Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/b1Ar6O-QAZH4hFguNSVdOp5kbyk.roa
File: b1Ar6O-QAZH4hFguNSVdOp5kbyk.roa (raw, json)
Hash identifier: Jc852M8pKyTLO8281FEwpCHD4w7WfaO9PQDdBokYyak=
Subject key identifier: 6F:50:2B:E8:EF:90:01:91:F8:84:58:2E:35:25:5D:3A:9E:64:6F:29
Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Certificate serial: 4354CFBA
Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/b1Ar6O-QAZH4hFguNSVdOp5kbyk.roa
Signing time: Sat 01 Jan 2022 08:00:25 +0000
ROA not before: Sat 01 Jan 2022 08:00:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199438
IP address blocks: 2a03:f87:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1129631674 (0x4354cfba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Validity
Not Before: Jan 1 08:00:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f502be8ef900191f884582e35255d3a9e646f29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:ed:3a:a3:2b:23:b7:61:8c:17:e0:1b:cb:1e:
e0:51:66:ee:e1:20:c5:be:0b:6f:7c:66:a3:96:25:
0b:5d:38:ce:50:5a:4c:8d:4a:40:06:81:89:97:1c:
ca:58:18:d1:87:e7:06:b3:1b:b1:85:0e:a3:fb:ef:
16:fa:ee:9a:f7:d1:5b:db:9d:3e:94:3e:b5:11:84:
45:da:b2:3a:13:6c:29:c2:b8:0c:6d:8f:4c:0d:ae:
f3:08:7b:77:70:0f:2d:de:f9:be:39:5a:fd:3e:44:
60:99:c5:b9:5b:ea:3d:52:1e:0b:ac:df:d8:fa:7a:
23:9a:fa:23:02:93:1b:43:86:23:76:31:be:1c:04:
6b:a8:fd:d8:40:f9:dc:bc:5e:7d:f0:bd:ed:53:82:
dc:43:b2:4d:c4:5b:09:d7:dd:37:e8:e4:33:08:c8:
f6:6f:66:29:0d:ae:b8:ad:12:2e:d8:06:5f:14:81:
99:3b:2c:7b:d3:2f:6f:99:5c:86:0c:e8:0d:b2:18:
98:f9:92:af:20:86:c3:f3:63:b1:ff:05:3c:be:b7:
2e:66:0d:42:4b:c9:1c:b9:44:11:c6:02:c3:58:d9:
07:2c:02:14:5a:35:4b:11:69:78:b4:4a:6b:19:34:
e7:b7:75:29:8b:96:a7:05:68:60:13:39:35:16:cb:
1e:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:50:2B:E8:EF:90:01:91:F8:84:58:2E:35:25:5D:3A:9E:64:6F:29
X509v3 Authority Key Identifier:
keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/b1Ar6O-QAZH4hFguNSVdOp5kbyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:f87:1::/48
Signature Algorithm: sha256WithRSAEncryption
69:40:55:89:43:ea:5e:c2:73:7e:ff:e6:98:46:7a:c6:e5:66:
06:35:7e:09:64:55:3a:46:be:1d:a9:c0:52:26:9e:8c:9f:25:
8d:5a:ba:2a:2b:d7:e2:1e:5e:61:e7:4b:1e:37:fa:26:54:4d:
cc:d7:94:e5:29:98:fb:4e:9d:3d:a7:94:47:f4:ff:38:bd:c3:
13:3e:99:ee:ba:4b:b7:ed:44:bd:0f:3e:77:89:4b:ce:63:74:
58:28:42:b9:5e:65:fa:ea:d2:3b:24:ef:35:a2:33:3b:80:f5:
f1:f1:58:8c:57:ac:a2:6c:8e:dd:97:2c:e2:08:64:36:cc:39:
f6:67:22:d0:2d:a5:c2:97:21:c4:67:54:bb:ae:96:b9:c1:ac:
b2:9e:b6:e4:62:32:30:e5:35:c4:8f:8a:ee:e0:97:70:5d:cc:
71:c3:1b:2b:50:f9:ed:86:87:e5:28:5d:48:1c:84:d8:4b:60:
37:7c:8e:2d:a8:7f:5f:d7:bd:46:9e:9d:f2:46:93:bd:7d:56:
07:56:84:76:d4:31:eb:c3:5e:e8:36:61:2b:3d:08:01:5d:89:
15:7a:3d:04:c0:83:81:dc:ff:ac:1c:ac:80:0d:d3:f1:f3:54:
f4:69:ab:27:be:df:5a:fa:4d:52:59:b4:82:8f:e6:37:f2:38:
b5:35:c7:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:09 2023 by rpki-client on console-fra.rpki-client.org