Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/85uNan3EbEGhG-JBWp38egpmyIA.roa
File: 85uNan3EbEGhG-JBWp38egpmyIA.roa (raw, json)
Hash identifier: p8PYBx/OeOtm+aadgZL71j3bpF5BNlOVPrrbrM9kzP8=
Subject key identifier: F3:9B:8D:6A:7D:C4:6C:41:A1:1B:E2:41:5A:9D:FC:7A:0A:66:C8:80
Certificate issuer: /CN=375a064f301026bc3cf87666d6a820128212a811
Certificate serial: 1CC80FB0
Authority key identifier: 37:5A:06:4F:30:10:26:BC:3C:F8:76:66:D6:A8:20:12:82:12:A8:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1oGTzAQJrw8-HZm1qggEoISqBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/85uNan3EbEGhG-JBWp38egpmyIA.roa
Signing time: Mon 18 Apr 2022 20:37:24 +0000
ROA not before: Mon 18 Apr 2022 20:37:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63293
IP address blocks: 2a03:2887:ff30::/48 maxlen: 48
2a03:2887:ff35::/48 maxlen: 48
2a03:2887:ff3a::/48 maxlen: 48
2a03:2887:ff3f::/48 maxlen: 48
2a03:2887:ff1f::/48 maxlen: 48
2a03:2887:ff24::/48 maxlen: 48
2a03:2887:ff44::/48 maxlen: 48
2a03:2887:ff29::/48 maxlen: 48
2a03:2887:ff2e::/48 maxlen: 48
2a03:2887:ff33::/48 maxlen: 48
2a03:2887:ff18::/48 maxlen: 48
2a03:2887:ff1d::/48 maxlen: 48
2a03:2887:ff27::/48 maxlen: 48
2a03:2887:ff36::/48 maxlen: 48
2a03:2887:ff3b::/48 maxlen: 48
2a03:2887:ff1b::/48 maxlen: 48
2a03:2887:ff40::/48 maxlen: 48
2a03:2887:ff25::/48 maxlen: 48
2a03:2887:ff45::/48 maxlen: 48
2a03:2887:ff2a::/48 maxlen: 48
2a03:2887:ff4a::/48 maxlen: 48
2a03:2887:ff2f::/48 maxlen: 48
2a03:2887:ff19::/48 maxlen: 48
2a03:2887:ff39::/48 maxlen: 48
2a03:2887:ff1e::/48 maxlen: 48
2a03:2887:ff23::/48 maxlen: 48
2a03:2887:ff43::/48 maxlen: 48
2a03:2887:ff28::/48 maxlen: 48
2a03:2887:ff37::/48 maxlen: 48
2a03:2887:ff1c::/48 maxlen: 48
2a03:2887:ff21::/48 maxlen: 48
2a03:2887:ff2b::/48 maxlen: 48
2a03:2887:ff4b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 482873264 (0x1cc80fb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=375a064f301026bc3cf87666d6a820128212a811
Validity
Not Before: Apr 18 20:37:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f39b8d6a7dc46c41a11be2415a9dfc7a0a66c880
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:04:6e:d2:b3:4f:29:d8:72:36:e4:2e:7c:b9:
57:3e:e0:11:9b:9f:63:50:f2:7e:39:ad:7a:ad:c6:
27:22:43:9f:6c:9a:65:ef:eb:39:86:a4:dd:83:77:
9e:c0:6b:e7:d5:7c:b1:1c:02:ef:9d:04:7c:1c:c7:
29:91:2d:1a:09:6c:d5:d4:98:2f:38:e3:16:4f:66:
c6:23:d7:8e:44:01:02:82:a5:d7:f6:eb:33:b5:d7:
ad:ea:6e:20:a4:17:27:6e:5c:bb:3f:06:c5:88:f1:
46:58:da:46:7d:f8:17:77:ed:80:7b:df:8e:4c:c9:
5e:a4:28:00:0c:6d:46:76:6b:93:3a:0d:ce:d6:7e:
d3:95:22:69:ae:04:22:98:ad:39:0e:81:75:d7:78:
6b:db:40:34:e7:3c:7d:72:53:80:ba:5d:22:f1:3e:
b1:97:a0:da:b9:03:2d:9f:90:d3:3e:3a:55:e1:25:
91:fc:50:f5:8c:4a:04:58:a5:60:81:e4:30:fd:a0:
0a:e1:43:31:d9:b2:81:fb:6b:74:15:43:6c:60:48:
e3:2e:0d:39:5e:73:97:c9:85:aa:cb:c8:60:a0:c1:
7f:c7:e3:72:54:71:13:5d:70:f4:e8:44:95:e9:be:
77:94:76:4d:d2:f4:b6:a8:f2:08:88:26:31:cc:14:
5b:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:9B:8D:6A:7D:C4:6C:41:A1:1B:E2:41:5A:9D:FC:7A:0A:66:C8:80
X509v3 Authority Key Identifier:
keyid:37:5A:06:4F:30:10:26:BC:3C:F8:76:66:D6:A8:20:12:82:12:A8:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1oGTzAQJrw8-HZm1qggEoISqBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/85uNan3EbEGhG-JBWp38egpmyIA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/N1oGTzAQJrw8-HZm1qggEoISqBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:2887:ff18::/47
2a03:2887:ff1b::-2a03:2887:ff1f:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff21::/48
2a03:2887:ff23::-2a03:2887:ff25:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff27::-2a03:2887:ff2b:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff2e::-2a03:2887:ff30:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff33::/48
2a03:2887:ff35::-2a03:2887:ff37:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff39::-2a03:2887:ff3b:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff3f::-2a03:2887:ff40:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff43::-2a03:2887:ff45:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff4a::/47
Signature Algorithm: sha256WithRSAEncryption
67:30:cd:b1:36:50:08:d0:66:9a:53:3f:43:68:a5:7b:a4:e2:
4c:29:3d:d0:bb:e7:f2:90:26:22:f3:7e:d6:a6:c6:1a:9b:41:
6d:6c:8a:93:49:b0:4c:b6:23:a0:f5:d2:e0:9f:3e:1f:60:50:
24:2f:13:1f:be:08:28:33:a6:09:87:93:02:ed:3c:0a:73:24:
55:26:b3:e8:f2:90:a0:62:4a:a1:bf:3f:1a:60:e7:09:f3:1f:
44:6a:d9:b8:16:79:15:cc:d4:0f:7e:15:74:54:c3:2f:2a:71:
b6:d5:07:d2:58:fd:2d:18:92:5d:26:e9:d1:d8:74:45:56:33:
bc:bf:f5:9f:e5:97:7e:e0:76:c2:8b:39:79:d1:dc:32:16:70:
f9:ec:b3:0b:c5:1c:cf:27:92:62:8c:32:51:76:59:ea:31:1d:
55:01:82:df:48:a6:e1:cd:e8:c2:3d:56:88:34:07:81:14:89:
9b:bb:c2:b8:20:5f:8e:b8:5c:40:69:37:a2:fb:f8:aa:49:7a:
54:c5:c0:4d:f4:1f:aa:c7:aa:bb:09:73:5c:29:dc:a1:2c:d0:
99:ac:f0:87:d5:aa:17:34:63:c1:4d:58:ad:96:37:8d:e4:5c:
8d:ce:9c:65:46:95:a8:a6:ce:5c:36:4b:a2:f7:93:bb:7a:95:
84:fb:61:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:09 2024 by rpki-client on console-ams.rpki-client.org