Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/TN4r0EFMad8z7sewq0nRTjC7gIo.roa
File: TN4r0EFMad8z7sewq0nRTjC7gIo.roa (raw, json)
Hash identifier: t2ergniSz+miZ5AGysNqb+tIWT99vxEokTc2iA7ji8c=
Subject key identifier: 4C:DE:2B:D0:41:4C:69:DF:33:EE:C7:B0:AB:49:D1:4E:30:BB:80:8A
Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Certificate serial: 01856CE5DD76AE569C8F1592066EE81FCED5
Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/TN4r0EFMad8z7sewq0nRTjC7gIo.roa
Signing time: Sun 01 Jan 2023 10:34:41 +0000
ROA not before: Sun 01 Jan 2023 10:34:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47157
IP address blocks: 2a10:4646:13::/48 maxlen: 48
2a10:4646:12::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e5:dd:76:ae:56:9c:8f:15:92:06:6e:e8:1f:ce:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Validity
Not Before: Jan 1 10:34:41 2023 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4cde2bd0414c69df33eec7b0ab49d14e30bb808a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3d:7a:af:be:ad:17:fd:9b:d9:43:df:c9:98:
f0:50:7a:1f:ce:23:ae:ff:5e:be:11:1b:a9:e3:b8:
ad:db:d6:5d:f2:a0:db:b8:a1:4e:ef:c2:1c:a7:20:
80:69:9e:6e:03:97:6b:b1:ec:2f:f3:a1:b9:56:de:
80:bb:8d:d3:5c:b1:44:92:12:a0:7f:7d:41:4f:e9:
63:66:50:7f:7c:b8:cd:97:b0:db:05:82:6f:57:05:
22:8d:cb:ab:15:05:91:76:fd:bc:9f:f4:fd:6c:69:
d9:0e:ea:63:2a:62:ec:97:82:c7:cf:15:7e:77:d1:
98:78:06:e4:cc:b2:13:cb:51:ff:3f:c8:3a:3d:0b:
b9:a8:82:2c:3a:cd:76:46:0e:84:92:60:c6:00:96:
39:84:8f:47:47:19:f0:fc:3e:66:9d:ac:4e:74:98:
ec:1f:6e:0f:12:3b:81:d1:e8:36:0d:b5:04:84:84:
71:93:00:30:28:fa:1d:b8:4b:1d:0f:03:78:d5:78:
d4:0c:93:dd:9b:a3:e8:ca:91:68:a2:9e:10:5f:c2:
a3:3e:5b:0d:ed:de:cb:ba:e5:05:df:39:ed:32:12:
d0:94:f1:12:4d:8b:c4:27:cd:6a:17:f8:c2:a5:4a:
67:6c:5a:49:fd:4a:9f:85:ca:73:b8:25:44:4e:8a:
0c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:DE:2B:D0:41:4C:69:DF:33:EE:C7:B0:AB:49:D1:4E:30:BB:80:8A
X509v3 Authority Key Identifier:
keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/TN4r0EFMad8z7sewq0nRTjC7gIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:12::/47
Signature Algorithm: sha256WithRSAEncryption
b0:5a:50:82:20:28:74:ab:ae:31:38:de:0a:7a:19:52:75:b9:
8f:09:3b:d3:88:92:21:52:f9:98:07:5c:3e:27:77:2e:bd:c0:
c4:28:68:33:5a:e3:c7:11:fd:eb:46:c9:7e:14:b6:82:fd:fd:
fc:0b:b7:72:5c:5b:03:5d:4b:64:63:64:95:a8:4b:39:80:8a:
18:23:36:b1:cf:21:4a:6e:c5:fa:80:d1:dc:09:01:6c:33:d7:
eb:aa:4c:ff:7b:6d:14:b4:5c:ef:23:eb:79:22:81:d2:fd:66:
98:da:e4:10:3f:38:29:24:22:7a:77:fc:e2:e1:b6:4c:0e:36:
3b:be:6f:ef:62:62:4f:01:b5:eb:1d:39:f5:93:3c:f0:f3:5d:
10:77:60:9b:82:6c:06:67:4f:e0:85:25:7c:8b:a6:01:cf:9d:
43:7b:b0:08:62:5f:ad:f0:21:c6:49:2d:00:c8:30:ea:3d:a0:
13:da:53:6a:21:a1:d3:8f:58:16:fe:91:28:a3:b0:b4:4d:29:
a9:0d:4b:2e:b6:98:5c:99:62:88:a5:c2:03:ef:4a:be:61:82:
2f:51:48:fd:9d:53:84:ab:e7:17:89:98:c1:79:f1:4a:c1:ca:
ec:a5:97:82:98:2b:e6:d3:66:dd:69:6a:8e:f7:bc:02:be:80:
d2:2f:a5:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:43 2024 by rpki-client on console-ams.rpki-client.org