Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/ae0690-9637-4fc5-b41b-d9d0aa28ab2b/1/_h4Y4dhpXRM1nWimfnc4qycQ3Ok.roa
File: _h4Y4dhpXRM1nWimfnc4qycQ3Ok.roa (raw, json)
Hash identifier: 29p9P7m4IBrDCM6NsAmvkM9CXnizcvKynPx26QPHHnA=
Subject key identifier: FE:1E:18:E1:D8:69:5D:13:35:9D:68:A6:7E:77:38:AB:27:10:DC:E9
Certificate issuer: /CN=0a16747018e944e405a6d23a564701a155f43739
Certificate serial: 01925AB3
Authority key identifier: 0A:16:74:70:18:E9:44:E4:05:A6:D2:3A:56:47:01:A1:55:F4:37:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ChZ0cBjpROQFptI6VkcBoVX0Nzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/ae0690-9637-4fc5-b41b-d9d0aa28ab2b/1/_h4Y4dhpXRM1nWimfnc4qycQ3Ok.roa
Signing time: Sat 01 Jan 2022 08:56:43 +0000
ROA not before: Sat 01 Jan 2022 08:56:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211088
IP address blocks: 2001:678:f94::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26368691 (0x1925ab3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a16747018e944e405a6d23a564701a155f43739
Validity
Not Before: Jan 1 08:56:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe1e18e1d8695d13359d68a67e7738ab2710dce9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:a1:0a:04:3c:f2:63:8a:05:c7:24:c0:b7:4c:
a3:9b:a9:65:fd:45:a4:c1:9d:b1:16:62:ba:db:9b:
14:df:2f:41:c1:a8:9c:3d:f0:ee:e3:2c:5f:ce:af:
1a:41:4c:e1:e5:de:14:f7:a9:7f:38:85:ac:1a:17:
34:79:68:9e:76:8f:5e:96:5d:1b:c3:a7:fe:45:ea:
c4:ba:a2:de:c4:e5:34:fd:ca:2f:6b:57:7f:75:80:
97:db:9a:a8:b4:e8:da:fc:99:59:68:c6:bc:9c:10:
e9:d6:13:39:92:fe:5d:2a:02:90:c1:bb:a0:2b:27:
bf:8f:85:69:33:09:ea:95:8f:be:5d:e0:33:f3:46:
e6:84:b2:e7:b7:ab:99:2f:3f:c1:eb:19:2d:a0:c1:
7b:a8:b2:3b:0d:cb:e5:e7:84:aa:82:9e:13:a6:c7:
dc:f9:94:26:58:2e:6b:f6:5e:53:d4:6a:0c:1e:03:
bf:7e:55:cb:36:e2:ee:91:76:34:56:31:d8:9f:16:
6a:5c:5b:9a:ca:26:f6:e0:e9:58:34:5b:69:dc:79:
b1:95:59:0e:c3:ff:b7:c2:01:10:f2:cd:b5:cd:fe:
fd:1c:d8:61:18:53:4e:a7:20:5a:f7:79:03:96:35:
9e:e9:84:22:f4:f8:49:c0:3b:e9:79:98:6f:a6:43:
df:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:1E:18:E1:D8:69:5D:13:35:9D:68:A6:7E:77:38:AB:27:10:DC:E9
X509v3 Authority Key Identifier:
keyid:0A:16:74:70:18:E9:44:E4:05:A6:D2:3A:56:47:01:A1:55:F4:37:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ChZ0cBjpROQFptI6VkcBoVX0Nzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ae0690-9637-4fc5-b41b-d9d0aa28ab2b/1/_h4Y4dhpXRM1nWimfnc4qycQ3Ok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ae0690-9637-4fc5-b41b-d9d0aa28ab2b/1/ChZ0cBjpROQFptI6VkcBoVX0Nzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:f94::/48
Signature Algorithm: sha256WithRSAEncryption
b1:8f:c9:da:53:38:20:ef:c5:fa:6c:ac:ac:9d:35:98:da:67:
d2:25:45:19:d0:68:2e:e6:de:1c:ec:e7:37:62:4e:d8:ea:70:
2b:c6:cd:47:97:39:5c:b4:7d:3e:f2:9a:99:0c:e8:39:5c:5d:
e9:33:a2:a5:a6:01:88:8a:d7:68:a6:0a:63:d5:7c:ba:b7:2c:
dd:fb:77:d0:58:1c:99:bc:68:1f:1e:f9:31:56:45:c2:07:49:
af:85:9a:a5:e4:f6:b5:92:0c:ed:9c:9a:17:9f:64:1a:bb:1e:
03:48:9d:dc:63:f5:8c:d2:37:63:f5:bb:96:12:6d:cd:b7:f5:
29:5b:63:fc:64:b4:05:99:bb:f8:4f:b7:8d:fe:cb:af:4e:61:
f4:a7:7e:09:1e:9b:bf:f6:ad:30:ef:ed:b6:48:f7:d9:8f:76:
70:47:08:57:dc:dc:3b:e9:0e:a2:01:26:58:cd:e7:ed:82:48:
5a:40:a2:a3:ce:9f:e9:7c:b3:24:32:e6:f8:39:40:af:25:7a:
f9:df:f7:fe:96:86:de:69:59:c9:75:97:ce:f1:d9:56:70:42:
ee:d0:81:43:e3:5c:e5:b9:2f:a0:6b:13:9d:7a:8f:14:21:b4:
1f:b1:eb:57:47:84:d8:15:84:f3:10:ef:fd:d0:63:15:79:dd:
ed:27:07:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:25 2023 by rpki-client on console-fra.rpki-client.org