Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/_U4cPMJO-e12cK6pp9PJTv8Pc-Y.roa
File: _U4cPMJO-e12cK6pp9PJTv8Pc-Y.roa (raw, json)
Hash identifier: uHkWU+K6QgHop3camTH9Tgz/uYOi9w+icGe6KX/1a9o=
Subject key identifier: FD:4E:1C:3C:C2:4E:F9:ED:76:70:AE:A9:A7:D3:C9:4E:FF:0F:73:E6
Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Certificate serial: 051F5823
Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/_U4cPMJO-e12cK6pp9PJTv8Pc-Y.roa
Signing time: Sat 01 Jan 2022 09:01:50 +0000
ROA not before: Sat 01 Jan 2022 09:01:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52000
IP address blocks: 2a0b:ec82::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85940259 (0x51f5823)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Validity
Not Before: Jan 1 09:01:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd4e1c3cc24ef9ed7670aea9a7d3c94eff0f73e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:aa:7e:34:7e:df:d1:5a:82:db:7d:b9:12:23:
ff:1c:d1:d4:ab:1d:5b:b7:cb:28:80:64:4e:83:a6:
89:65:e5:5e:54:e5:e4:c6:42:f8:39:cb:93:20:53:
50:1c:97:95:06:52:9e:c3:bb:31:47:0f:be:f7:5d:
6a:1a:1f:bc:c4:13:2f:f7:d9:a8:5e:f1:ab:a7:42:
1d:40:7f:4c:bd:95:9c:af:e6:18:d6:57:08:e8:07:
f7:e1:db:e1:27:b2:32:de:ab:c1:07:91:5d:75:7c:
e8:e4:6f:cb:9b:a4:02:ff:4f:36:70:7e:21:30:08:
5f:38:b2:f0:1c:05:7b:c5:d6:aa:4d:37:a9:ad:07:
11:41:60:38:29:6b:52:69:ab:6b:05:af:a0:9f:df:
e2:79:13:28:03:e3:63:c6:5e:42:48:22:c7:77:11:
9a:99:e9:06:69:c6:b6:70:dc:b7:9d:ca:f7:57:e7:
d6:90:93:23:e0:24:28:88:03:57:35:6e:cc:9c:08:
8b:91:e7:af:ce:86:47:de:f3:15:2e:1e:45:57:1d:
d1:82:27:96:f8:1b:8d:6d:d8:47:48:b2:9f:72:6f:
3f:c8:35:ec:d3:3d:db:10:ef:cb:95:a2:8c:d9:82:
7f:1f:07:08:f4:a5:be:ec:48:a6:c6:58:79:e1:ef:
ba:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:4E:1C:3C:C2:4E:F9:ED:76:70:AE:A9:A7:D3:C9:4E:FF:0F:73:E6
X509v3 Authority Key Identifier:
keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/_U4cPMJO-e12cK6pp9PJTv8Pc-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:ec82::/32
Signature Algorithm: sha256WithRSAEncryption
1d:a3:3f:12:35:54:ba:d0:0a:46:e2:04:9f:d9:bd:cd:4a:aa:
36:40:24:67:66:a1:cb:96:2a:67:98:cd:4a:98:6a:aa:23:b5:
f5:e4:ca:e2:0d:c8:03:6a:37:9a:d4:a1:d9:e0:76:a2:be:15:
36:8c:b4:fb:3f:6b:76:64:6d:f8:5e:43:56:f5:0b:ac:26:58:
a8:90:7a:5b:be:0d:f0:5b:d0:ee:fe:d6:e1:c4:74:80:6e:ba:
a7:4c:91:b6:73:c9:f0:e5:d9:c9:bd:90:94:a1:b2:cf:b2:36:
8d:bc:f3:b1:da:d4:9a:d7:10:d6:2c:ac:a9:62:7a:25:b9:69:
ec:fb:cf:cd:0a:a0:00:14:63:88:11:28:f5:ef:cc:ac:34:45:
1d:ba:00:9d:e6:70:80:3f:08:ca:55:c4:48:8c:31:b7:ad:60:
38:7e:d6:b0:91:59:b7:be:a1:bf:b8:20:07:42:26:0a:dc:89:
ab:87:e7:4b:f6:47:37:98:eb:81:82:70:07:1d:cc:1b:48:03:
79:c6:4a:3f:c5:93:49:67:ff:e4:81:76:82:ef:69:3c:d5:50:
12:63:a0:43:d4:10:52:98:07:0a:ce:eb:07:b6:ba:f5:77:a6:
4c:6d:69:6a:ef:2c:75:50:ae:f4:16:87:7b:72:03:42:96:1e:
03:3e:ad:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:37 2024 by rpki-client on console-fra.rpki-client.org