Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/9c7aff-d83e-4f51-9b96-5484c39b2d4e/1/ArlisXSbFZSp-_iOSDQ_tWnyH0g.roa
File: ArlisXSbFZSp-_iOSDQ_tWnyH0g.roa (raw, json)
Hash identifier: yRgIXsx9se9AlBQydeiMzxcyL9u4aSBmQvYv1idnuh8=
Subject key identifier: 02:B9:62:B1:74:9B:15:94:A9:FB:F8:8E:48:34:3F:B5:69:F2:1F:48
Certificate issuer: /CN=21bfa77b3cd782933e5f255445d428adfbdca0e1
Certificate serial: 34B1633A
Authority key identifier: 21:BF:A7:7B:3C:D7:82:93:3E:5F:25:54:45:D4:28:AD:FB:DC:A0:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ib-nezzXgpM-XyVURdQorfvcoOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/9c7aff-d83e-4f51-9b96-5484c39b2d4e/1/ArlisXSbFZSp-_iOSDQ_tWnyH0g.roa
Signing time: Sat 01 Jan 2022 07:04:08 +0000
ROA not before: Sat 01 Jan 2022 07:04:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13002
IP address blocks: 2a02:17e8::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 884040506 (0x34b1633a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21bfa77b3cd782933e5f255445d428adfbdca0e1
Validity
Not Before: Jan 1 07:04:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02b962b1749b1594a9fbf88e48343fb569f21f48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:bd:4b:18:48:59:43:8f:b6:70:88:21:52:4f:
50:d9:f1:93:e1:c5:aa:ce:ce:88:f3:4f:eb:a3:d5:
37:f6:a6:de:c1:af:08:c2:fc:da:f8:e2:2c:20:28:
b6:bc:ca:3f:67:ce:54:d2:98:fa:f9:d4:91:2f:2d:
bf:c1:8c:19:71:1e:48:a3:a6:60:9e:79:6d:0d:64:
84:43:ec:d9:63:6c:b6:61:97:f7:a4:06:f2:93:3f:
8d:42:fd:d3:fa:3d:07:9d:d0:02:4e:27:60:ad:1e:
6f:28:bb:6e:4c:34:6f:72:0c:3f:04:1d:03:76:d3:
bc:a8:fe:8f:e9:09:8b:32:4a:91:e6:9b:51:90:85:
84:1f:1a:9a:a3:6b:ea:fa:b9:5f:1b:c4:96:d0:5d:
5b:ba:dc:2b:e2:5d:6f:cb:8f:43:0b:64:76:0a:10:
11:25:cc:f5:b1:a3:d5:a1:15:80:e4:1a:4c:29:d6:
5c:31:b4:09:09:17:b5:39:09:df:59:8a:bf:6e:28:
c4:5f:5a:29:d0:17:b4:aa:3c:91:9b:5a:88:fc:f8:
87:a5:17:a2:25:a3:3b:a1:48:89:a6:7e:dd:b4:ba:
96:a4:7b:01:7c:1a:5c:5f:df:60:1d:e3:1f:e2:3c:
4b:02:cf:cb:54:3f:df:86:0e:cd:73:e2:37:b2:92:
fd:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:B9:62:B1:74:9B:15:94:A9:FB:F8:8E:48:34:3F:B5:69:F2:1F:48
X509v3 Authority Key Identifier:
keyid:21:BF:A7:7B:3C:D7:82:93:3E:5F:25:54:45:D4:28:AD:FB:DC:A0:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ib-nezzXgpM-XyVURdQorfvcoOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9c7aff-d83e-4f51-9b96-5484c39b2d4e/1/ArlisXSbFZSp-_iOSDQ_tWnyH0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9c7aff-d83e-4f51-9b96-5484c39b2d4e/1/Ib-nezzXgpM-XyVURdQorfvcoOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:17e8::/32
Signature Algorithm: sha256WithRSAEncryption
a6:cd:56:12:76:73:0e:a4:a1:e6:ad:f6:3e:92:59:00:88:f8:
52:50:d6:ab:1d:72:fe:12:34:88:11:7c:e7:c8:bc:bf:72:83:
39:c9:24:8d:6f:d8:00:86:22:aa:55:ef:bf:fe:bf:8d:04:9e:
b7:85:5f:07:6c:51:70:fa:cf:6a:76:4b:55:9f:c1:8f:51:10:
77:47:79:bd:3a:6c:b6:54:45:e6:a8:0b:af:5d:58:a3:a2:0a:
3e:76:0c:20:58:38:18:5b:d4:ec:6a:bd:b5:17:69:fc:76:43:
ab:11:63:c1:16:15:b6:ca:b9:1e:c9:ca:e7:ab:ec:8a:f2:b8:
3a:37:8a:01:81:0f:b9:21:ac:5a:61:b5:aa:50:f0:f9:c4:9d:
33:4a:d8:10:91:38:af:0e:ce:e4:fb:68:50:51:34:8e:fa:f2:
8b:96:dc:44:69:17:27:8f:56:5e:fd:1d:ff:fc:03:ff:9e:1d:
08:1b:ed:f2:f1:53:7c:3e:14:c7:52:86:4c:10:ab:32:1a:01:
b4:90:89:56:00:52:0c:98:ab:cd:dc:3a:40:f1:7c:3a:6d:7a:
08:4b:9c:53:34:c6:b7:15:6c:e9:1b:b2:3a:1e:e3:34:bc:ab:
72:71:d6:56:05:16:de:99:32:0d:9a:c5:9e:3a:ef:8c:3c:ec:
4e:60:7e:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:14 2023 by rpki-client on console-fra.rpki-client.org