Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/bb3b49-62d0-497c-bd1e-8c9539f444c6/1/_r2P8KR0SPXVfhYqWuvWQslDbps.roa
File: _r2P8KR0SPXVfhYqWuvWQslDbps.roa (raw, json)
Hash identifier: ES4H4Xh5uPnqObjc0j82OtwHJSUnlSotmfFbToU2rUw=
Subject key identifier: FE:BD:8F:F0:A4:74:48:F5:D5:7E:16:2A:5A:EB:D6:42:C9:43:6E:9B
Certificate issuer: /CN=38bd6d8ebb82404d5709351bc2329a0ee43a9a43
Certificate serial: 0872056E
Authority key identifier: 38:BD:6D:8E:BB:82:40:4D:57:09:35:1B:C2:32:9A:0E:E4:3A:9A:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OL1tjruCQE1XCTUbwjKaDuQ6mkM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/bb3b49-62d0-497c-bd1e-8c9539f444c6/1/_r2P8KR0SPXVfhYqWuvWQslDbps.roa
Signing time: Mon 17 Jan 2022 02:32:26 +0000
ROA not before: Mon 17 Jan 2022 02:32:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 32519
IP address blocks: 2a07:aec0::/29 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141690222 (0x872056e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38bd6d8ebb82404d5709351bc2329a0ee43a9a43
Validity
Not Before: Jan 17 02:32:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=febd8ff0a47448f5d57e162a5aebd642c9436e9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:77:d3:ad:d2:e1:0a:3d:0b:85:0b:61:af:28:
30:7d:54:24:85:57:24:df:0f:06:5c:07:73:d9:97:
16:38:81:2c:53:1d:aa:e5:7a:3e:2a:03:5f:35:43:
95:44:d9:6d:6b:83:4c:20:cc:dc:01:cc:28:2a:7a:
25:fc:93:a7:e4:bf:ee:02:cd:18:f1:ea:a9:e8:20:
c0:a8:f7:94:16:7f:f1:8d:26:ad:0a:16:45:61:f8:
fb:7b:9f:89:82:63:b5:d7:26:72:b3:b9:2b:fe:9d:
93:22:02:ea:0c:51:d4:63:07:2f:fd:d8:20:40:cb:
5a:b3:32:b5:24:a4:1d:c8:a9:eb:ce:af:35:8c:f4:
e1:2f:a4:fe:30:08:a4:90:b4:3e:aa:97:58:ed:36:
a0:15:60:63:03:79:a8:e1:a1:a9:54:fc:51:62:3d:
6e:d3:a0:f9:0d:10:e3:13:d5:b5:57:6e:25:fc:c1:
92:ad:ea:38:f0:f7:dc:28:c3:1d:80:c7:f0:37:a1:
a9:04:d3:13:d5:f1:04:5a:8c:54:2b:9a:b4:a1:c2:
df:1e:c6:7c:4f:cd:47:38:4d:0a:de:50:77:83:5e:
54:ea:1c:01:97:9a:1b:1a:d6:3a:32:ce:27:5d:81:
7e:b8:2d:42:a2:51:55:27:0a:56:68:6b:e5:2d:73:
ef:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:BD:8F:F0:A4:74:48:F5:D5:7E:16:2A:5A:EB:D6:42:C9:43:6E:9B
X509v3 Authority Key Identifier:
keyid:38:BD:6D:8E:BB:82:40:4D:57:09:35:1B:C2:32:9A:0E:E4:3A:9A:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OL1tjruCQE1XCTUbwjKaDuQ6mkM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/bb3b49-62d0-497c-bd1e-8c9539f444c6/1/_r2P8KR0SPXVfhYqWuvWQslDbps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/bb3b49-62d0-497c-bd1e-8c9539f444c6/1/OL1tjruCQE1XCTUbwjKaDuQ6mkM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:aec0::/29
Signature Algorithm: sha256WithRSAEncryption
35:d7:13:f1:c6:78:98:56:3f:0a:ca:de:35:f4:82:c6:50:5a:
c1:21:7e:5b:5c:7d:a7:bb:a1:7d:5d:74:50:66:9a:e4:8b:a5:
69:46:7b:a6:00:b3:56:20:8e:f1:06:6a:ca:d1:c5:11:56:10:
31:5f:7f:b7:fd:7c:bc:73:72:05:0b:b6:e1:09:f3:f8:40:b5:
ee:03:6b:2f:29:43:a8:01:81:0a:b3:8f:44:dd:6a:11:05:6e:
c7:d8:38:50:48:6c:18:e1:7d:55:71:9d:93:9a:a9:a7:cb:70:
a3:7b:52:a1:58:56:81:97:9d:87:6d:70:4c:05:31:99:ae:ad:
08:11:59:0b:f1:f9:d5:48:80:29:06:55:2b:e6:2b:15:8f:f4:
4a:56:4c:fb:d5:98:2c:30:e3:4b:2d:9d:3e:ae:18:57:a6:4a:
fc:cf:97:0b:8c:dd:17:a8:9e:3d:60:d0:7f:a5:1e:a4:f5:5a:
e2:41:3d:4d:dd:d2:e7:1a:95:f0:d6:76:30:fa:5e:4c:8c:2d:
37:9e:78:c6:20:e7:59:31:6b:66:de:c2:03:2b:70:47:e2:67:
e3:6f:3a:ba:62:c1:34:cd:69:e8:4f:db:87:b1:87:e9:d6:9f:
59:07:65:f0:af:fb:4e:ab:30:42:4c:17:c0:6d:59:14:f5:48:
09:0b:92:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:56 2024 by rpki-client on console-ams.rpki-client.org