Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/sEaiHwJylpGezMnetpUUrBjtN-g.roa
File: sEaiHwJylpGezMnetpUUrBjtN-g.roa (raw, json)
Hash identifier: GFbZe533yM99OXd4zLO98stRF7J64afzeQ2nFjWpRck=
Subject key identifier: B0:46:A2:1F:02:72:96:91:9E:CC:C9:DE:B6:95:14:AC:18:ED:37:E8
Certificate issuer: /CN=b2e448b4a08f0e4c58a283d80735a8a803e10d4e
Certificate serial: 355A6AF0
Authority key identifier: B2:E4:48:B4:A0:8F:0E:4C:58:A2:83:D8:07:35:A8:A8:03:E1:0D:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/suRItKCPDkxYooPYBzWoqAPhDU4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/sEaiHwJylpGezMnetpUUrBjtN-g.roa
Signing time: Sat 01 Jan 2022 16:10:37 +0000
ROA not before: Sat 01 Jan 2022 16:10:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44628
IP address blocks: 2a00:1908:faca::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 895118064 (0x355a6af0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2e448b4a08f0e4c58a283d80735a8a803e10d4e
Validity
Not Before: Jan 1 16:10:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b046a21f027296919eccc9deb69514ac18ed37e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:fe:d0:91:3c:25:21:7c:09:2a:a5:b5:24:59:
4e:5b:2d:bd:ad:63:c2:c6:32:ea:9c:48:ae:72:1b:
e1:00:dc:95:1f:e1:4f:9b:61:9f:f3:25:cd:32:f0:
25:87:b6:49:e4:bf:88:57:47:1c:49:f9:47:90:fe:
dd:d2:7d:a1:07:00:92:1f:71:89:53:61:b8:16:64:
ed:50:8d:1d:eb:73:cd:da:63:2f:e9:81:e8:89:3b:
00:e3:59:76:9e:54:68:29:60:f0:31:6c:e3:61:62:
ce:3c:93:91:9a:42:30:99:0d:cc:74:8a:15:e6:69:
da:09:37:71:30:a3:08:fd:d6:0f:b7:90:6a:13:a9:
77:8d:82:07:80:42:9d:ec:f0:81:5b:c4:a9:3f:29:
08:c5:68:97:4e:30:c8:c0:be:02:38:69:b5:0d:94:
24:ea:ed:b0:78:d7:31:85:5a:ab:83:8e:93:9a:f9:
38:ac:91:e2:00:2c:1f:d0:ad:80:a8:2d:fe:2b:a0:
83:8c:b7:30:58:f1:a4:fc:7f:05:42:c6:05:31:a9:
1e:12:dd:4e:b2:44:16:75:9b:0a:cc:7b:ec:b6:e9:
c3:3f:72:35:31:a7:0e:58:5c:4d:8c:d6:94:f3:e7:
36:21:fd:54:f2:9b:3c:24:46:32:1c:83:6a:69:ef:
98:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:46:A2:1F:02:72:96:91:9E:CC:C9:DE:B6:95:14:AC:18:ED:37:E8
X509v3 Authority Key Identifier:
keyid:B2:E4:48:B4:A0:8F:0E:4C:58:A2:83:D8:07:35:A8:A8:03:E1:0D:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/suRItKCPDkxYooPYBzWoqAPhDU4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/sEaiHwJylpGezMnetpUUrBjtN-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/suRItKCPDkxYooPYBzWoqAPhDU4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1908:faca::/48
Signature Algorithm: sha256WithRSAEncryption
0f:52:4f:2e:cf:13:08:68:57:08:59:e3:21:38:62:75:e7:7c:
e0:a2:7c:9b:2c:2c:0a:13:49:19:65:e0:dc:33:c6:d5:c5:cb:
e4:c8:0a:c4:48:50:e6:b1:6d:2e:04:4a:6b:07:c5:bd:b3:53:
fd:ad:23:25:84:62:37:1b:10:4c:03:06:23:98:59:f0:fa:bd:
21:7d:bf:fe:f9:72:02:a8:ff:00:31:17:86:b5:ae:8f:9d:0b:
6b:63:23:20:88:dd:11:9b:af:d1:0b:3f:70:87:3c:e8:d1:00:
00:c1:65:b2:18:aa:d8:62:c6:62:4c:1e:e6:7f:28:9f:04:5f:
00:a2:6f:4b:e4:80:e6:e9:5b:8f:85:3b:63:bd:d7:30:95:f1:
8d:27:69:8d:6e:80:d9:e4:64:7e:58:47:e4:7a:c9:30:71:a4:
fc:30:42:ba:1f:67:74:56:e0:36:af:be:c4:44:73:6d:b7:24:
42:42:53:21:50:a3:14:d4:4d:9f:20:f2:93:ff:2d:ea:72:6a:
c6:f3:2b:0b:05:e2:ac:5f:ba:ba:82:73:c0:39:44:a5:e4:3c:
65:eb:f9:2e:80:8d:d3:e9:a3:aa:25:d0:c2:d9:27:f7:db:68:
53:6c:c4:e0:c1:8d:c7:61:3e:ae:06:3e:a2:d2:1a:5e:53:f0:
34:30:e8:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:13 2024 by rpki-client on console-ams.rpki-client.org