Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/nIg1JU3bnyKAzl0guX8a0m2qmzQ.roa
File: nIg1JU3bnyKAzl0guX8a0m2qmzQ.roa (raw, json)
Hash identifier: kyVtCvcIUW2QFNzEYoA22uuSjUafAkYxPfwrfuC+TFw=
Subject key identifier: 9C:88:35:25:4D:DB:9F:22:80:CE:5D:20:B9:7F:1A:D2:6D:AA:9B:34
Certificate issuer: /CN=b2e448b4a08f0e4c58a283d80735a8a803e10d4e
Certificate serial: 355D9F33
Authority key identifier: B2:E4:48:B4:A0:8F:0E:4C:58:A2:83:D8:07:35:A8:A8:03:E1:0D:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/suRItKCPDkxYooPYBzWoqAPhDU4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/nIg1JU3bnyKAzl0guX8a0m2qmzQ.roa
Signing time: Sat 01 Jan 2022 16:10:38 +0000
ROA not before: Sat 01 Jan 2022 16:10:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199491
IP address blocks: 2a00:1908:e000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 895328051 (0x355d9f33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2e448b4a08f0e4c58a283d80735a8a803e10d4e
Validity
Not Before: Jan 1 16:10:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c8835254ddb9f2280ce5d20b97f1ad26daa9b34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:cd:b5:4e:d3:f8:7e:0c:80:e3:1e:ab:48:0b:
f0:99:a5:b1:b1:d3:c0:4a:a2:99:2e:95:20:1b:52:
63:5d:4e:1f:be:2b:86:7a:fa:b7:6e:0c:51:45:71:
da:4d:bb:e0:61:7b:65:89:f8:8c:79:06:46:8c:4e:
96:70:36:06:b5:f7:e5:74:69:e8:fd:12:d0:3a:2c:
ce:a2:61:8e:68:b4:5d:31:ac:4a:68:4a:9f:fd:46:
0e:7d:0c:3a:5d:0e:73:81:52:03:6b:ef:3d:9c:b5:
10:52:4d:e7:f3:70:c2:3e:52:fa:52:8f:d7:ca:2a:
d8:5f:18:4c:2d:d0:30:ab:fd:43:a3:6b:1c:1e:da:
75:5d:26:31:1f:24:42:65:46:21:c3:aa:fa:9f:a8:
72:a5:4a:1b:4c:ee:0e:38:a4:31:a3:af:ef:19:4a:
86:33:e2:5a:50:1d:ef:79:e8:8e:d0:fb:60:c4:b6:
02:9a:fc:78:78:ce:39:21:a5:bf:64:af:07:07:a7:
d0:fa:33:96:93:c6:6d:d4:f1:76:5a:a8:13:b0:cd:
4e:db:7b:ed:0f:12:3b:15:59:31:7c:15:d1:98:7a:
86:dd:a4:d1:56:6b:f8:a3:e5:9a:87:b0:91:62:2b:
ef:44:fd:f4:14:84:ac:56:5f:3d:e8:09:d1:07:cf:
d7:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:88:35:25:4D:DB:9F:22:80:CE:5D:20:B9:7F:1A:D2:6D:AA:9B:34
X509v3 Authority Key Identifier:
keyid:B2:E4:48:B4:A0:8F:0E:4C:58:A2:83:D8:07:35:A8:A8:03:E1:0D:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/suRItKCPDkxYooPYBzWoqAPhDU4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/nIg1JU3bnyKAzl0guX8a0m2qmzQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/suRItKCPDkxYooPYBzWoqAPhDU4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1908:e000::/48
Signature Algorithm: sha256WithRSAEncryption
61:15:9c:6e:0f:d8:27:cb:19:f6:c8:fe:ab:a5:1c:14:b4:f4:
00:69:cf:b2:c0:86:3a:0f:7a:00:6b:54:80:bf:4e:e1:de:4c:
76:38:8e:df:b6:87:20:d7:31:58:d9:12:ae:6f:79:d0:2c:6b:
0b:d3:96:1f:1d:58:49:71:39:b3:fc:ed:2a:33:33:9a:6b:ec:
82:a0:d7:b3:c5:5d:66:4e:25:9d:a6:17:4e:22:0a:a1:c4:a4:
11:17:f5:7d:db:35:08:df:76:1e:1d:cd:99:f2:77:b6:94:4c:
4f:59:ab:70:55:09:f8:07:fe:d1:85:9c:b7:0f:d3:91:77:d5:
62:6e:50:1f:4a:16:5b:a1:d5:6d:3c:18:c1:ea:cb:06:a1:8f:
6a:79:78:45:9d:ab:df:81:9f:cd:1d:ef:98:a7:7f:b6:64:d7:
5b:42:bf:05:af:f4:8e:20:74:b8:7a:b7:65:b4:e8:ef:5b:6b:
2e:85:99:3c:b2:14:9d:f1:04:53:cb:f4:00:a7:cd:65:56:48:
c0:74:5a:d4:33:43:67:e7:38:1d:c7:30:e7:23:c8:b0:70:d3:
4b:16:4c:da:03:5c:c0:99:2b:fa:b0:b6:f8:26:10:7a:b9:7f:
b0:fe:e3:70:c8:45:3c:a7:67:e1:87:a8:a4:e5:eb:b8:ac:59:
49:e6:76:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:53 2024 by rpki-client on console-fra.rpki-client.org