UwPVACAZowJaikqXiGgM.roa
File: RAE2Dp8UwPVACAZowJaikqXiGgM.roa (raw, json)
Hash identifier: fvsLUjRoE4Cml/yoBNgLQA5lOOvvWx8cUf0eLZwayDc=
Subject key identifier: 44:01:36:0E:9F:14:C0:F5:40:08:06:68:C0:96:A2:92:A5:E2:1A:03
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 19DDF58D
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/RAE2Dp8UwPVACAZowJaikqXiGgM.roa
Signing time: Sat 01 Jan 2022 15:56:45 +0000
ROA not before: Sat 01 Jan 2022 15:56:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49981
IP address blocks: 2a07:e342::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 433976717 (0x19ddf58d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 15:56:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4401360e9f14c0f540080668c096a292a5e21a03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:85:5c:80:a6:11:b8:db:62:6a:11:5d:b4:7c:
08:03:8e:9d:6f:ad:3f:7a:e2:fd:a1:6f:86:d2:bf:
e3:a0:fb:f3:3b:53:55:b2:01:72:f2:ee:82:67:fa:
89:9e:60:c4:e4:c3:bb:80:e5:ed:2a:f2:c0:e7:fe:
e1:d8:01:bd:7d:65:fb:5e:21:2c:a7:e8:08:cc:c0:
e4:e0:04:00:81:c7:ff:21:59:35:ca:13:9d:24:f5:
43:02:3c:06:9c:94:f3:29:3e:74:0c:61:03:1b:8a:
5b:61:3a:80:f4:04:9f:b4:58:93:1e:1a:75:8a:5d:
2b:fb:92:7f:00:09:83:cd:71:c5:2a:9e:cd:0f:eb:
b5:81:92:8f:ce:ff:25:24:fa:df:04:01:70:9b:8b:
36:99:5c:12:75:43:a6:f6:25:9f:f7:48:b8:56:e6:
3a:be:43:e5:fb:94:ca:9a:84:8b:e0:69:79:62:60:
cc:5e:b2:c9:77:9d:b2:ca:f8:92:56:c2:cd:2a:f6:
26:10:8b:c7:98:44:70:73:57:61:72:96:00:27:c7:
3d:91:aa:69:c4:df:98:d1:33:87:a3:a1:2d:fa:9a:
87:df:1c:8f:ec:ef:02:02:c4:a3:d6:80:a4:d8:95:
27:8a:ef:c8:b2:06:89:a5:f4:f1:ce:6a:88:19:2e:
62:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:01:36:0E:9F:14:C0:F5:40:08:06:68:C0:96:A2:92:A5:E2:1A:03
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/RAE2Dp8UwPVACAZowJaikqXiGgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:e342::/32
Signature Algorithm: sha256WithRSAEncryption
90:6d:3a:9d:aa:03:d2:2a:78:a6:46:35:bd:15:ac:26:ad:01:
22:ab:61:90:4c:6f:9d:7a:c6:63:35:96:f3:51:3f:1c:6e:19:
0f:44:32:a3:7b:25:1a:b6:86:b7:42:db:9d:3a:06:98:4e:dc:
f1:34:9c:a9:46:7a:1a:d4:60:b3:18:4b:f1:65:48:ba:00:b7:
7e:29:6a:64:73:35:0e:57:40:5a:8d:02:8a:63:68:16:e7:ca:
fb:e0:54:0b:fc:2e:23:61:a1:9e:de:09:75:41:55:d2:2d:af:
61:dc:39:2a:00:00:fa:94:b4:71:ea:9f:a9:6a:75:59:1b:cc:
80:85:85:71:0d:c2:59:88:25:db:ed:ce:f0:91:84:9f:e7:e7:
be:f7:08:60:05:43:63:0c:fb:2a:df:c4:ff:bf:d3:cd:13:34:
29:b0:75:5e:71:18:83:f1:ab:f4:2f:18:76:86:f2:64:15:37:
fa:bb:2b:1d:c9:c2:ad:6a:46:fc:27:7e:cd:bb:05:8b:2c:dc:
a9:45:2f:e1:83:66:69:2c:2d:6c:da:23:87:89:59:78:98:d0:
3d:91:4e:df:31:04:bf:ec:55:6b:d7:49:b5:b3:3e:94:5f:37:
fd:91:f7:37:f9:b3:3c:69:66:66:76:0d:da:45:d8:ac:f4:cf:
4a:55:06:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:24 2023 by rpki-client on console-ams.rpki-client.org