Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/fu4hYeNH0d-jHbZDnTo9-DNRpqI.roa
File: fu4hYeNH0d-jHbZDnTo9-DNRpqI.roa (raw, json)
Hash identifier: WRC0c3UzUA6/kJ4pBpQWbXG6LTAQ0RozWgtcr6pw2Ao=
Subject key identifier: 7E:EE:21:61:E3:47:D1:DF:A3:1D:B6:43:9D:3A:3D:F8:33:51:A6:A2
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 0BF38D86
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/fu4hYeNH0d-jHbZDnTo9-DNRpqI.roa
Signing time: Sat 01 Jan 2022 12:55:08 +0000
ROA not before: Sat 01 Jan 2022 12:55:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213392
IP address blocks: 2a0c:9a40:8040::/43 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 200510854 (0xbf38d86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 1 12:55:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7eee2161e347d1dfa31db6439d3a3df83351a6a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d0:b4:66:24:48:09:73:5a:fd:75:f0:61:5e:
d9:72:72:54:49:51:a2:c2:60:2e:df:31:7d:3f:2d:
1d:c2:11:75:e3:1b:97:a3:c8:96:56:c8:24:2f:88:
33:8f:b3:3b:00:f8:17:b6:20:a7:ef:c5:56:7b:81:
f8:6f:9f:13:41:2e:b0:fc:05:97:e7:dc:4a:07:2d:
74:bf:d8:70:98:96:40:33:b7:9f:1f:bc:4a:85:3b:
a2:49:f3:9c:93:63:5e:36:7b:0e:c8:3a:5b:20:2b:
da:36:a5:ac:41:d9:51:7e:ee:cb:71:50:b0:3b:0a:
e5:1d:f6:42:8e:f7:fa:4e:6b:3c:da:39:1b:54:b2:
0d:39:23:27:e2:5f:ad:ed:c2:a9:2d:8f:73:91:c5:
3e:db:2a:86:e7:08:93:77:3a:c0:af:4a:91:11:a1:
5d:98:23:bb:03:41:08:11:b0:8a:d5:23:28:40:cd:
69:1e:52:02:f1:4a:d1:9c:25:f6:28:30:31:52:c5:
12:4f:e1:b1:79:28:84:98:62:76:83:84:36:33:4a:
a6:50:65:2c:bb:a3:58:49:34:8f:1b:47:cb:f7:6a:
c1:c5:5a:29:d4:7c:05:e0:a4:d3:a4:4e:b6:19:d8:
08:ce:9c:e4:e9:27:dc:3f:4b:ec:e9:69:21:cc:a3:
a0:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:EE:21:61:E3:47:D1:DF:A3:1D:B6:43:9D:3A:3D:F8:33:51:A6:A2
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/fu4hYeNH0d-jHbZDnTo9-DNRpqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8040::/43
Signature Algorithm: sha256WithRSAEncryption
ab:8d:b8:3d:04:83:a4:9a:af:ce:8c:7d:7a:d1:8f:a3:1f:7d:
8d:97:8b:94:d2:1c:47:04:e5:e7:b9:d4:aa:3f:43:02:2d:c4:
ea:f7:05:9d:71:ff:32:b3:50:f6:8c:4a:83:9d:dd:e1:bf:b5:
54:96:dd:04:88:cb:64:f7:ae:27:12:a7:e9:1d:be:e9:94:2d:
61:ae:7b:2b:ca:23:07:ec:fc:40:80:f3:24:da:bd:d9:08:d7:
f7:bd:13:46:ce:1b:bc:39:79:4d:33:ec:c0:d2:51:2e:61:35:
b9:6a:ed:b1:11:d4:49:88:ae:5a:96:74:c9:ed:77:db:4c:b7:
e9:58:75:df:32:3b:d0:66:11:c0:b5:4b:25:e2:9f:10:90:bb:
06:9f:6f:d6:0e:20:20:b2:ca:fc:dc:9a:6e:60:42:e8:00:97:
f0:9d:6b:9e:ee:a4:bf:6e:6d:6f:8f:33:69:00:54:ae:15:12:
db:7c:dd:d5:d2:57:d3:09:da:b8:fa:cc:a5:09:88:4b:d3:b4:
6b:7d:34:92:39:0a:4d:26:0a:e0:b6:c0:71:cd:b2:ef:a1:02:
33:39:c0:26:cb:3f:57:9f:4d:19:eb:4b:71:61:9d:07:a6:a1:
b6:24:1d:3b:07:cb:dd:b2:b8:51:00:f2:32:49:f3:dd:2a:8d:
f7:0d:8d:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:28 2023 by rpki-client on console-ams.rpki-client.org