Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/8H3xOxzPM3Q0OK4K4eRo7VoU8w0.roa
File: 8H3xOxzPM3Q0OK4K4eRo7VoU8w0.roa (raw, json)
Hash identifier: 1RBogHkN4C/B+UDCV7XBtr5SPAtgKD0PhsY1R82jHRI=
Subject key identifier: F0:7D:F1:3B:1C:CF:33:74:34:38:AE:0A:E1:E4:68:ED:5A:14:F3:0D
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 08C0787F
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/8H3xOxzPM3Q0OK4K4eRo7VoU8w0.roa
Signing time: Thu 10 Mar 2022 15:11:30 +0000
ROA not before: Thu 10 Mar 2022 15:11:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 2a0b:3c40:19::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146831487 (0x8c0787f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Mar 10 15:11:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f07df13b1ccf33743438ae0ae1e468ed5a14f30d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:16:9e:e2:34:5b:9d:31:fb:50:84:b5:e2:8f:
df:95:07:76:90:f4:73:9e:96:dc:d6:a5:69:29:81:
07:49:f5:6d:30:5d:f3:3a:77:39:d6:41:bf:6a:3c:
36:a6:5d:a4:c7:32:3d:61:19:8d:4a:e3:c8:b9:63:
02:5b:5f:2b:af:64:47:ae:8f:4f:a7:ed:26:eb:32:
23:99:e6:a1:71:3d:fb:07:e4:3f:84:be:b6:84:fe:
9f:21:ac:64:0d:38:d9:2e:ed:f5:47:cb:95:5a:59:
99:0e:09:66:6f:a6:a6:3c:a1:1f:ef:8a:85:0c:61:
cb:e8:b2:41:8c:50:06:8d:bb:5c:be:41:32:81:81:
bc:b7:7e:8d:97:f6:4d:93:1a:fe:d1:25:88:2b:89:
87:bc:88:0d:4b:55:73:9e:8d:5e:fe:32:e5:3b:55:
2d:4e:8f:c1:07:92:04:ad:21:54:1b:4c:67:6a:73:
96:73:0e:cb:ce:92:3f:22:7d:5f:bc:3d:e4:47:ce:
10:db:2c:11:fe:1d:ed:2b:ac:ca:04:12:db:c1:04:
d6:f2:39:34:bc:e6:d1:cb:29:3b:4d:f3:3a:7c:ba:
6f:94:bf:25:02:a9:f1:81:9c:35:e2:11:99:30:a3:
75:60:5a:28:68:87:89:b6:3a:46:ae:a2:f5:1d:03:
31:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:7D:F1:3B:1C:CF:33:74:34:38:AE:0A:E1:E4:68:ED:5A:14:F3:0D
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/8H3xOxzPM3Q0OK4K4eRo7VoU8w0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:3c40:19::/48
Signature Algorithm: sha256WithRSAEncryption
21:3e:94:2c:63:12:3e:bc:ba:db:61:95:69:7d:1e:08:31:39:
8d:3d:b8:f7:93:c8:8d:53:72:88:08:a6:01:6f:55:05:d3:23:
d6:9e:39:09:19:bc:a0:a1:48:11:cc:a4:55:ce:00:6f:84:56:
e7:87:a7:a0:59:48:68:b0:ee:aa:c1:56:bc:47:df:42:b0:af:
0e:a2:84:31:db:e2:80:67:bd:0c:67:f9:12:f8:9b:e5:10:ac:
15:64:07:c3:9e:ac:c2:48:1d:39:3a:37:e2:02:3b:6a:bc:e7:
bd:27:05:f6:ad:69:98:69:e6:cd:d5:3f:09:fd:f4:19:b3:01:
ce:61:82:17:68:dc:52:67:0c:82:ba:b7:2d:c3:45:a3:3a:0f:
c7:6e:36:cb:77:e8:f8:64:79:23:7f:1a:1f:db:aa:07:3a:b5:
c7:f1:d2:cd:65:52:db:07:8d:14:55:61:1a:2b:26:41:9e:72:
28:7f:f2:9a:97:78:39:fd:9d:e6:fb:a5:d0:4a:cd:ca:43:b4:
53:b1:2d:02:bb:bb:68:7b:8a:79:30:66:e3:76:4b:8d:53:b3:
cf:18:c3:c0:be:1b:e8:77:8e:74:b6:60:3b:fd:eb:58:53:fc:
e4:00:46:6a:3b:16:a2:09:a7:be:3a:a2:19:68:d2:f7:91:32:
26:a7:63:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org