Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/0XdQQmoPKjJSQ0spAY0_hy6yROk.roa
File: 0XdQQmoPKjJSQ0spAY0_hy6yROk.roa (raw, json)
Hash identifier: y9VTlb+JNEv07q4rOabeSUy/vlj5cL9dI4Ei9uC41wQ=
Subject key identifier: D1:77:50:42:6A:0F:2A:32:52:43:4B:29:01:8D:3F:87:2E:B2:44:E9
Certificate issuer: /CN=b2e448b4a08f0e4c58a283d80735a8a803e10d4e
Certificate serial: 355D0FCF
Authority key identifier: B2:E4:48:B4:A0:8F:0E:4C:58:A2:83:D8:07:35:A8:A8:03:E1:0D:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/suRItKCPDkxYooPYBzWoqAPhDU4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/0XdQQmoPKjJSQ0spAY0_hy6yROk.roa
Signing time: Sat 01 Jan 2022 16:10:38 +0000
ROA not before: Sat 01 Jan 2022 16:10:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50475
IP address blocks: 2a00:1908:e965::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 895291343 (0x355d0fcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2e448b4a08f0e4c58a283d80735a8a803e10d4e
Validity
Not Before: Jan 1 16:10:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d17750426a0f2a3252434b29018d3f872eb244e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:7e:f3:59:3c:9c:97:8b:eb:9c:a6:c9:d2:4a:
61:52:5f:76:ab:2b:fd:f0:3a:0b:c1:61:e6:92:3c:
27:60:d9:2a:67:49:db:84:aa:d3:5d:32:d2:e3:af:
e4:77:54:c3:79:74:f5:d5:96:f4:8c:84:5c:d2:a1:
ca:ed:0a:ab:0b:03:67:3a:d8:f2:e9:82:e6:ef:74:
c2:d2:11:69:77:e4:78:50:78:56:09:d6:83:ce:7c:
7c:a9:eb:c9:c6:2c:cb:db:da:ad:03:1f:34:42:73:
52:67:7a:f2:c1:db:58:5f:15:a3:50:5a:13:64:e1:
4c:c4:14:2e:6a:b3:41:c0:48:90:44:dc:9a:a4:54:
22:3f:1b:95:0b:17:2f:41:3d:0f:05:3d:79:62:b3:
3b:41:c3:ce:14:d2:f7:36:3b:2b:17:4e:44:29:f4:
22:61:9c:51:6b:cd:dc:d0:2b:fa:28:88:0b:56:90:
62:fd:22:81:bd:ce:8e:ab:44:0b:6c:99:a9:3d:aa:
66:78:5e:0d:d7:4a:0e:eb:60:7a:c5:e4:ee:cb:f0:
c6:ea:67:b9:c6:29:68:90:ec:a2:a8:a0:77:ac:68:
e1:b2:9c:54:f1:a9:79:4c:30:ed:be:12:71:33:f7:
1b:4f:dd:9d:44:73:6c:e3:00:c7:4a:14:f9:62:d7:
b9:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:77:50:42:6A:0F:2A:32:52:43:4B:29:01:8D:3F:87:2E:B2:44:E9
X509v3 Authority Key Identifier:
keyid:B2:E4:48:B4:A0:8F:0E:4C:58:A2:83:D8:07:35:A8:A8:03:E1:0D:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/suRItKCPDkxYooPYBzWoqAPhDU4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/0XdQQmoPKjJSQ0spAY0_hy6yROk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/suRItKCPDkxYooPYBzWoqAPhDU4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1908:e965::/48
Signature Algorithm: sha256WithRSAEncryption
0b:14:67:4d:eb:c7:a1:75:09:7f:10:c0:aa:c7:1f:c9:cc:ff:
bc:de:3e:ff:11:ba:7e:85:f9:96:1f:56:95:b1:d1:39:a2:6e:
c2:ce:16:9f:0d:d8:8c:18:f6:08:70:20:82:36:53:2c:c2:e0:
0c:ee:dc:14:d7:d6:ed:66:f5:30:fd:e4:23:59:b4:e2:f5:05:
97:0f:c3:85:bf:48:1c:6a:44:58:a6:73:d0:d4:f9:f7:bb:4b:
b0:ee:a8:be:36:97:64:07:ac:80:2e:6e:77:33:e4:0a:c6:95:
9e:8c:95:05:cc:2f:62:5f:85:ce:97:8d:8a:dd:ad:9e:0a:2f:
8d:65:18:4f:44:ba:bd:e3:d0:03:b2:1c:99:b3:2b:3e:8c:25:
ad:f7:bb:d4:0e:92:85:00:79:03:c2:29:7d:63:0f:d7:d9:b1:
4f:26:6a:4c:95:6c:7a:20:a9:94:42:2a:74:26:e0:91:ec:7b:
89:1a:78:c5:1d:93:26:4c:7a:a2:c1:90:49:d8:e3:97:d5:ac:
ee:80:5b:82:68:35:04:5b:85:5e:09:76:ff:42:47:e8:be:76:
bf:e0:0d:56:39:42:6d:5f:df:8b:a1:97:95:df:50:09:58:d4:
14:cb:91:63:f9:7e:66:3b:d1:b1:1e:75:73:c1:69:f3:e5:d2:
9d:91:0d:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:53 2024 by rpki-client on console-fra.rpki-client.org