Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/7b0a85-9677-4d03-afb6-a9faf6a26426/1/_wFElgzUqKZy7ssQS4AEoVYc7SU.roa
File: _wFElgzUqKZy7ssQS4AEoVYc7SU.roa (raw, json)
Hash identifier: Y5uA2r48lJtdpjs8OpX7bbg63TMCNRJrmZ/EQoHlq2Y=
Subject key identifier: FF:01:44:96:0C:D4:A8:A6:72:EE:CB:10:4B:80:04:A1:56:1C:ED:25
Certificate issuer: /CN=f2807f280da99569eca24346babe9dc85ac13240
Certificate serial: 025179FF
Authority key identifier: F2:80:7F:28:0D:A9:95:69:EC:A2:43:46:BA:BE:9D:C8:5A:C1:32:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8oB_KA2plWnsokNGur6dyFrBMkA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/7b0a85-9677-4d03-afb6-a9faf6a26426/1/_wFElgzUqKZy7ssQS4AEoVYc7SU.roa
Signing time: Sat 01 Jan 2022 13:57:12 +0000
ROA not before: Sat 01 Jan 2022 13:57:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 18622
IP address blocks: 2a02:e38:4100::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38894079 (0x25179ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2807f280da99569eca24346babe9dc85ac13240
Validity
Not Before: Jan 1 13:57:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff0144960cd4a8a672eecb104b8004a1561ced25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:39:38:1d:51:66:8d:21:55:d6:99:25:d6:0f:
89:4c:6c:da:35:46:00:b2:60:f0:73:ca:86:c5:c0:
a3:b6:97:5f:82:44:8f:56:a6:67:a7:a5:dd:05:9d:
2e:de:99:3f:d7:b4:e0:a7:5f:13:62:87:16:a8:83:
b9:b8:27:f9:65:e0:01:ac:0e:62:af:3f:93:11:89:
80:f5:15:00:ad:ce:e0:e4:2d:b8:8f:89:9e:e6:d1:
f8:47:be:55:a0:8d:a9:f2:f0:19:f4:54:67:b5:9f:
8a:d8:34:f2:7f:98:de:3b:b8:37:44:3e:f0:a4:4a:
b1:92:29:9f:90:cd:f8:2d:c4:40:93:1b:34:a0:2b:
34:06:c5:63:9f:a0:b9:95:06:6d:72:5b:94:c4:50:
81:0f:d2:88:bb:29:f5:d9:1e:39:c6:0d:f4:10:89:
e4:d9:ec:c3:d5:97:f9:c7:d0:f5:9e:3d:12:b4:4f:
73:bd:e8:ae:4f:48:f1:ea:2c:f9:11:2e:c4:4c:e5:
8c:ec:bc:ec:82:a6:3c:43:b2:08:af:6e:9d:0a:f9:
1e:12:1a:93:fd:d7:83:a6:6c:98:e3:88:40:df:8e:
e1:09:50:a8:ef:9f:c5:b8:46:a9:98:c3:80:78:9c:
58:4f:53:93:3a:8c:8a:bd:76:44:b5:d7:9e:46:b1:
53:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:01:44:96:0C:D4:A8:A6:72:EE:CB:10:4B:80:04:A1:56:1C:ED:25
X509v3 Authority Key Identifier:
keyid:F2:80:7F:28:0D:A9:95:69:EC:A2:43:46:BA:BE:9D:C8:5A:C1:32:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8oB_KA2plWnsokNGur6dyFrBMkA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/7b0a85-9677-4d03-afb6-a9faf6a26426/1/_wFElgzUqKZy7ssQS4AEoVYc7SU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/7b0a85-9677-4d03-afb6-a9faf6a26426/1/8oB_KA2plWnsokNGur6dyFrBMkA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:e38:4100::/40
Signature Algorithm: sha256WithRSAEncryption
0e:e7:7b:ea:71:b4:11:f6:a0:88:50:bb:42:61:37:2f:c4:b8:
fd:0c:39:c1:ff:67:76:c3:57:60:26:a0:22:e5:d9:11:87:f6:
e4:cc:aa:99:86:8a:80:6f:f3:a0:e4:fe:b1:5c:11:4b:b6:fc:
78:fd:e4:89:e1:96:6a:d6:85:6d:df:53:41:16:cb:0c:65:6e:
99:c8:9b:7c:84:5f:73:0e:fb:96:1c:71:a7:5f:16:1e:3e:f8:
10:a8:16:3e:55:fb:ee:8f:d2:5c:86:e4:9a:9f:86:37:72:7b:
f1:28:c4:e4:44:c6:8f:7d:63:c5:4a:24:79:f3:ed:85:e3:8a:
b1:c7:ac:87:70:74:92:b4:dc:e1:9c:5c:a7:19:e9:13:2c:f2:
b8:5d:d5:0d:a5:a9:d1:4c:96:f4:c6:bc:63:26:a5:56:6b:4a:
85:44:f8:5d:08:39:b5:aa:a8:d6:67:ff:01:47:a7:37:24:c5:
c3:52:1c:4e:9e:1c:01:61:63:61:fe:80:62:cf:7b:f7:91:92:
3e:a6:43:59:91:fa:86:0d:be:43:0a:25:7c:f4:9d:37:cd:ec:
0a:36:f0:de:70:74:7c:9d:75:82:9c:5a:e0:68:b0:8d:28:3c:
49:ea:bb:a8:55:75:37:d9:fe:39:9d:d1:be:3f:ee:ad:d9:5e:
da:f5:c0:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:36 2023 by rpki-client on console-fra.rpki-client.org