Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/CaeuC4VDE5FHdTc7DNU7UELLTN0.roa
File: CaeuC4VDE5FHdTc7DNU7UELLTN0.roa (raw, json)
Hash identifier: 5JDI2dh4TGJ+hW8bU57wShYNI+XbaOqO4tIXhEas1wA=
Subject key identifier: 09:A7:AE:0B:85:43:13:91:47:75:37:3B:0C:D5:3B:50:42:CB:4C:DD
Certificate issuer: /CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Certificate serial: 3DF0FACB
Authority key identifier: BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/CaeuC4VDE5FHdTc7DNU7UELLTN0.roa
Signing time: Tue 08 Mar 2022 16:27:46 +0000
ROA not before: Tue 08 Mar 2022 16:27:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397513
IP address blocks: 2a01:488:bb0e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1039203019 (0x3df0facb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Validity
Not Before: Mar 8 16:27:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09a7ae0b854313914775373b0cd53b5042cb4cdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:5b:8c:9c:36:98:ad:af:12:18:8a:5a:75:cb:
3a:76:c7:c5:4a:92:c8:b6:c6:4b:2d:f9:27:de:08:
09:00:54:7c:95:c3:ec:77:4d:45:3e:83:1e:0e:51:
dc:20:c2:7e:1f:01:0c:bd:7a:7f:4d:bb:6d:4a:f0:
21:51:c3:0b:bd:be:59:9c:35:49:8a:08:42:35:38:
7e:7b:dc:3a:0e:97:1f:94:54:58:c9:eb:8e:74:9b:
91:a8:23:b9:ac:6b:52:07:df:77:3d:49:fc:4d:f8:
d8:c1:59:63:e4:a4:92:ea:50:f4:2d:74:5c:49:56:
7f:47:33:dc:fe:1b:c5:1f:ca:c8:37:54:43:b7:87:
b1:dc:7d:fb:d3:f9:b9:fe:2d:95:90:60:5b:83:3e:
13:6b:82:28:0e:3e:4a:6d:ee:a6:4f:61:f8:d4:a1:
e1:1e:58:3b:38:58:5f:64:26:2e:15:ac:bd:09:93:
cc:a3:3d:7a:a0:cd:11:a6:35:4c:65:8f:54:d8:0e:
0b:0d:c6:f6:f1:29:f7:cd:7c:f3:ea:ef:1d:65:67:
3e:a8:30:ec:da:a5:20:46:7d:1b:db:af:d9:ab:d5:
07:ed:dd:25:cb:c5:8a:a2:f7:e9:ae:df:39:35:90:
91:be:42:a7:29:9f:44:6a:33:51:77:66:b3:5c:5e:
10:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:A7:AE:0B:85:43:13:91:47:75:37:3B:0C:D5:3B:50:42:CB:4C:DD
X509v3 Authority Key Identifier:
keyid:BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/CaeuC4VDE5FHdTc7DNU7UELLTN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:488:bb0e::/48
Signature Algorithm: sha256WithRSAEncryption
10:89:62:20:6b:69:a1:d7:3c:78:30:d6:7d:05:24:04:5c:58:
3e:d6:ee:53:9d:bb:49:e1:7d:0d:1b:05:65:6c:18:d5:25:58:
20:d1:85:7e:62:ff:23:e3:ea:4e:13:cc:f4:19:e0:a7:4d:da:
04:ab:e4:42:a1:15:cd:d7:02:c5:02:9e:0e:c5:c4:55:7a:77:
59:a7:f9:0c:78:61:9f:bf:81:7d:21:ad:00:90:44:ec:d3:01:
d1:84:99:55:b7:4e:1d:f0:18:67:ba:8f:54:55:89:32:1c:fc:
1b:e9:56:19:90:bb:eb:d8:84:32:1b:df:e0:ab:1e:cb:a3:3c:
9f:3c:31:28:69:81:5b:f8:b6:b3:c6:54:f8:95:b4:9b:fe:ac:
f1:79:f1:58:4c:9d:9a:87:91:ac:a5:36:ce:3d:79:71:74:80:
85:74:2d:10:66:1d:cc:79:c3:77:f1:80:11:38:a1:79:95:96:
d9:51:a2:99:51:1e:40:35:cf:e7:f4:cc:46:d1:39:61:de:be:
f2:41:46:d2:50:43:aa:46:94:19:fb:d2:fe:aa:23:ac:86:ce:
eb:48:42:8c:0c:dd:1e:99:de:6d:ae:37:8f:1a:a5:f6:d4:8f:
91:db:7c:40:e6:ec:68:e2:3c:2b:f5:ee:6f:bf:f1:09:2d:6a:
4b:ad:10:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:08 2023 by rpki-client on console-fra.rpki-client.org