Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/iBk9a4UXCnZEObSntcZT46OtXzE.roa
File: iBk9a4UXCnZEObSntcZT46OtXzE.roa (raw, json)
Hash identifier: iGexF5AiDqziYf2k1qCxBEKuKGe7UGyeluP7PwcZ+F4=
Subject key identifier: 88:19:3D:6B:85:17:0A:76:44:39:B4:A7:B5:C6:53:E3:A3:AD:5F:31
Certificate issuer: /CN=375a064f301026bc3cf87666d6a820128212a811
Certificate serial: 1CC92677
Authority key identifier: 37:5A:06:4F:30:10:26:BC:3C:F8:76:66:D6:A8:20:12:82:12:A8:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1oGTzAQJrw8-HZm1qggEoISqBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/iBk9a4UXCnZEObSntcZT46OtXzE.roa
Signing time: Mon 18 Apr 2022 21:27:12 +0000
ROA not before: Mon 18 Apr 2022 21:27:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33660
IP address blocks: 2a03:2887:ff47::/48 maxlen: 48
2a03:2887:ff46::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 482944631 (0x1cc92677)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=375a064f301026bc3cf87666d6a820128212a811
Validity
Not Before: Apr 18 21:27:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88193d6b85170a764439b4a7b5c653e3a3ad5f31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:cc:9a:e6:e3:f5:46:cc:0f:de:af:7d:84:ad:
52:92:f0:bb:8a:ba:87:39:32:b2:f0:3e:8e:44:c3:
ec:c9:95:8c:0d:a9:88:5b:ac:80:b3:05:eb:86:5f:
28:6b:99:e5:22:ba:b3:c1:d7:40:c3:3c:d8:33:92:
ef:7f:fe:7d:89:9a:ec:ea:b5:00:28:33:d9:eb:28:
e7:dc:f6:d4:45:7d:a7:9d:90:ae:d9:38:d7:2a:3f:
3b:6b:6c:b1:27:48:6d:6a:6e:95:b6:c1:6b:41:1a:
64:0e:2f:c7:d0:df:62:8c:5f:06:b1:b0:db:0a:33:
0e:6e:04:78:2c:3f:72:2c:e6:a9:14:e3:be:ac:a2:
6a:5e:83:c4:30:c8:98:03:d7:64:b3:81:02:fc:ca:
96:04:e6:d4:e6:8d:96:2b:e2:7a:47:ae:29:e2:4a:
ba:58:f0:45:e6:a9:01:a8:07:94:c6:01:3d:a8:b3:
70:4f:d2:f8:96:2a:13:fd:f1:81:2a:e1:6a:06:dd:
62:31:4b:1b:a1:a4:ca:e0:d7:41:0d:ae:60:7a:52:
15:43:14:ba:bc:50:6b:5c:48:75:b1:a5:57:ab:10:
5f:00:63:75:10:86:69:bd:1d:18:8e:c6:94:33:a0:
32:0d:55:c5:08:36:3e:c6:74:f5:02:57:98:4b:eb:
79:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:19:3D:6B:85:17:0A:76:44:39:B4:A7:B5:C6:53:E3:A3:AD:5F:31
X509v3 Authority Key Identifier:
keyid:37:5A:06:4F:30:10:26:BC:3C:F8:76:66:D6:A8:20:12:82:12:A8:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1oGTzAQJrw8-HZm1qggEoISqBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/iBk9a4UXCnZEObSntcZT46OtXzE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/N1oGTzAQJrw8-HZm1qggEoISqBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:2887:ff46::/47
Signature Algorithm: sha256WithRSAEncryption
58:c9:d5:1d:2c:08:ce:9d:9a:8e:ac:e0:bb:23:59:2d:b4:d0:
f5:07:81:c3:92:20:25:71:7a:8e:de:d5:a6:4f:5c:3a:53:4d:
91:3b:c1:ba:62:56:68:57:e0:77:bc:c7:95:1b:0e:a4:b2:f1:
d4:8f:a4:16:33:34:a9:18:84:08:e9:06:a9:e6:3d:ed:fe:28:
28:39:59:30:5e:c9:72:d2:37:f2:ec:41:67:6d:97:03:33:76:
e4:8f:2d:ac:82:f5:7b:2e:89:7e:30:1c:e5:a2:07:84:68:c8:
65:40:94:ff:e0:46:49:c7:05:08:50:bb:11:69:69:8c:2e:d2:
f7:6d:61:6c:ea:9a:f0:05:16:c1:01:7b:05:9a:de:4a:ae:31:
78:01:62:0c:f6:cf:ff:17:a1:30:74:b8:ad:ce:c0:13:1f:08:
19:e5:ca:05:3f:5b:dd:ad:c1:b0:ff:dd:6b:4a:87:90:39:8a:
1a:6f:f7:02:51:75:b5:9a:bc:e8:e6:27:f2:3f:3c:3f:98:a3:
28:c8:2d:55:89:e8:0c:3c:5c:75:46:32:33:8d:a8:23:f5:48:
14:ab:4e:44:1c:5c:8b:b2:af:42:a5:e4:12:2b:fa:8e:19:93:
f0:fa:78:ab:9c:75:1e:61:e4:9f:44:d8:36:45:be:1b:c2:97:
b4:a2:93:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:09 2024 by rpki-client on console-ams.rpki-client.org