Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/2-sjFehqye686-DhXGLavvxXpqU.roa
File: 2-sjFehqye686-DhXGLavvxXpqU.roa (raw, json)
Hash identifier: So69nFIxbWvQC4oEJ4XxYIZb4sJw7Z7k0y8xNzxmRzg=
Subject key identifier: DB:EB:23:15:E8:6A:C9:EE:BC:EB:E0:E1:5C:62:DA:BE:FC:57:A6:A5
Certificate issuer: /CN=73f986c7705bd808c1b02ebd754fbfa91807e9b6
Certificate serial: 11872B73
Authority key identifier: 73:F9:86:C7:70:5B:D8:08:C1:B0:2E:BD:75:4F:BF:A9:18:07:E9:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_mGx3Bb2AjBsC69dU-_qRgH6bY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/2-sjFehqye686-DhXGLavvxXpqU.roa
Signing time: Sat 01 Jan 2022 11:04:05 +0000
ROA not before: Sat 01 Jan 2022 11:04:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41996
IP address blocks: 2a0b:b600:3c03::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 294071155 (0x11872b73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73f986c7705bd808c1b02ebd754fbfa91807e9b6
Validity
Not Before: Jan 1 11:04:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dbeb2315e86ac9eebcebe0e15c62dabefc57a6a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:97:d7:27:37:46:57:c4:e4:89:3f:9d:7c:9e:
91:0d:6e:dd:82:15:38:59:d3:f8:96:45:cc:af:e8:
f3:f7:96:2e:6d:5a:35:67:f7:1b:51:48:45:86:fe:
13:18:ef:36:26:70:aa:d6:fd:06:e7:e8:88:ee:06:
29:48:38:a6:35:a6:d7:b4:e7:14:e1:e8:e4:e4:3f:
b9:fb:b5:7f:b6:2e:a3:f2:bf:19:a2:ac:f4:c1:70:
ef:be:c0:2e:3e:3b:b7:98:9e:34:be:42:f1:65:ae:
32:5d:d6:3c:c6:03:7e:0f:2f:ad:90:34:da:6f:64:
8c:9e:36:67:56:b0:5b:ae:50:36:80:86:de:6c:ac:
3b:0b:72:48:a1:6e:8a:19:72:88:71:25:66:27:48:
26:53:0d:72:65:df:d7:d7:7c:76:2c:95:9e:e7:8e:
58:18:44:1a:31:54:52:8a:62:34:9c:c9:49:24:84:
cb:10:03:ad:cb:8f:a2:1e:82:ba:c7:70:38:20:75:
6f:7f:1f:64:42:4e:0d:bc:62:0c:70:07:70:77:bb:
23:cd:0a:29:d2:93:67:df:82:8b:96:35:69:85:cc:
e2:ed:0f:13:fe:64:f6:c4:c6:bc:3b:7d:73:1c:88:
e2:7f:20:34:cc:68:2f:8d:76:b2:0d:76:3c:4c:be:
5d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:EB:23:15:E8:6A:C9:EE:BC:EB:E0:E1:5C:62:DA:BE:FC:57:A6:A5
X509v3 Authority Key Identifier:
keyid:73:F9:86:C7:70:5B:D8:08:C1:B0:2E:BD:75:4F:BF:A9:18:07:E9:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_mGx3Bb2AjBsC69dU-_qRgH6bY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/2-sjFehqye686-DhXGLavvxXpqU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/c_mGx3Bb2AjBsC69dU-_qRgH6bY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:b600:3c03::/48
Signature Algorithm: sha256WithRSAEncryption
92:1e:e4:bd:37:88:41:c3:83:b8:9d:59:10:ce:8c:b3:dd:fc:
78:0c:ff:95:d5:97:f5:96:6d:57:aa:73:1a:2a:87:86:e6:d7:
55:49:d4:8d:35:97:f5:db:b4:30:57:66:42:58:51:3a:df:2e:
2b:00:c6:65:7c:52:d5:fc:5b:da:49:7c:9c:0d:19:6d:6b:b5:
75:e5:f7:b5:d8:69:3b:8f:e2:b4:57:3b:65:f7:b8:71:93:eb:
ab:d8:21:9e:0d:75:69:96:d3:d2:4b:a6:d4:9d:8e:b3:7c:1f:
fd:6a:fa:a4:ca:c0:ca:a2:ec:0e:4b:29:c3:bb:5e:66:d3:47:
f9:e8:40:14:cd:ee:93:8c:87:da:3a:ec:a8:c1:cd:6d:2f:0e:
bc:dd:32:84:2b:c0:20:ef:d6:ef:dd:ea:f7:a2:12:99:74:81:
04:1e:6a:6f:8a:fa:a7:47:5d:d5:e2:ed:f4:7a:1f:43:c6:04:
21:45:c5:72:27:a2:ab:4d:35:9a:ed:5b:c4:41:e4:41:55:35:
48:f5:38:b7:78:db:15:85:66:6a:ad:4a:a0:2a:1b:9a:55:4c:
d6:49:a2:3b:a9:ba:39:a8:23:4c:b6:8d:04:74:bc:4b:a8:31:
f3:08:17:25:c9:36:b7:cb:70:01:77:71:a6:d0:4a:0c:70:a2:
b5:c1:92:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:25 2024 by rpki-client on console-ams.rpki-client.org