Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/wFptZoFmx6K220210hMRLzOn3Z0.roa
File: wFptZoFmx6K220210hMRLzOn3Z0.roa (raw, json)
Hash identifier: +soWkeNcXfgjtxBFTCaLeVsQ1HN11Wt2Z/rgRCJrz7I=
Subject key identifier: C0:5A:6D:66:81:66:C7:A2:B6:DB:4D:B5:D2:13:11:2F:33:A7:DD:9D
Certificate issuer: /CN=b2e448b4a08f0e4c58a283d80735a8a803e10d4e
Certificate serial: 355BDEE5
Authority key identifier: B2:E4:48:B4:A0:8F:0E:4C:58:A2:83:D8:07:35:A8:A8:03:E1:0D:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/suRItKCPDkxYooPYBzWoqAPhDU4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/wFptZoFmx6K220210hMRLzOn3Z0.roa
Signing time: Sat 01 Jan 2022 16:10:38 +0000
ROA not before: Sat 01 Jan 2022 16:10:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44921
IP address blocks: 2a00:1908:e100::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 895213285 (0x355bdee5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2e448b4a08f0e4c58a283d80735a8a803e10d4e
Validity
Not Before: Jan 1 16:10:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c05a6d668166c7a2b6db4db5d213112f33a7dd9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:47:58:4e:96:94:5c:f9:07:d5:92:2c:99:dd:
fd:eb:3f:45:8b:b5:e1:13:cb:f4:53:2e:47:cf:97:
94:1a:1f:e7:96:35:a8:9f:d3:20:db:de:76:e9:74:
b5:b0:15:0c:78:ce:30:7c:3c:c0:14:50:65:fa:dd:
3e:19:04:bd:76:2c:bb:64:cf:30:d3:cf:46:2d:18:
e3:49:e0:92:d1:59:61:c8:e3:3c:70:07:5e:50:55:
38:0e:39:8b:53:00:c4:1d:3a:18:92:3b:78:39:4f:
ec:9d:48:af:cc:d6:4b:ca:03:b8:90:f4:9c:2e:c5:
80:f6:6d:50:f2:5c:8e:97:8a:7e:be:f5:a3:72:23:
ed:78:5c:7f:4c:24:99:b4:15:e0:81:31:da:9d:d0:
7a:11:ef:38:fb:5c:7c:ad:77:a7:b9:a8:9b:bf:aa:
ec:9a:44:28:67:72:fe:73:a8:d4:bf:9b:5d:2e:81:
f4:9f:44:89:ef:11:0f:d0:b1:1f:46:6d:a7:58:b0:
1c:c3:d8:3d:c1:b3:c4:f1:c9:82:cf:8d:0b:3d:43:
37:b9:83:7c:ef:c5:fb:60:49:a6:36:8b:4a:b3:9c:
c8:d2:27:b6:00:09:f8:72:34:04:37:e1:48:79:50:
48:3a:2e:c0:bd:47:7d:92:2c:94:49:9d:64:4c:fa:
8d:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:5A:6D:66:81:66:C7:A2:B6:DB:4D:B5:D2:13:11:2F:33:A7:DD:9D
X509v3 Authority Key Identifier:
keyid:B2:E4:48:B4:A0:8F:0E:4C:58:A2:83:D8:07:35:A8:A8:03:E1:0D:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/suRItKCPDkxYooPYBzWoqAPhDU4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/wFptZoFmx6K220210hMRLzOn3Z0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/suRItKCPDkxYooPYBzWoqAPhDU4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1908:e100::/48
Signature Algorithm: sha256WithRSAEncryption
a0:4d:63:04:7b:41:55:5b:f0:ad:a8:ce:49:4b:08:aa:e6:69:
01:a2:9d:31:99:e6:b2:02:f0:b8:84:51:8b:b5:d7:1f:b1:3f:
77:46:02:04:19:02:cd:e7:52:32:5b:01:cf:1c:c2:37:fb:7b:
b2:84:b0:3b:80:61:fc:d6:4f:cc:dc:ae:f1:de:e3:f3:32:9e:
9b:fc:4f:cc:bb:ac:3a:05:ca:86:ff:ed:b4:bb:b4:4b:e4:d4:
be:9d:91:b2:35:26:b0:18:17:2a:32:1f:f9:5d:56:9f:3f:1a:
ed:d4:5f:d7:c8:05:b9:a2:4b:6b:21:6d:e1:0a:a0:fa:e7:1f:
65:24:0d:a1:08:dd:c0:3d:6f:d2:58:4d:00:d8:11:39:3e:a1:
ce:60:26:ed:b2:1f:40:ea:41:82:cb:98:04:02:c0:bf:65:73:
38:e2:44:76:76:51:ca:da:94:04:ee:a4:05:65:63:e6:0a:80:
a1:d9:5f:e2:6f:4e:6c:03:df:f6:c3:5d:22:01:cc:ec:1c:5a:
40:ff:ad:c8:83:d1:38:72:a2:10:b1:64:91:cb:ec:c8:44:9c:
e6:bb:e5:34:2b:00:58:59:89:f1:00:56:72:22:98:cf:a9:79:
88:87:38:d9:4e:5a:f7:f2:6f:ad:6a:81:12:52:d3:d8:30:17:
be:78:39:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:53 2024 by rpki-client on console-fra.rpki-client.org