Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/_rHFOtK2AnEdicjG7iXomaE02V4.roa
File: _rHFOtK2AnEdicjG7iXomaE02V4.roa (raw, json)
Hash identifier: +GM9aBOGgZeL/1iCXI7lipWDWCPs2B9f4CfPjGq/wjQ=
Subject key identifier: FE:B1:C5:3A:D2:B6:02:71:1D:89:C8:C6:EE:25:E8:99:A1:34:D9:5E
Certificate issuer: /CN=2224fd65003c39490abeaa9e1efe5f20246dc77b
Certificate serial: 9D9E
Authority key identifier: 22:24:FD:65:00:3C:39:49:0A:BE:AA:9E:1E:FE:5F:20:24:6D:C7:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IiT9ZQA8OUkKvqqeHv5fICRtx3s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/_rHFOtK2AnEdicjG7iXomaE02V4.roa
Signing time: Wed 01 Jun 2022 18:30:20 +0000
ROA not before: Wed 01 Jun 2022 18:30:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206351
IP address blocks: 2001:67c:12e0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40350 (0x9d9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2224fd65003c39490abeaa9e1efe5f20246dc77b
Validity
Not Before: Jun 1 18:30:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=feb1c53ad2b602711d89c8c6ee25e899a134d95e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:29:0c:bb:a8:78:c9:2d:00:b4:b5:e0:1c:5a:
08:4b:75:27:69:83:c7:0f:26:77:c3:86:43:b6:75:
3a:53:4a:68:00:aa:ed:a6:bf:b4:e7:5a:c1:e8:44:
4a:7d:ab:c3:94:93:a0:ba:a9:d3:79:f1:f7:10:74:
2f:ad:a7:79:8c:3e:74:51:82:6a:81:7f:94:6b:b8:
9a:68:d9:fe:b0:9c:fd:cf:bb:60:84:ac:84:c4:1f:
82:16:60:0d:cb:52:c4:2e:8a:0b:5a:96:3a:3b:99:
3f:1f:32:a2:e1:a1:ad:fb:4f:fc:37:7c:93:cf:5c:
52:5a:fe:95:19:79:df:a7:7e:05:33:3d:c6:2d:f8:
d2:11:d9:0a:2e:7a:ca:d1:85:67:94:89:69:f7:10:
22:8a:bc:ab:d4:9d:4e:b2:05:02:2b:81:95:de:c6:
5a:5e:54:23:c0:61:dd:70:73:12:b9:79:5d:ef:80:
53:78:5e:2b:46:4d:e4:1e:08:b0:84:0a:8a:40:c6:
5a:76:cb:df:d7:6c:ba:0f:8b:2b:98:fa:2f:38:9e:
0b:bd:7d:74:a0:02:ff:95:46:68:e3:88:44:10:c1:
c8:57:d2:aa:9f:18:5f:70:7d:6f:c2:5f:29:ee:0d:
1e:f6:46:0b:7f:98:e5:68:8b:53:c5:1b:4c:d0:99:
f2:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:B1:C5:3A:D2:B6:02:71:1D:89:C8:C6:EE:25:E8:99:A1:34:D9:5E
X509v3 Authority Key Identifier:
keyid:22:24:FD:65:00:3C:39:49:0A:BE:AA:9E:1E:FE:5F:20:24:6D:C7:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IiT9ZQA8OUkKvqqeHv5fICRtx3s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/_rHFOtK2AnEdicjG7iXomaE02V4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:12e0::/48
Signature Algorithm: sha256WithRSAEncryption
5e:f1:4a:f6:cf:17:e5:1e:f9:3c:cd:1b:70:87:b4:79:00:d3:
b8:da:30:65:ce:42:ac:3d:8d:9e:4e:13:16:33:5f:15:b3:0f:
ad:0e:2b:ba:ce:b1:ff:1a:66:10:18:19:60:2f:09:8f:98:b8:
1b:b1:22:11:97:5e:97:6c:a2:81:7e:aa:9c:a4:68:95:47:4b:
6c:9b:42:a7:04:50:a4:f8:9c:a7:72:7d:20:aa:6b:34:49:9f:
40:af:0e:28:42:fe:a1:8b:d2:8a:fa:de:36:c9:e2:18:ba:91:
d2:54:14:70:6c:7e:52:63:b5:79:d6:17:fd:f2:83:e6:fd:5c:
ea:3e:0f:03:64:72:e1:e0:5c:da:58:de:40:60:01:06:97:54:
0a:1f:be:87:ab:e7:9b:88:a8:59:46:06:23:37:10:db:99:f9:
4e:11:56:25:7f:52:5a:7c:51:1b:97:18:f7:fa:8a:38:e4:20:
f4:81:cb:f3:85:a3:6d:e0:9b:0c:61:0b:34:37:4e:3e:cc:59:
f6:9e:81:aa:32:45:d2:c9:31:39:45:b4:92:e1:48:23:4c:6e:
dd:e1:4e:e4:96:65:e9:ed:28:a8:fa:c3:3b:37:6e:c2:85:fc:
d2:fc:31:8f:68:93:6a:3f:1b:c7:fa:38:2c:16:57:9f:fe:5d:
3d:09:ec:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:05 2024 by rpki-client on console-fra.rpki-client.org