Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/rDh6ALwl9FFjB4RUDO7fNOSSspk.roa
File: rDh6ALwl9FFjB4RUDO7fNOSSspk.roa (raw, json)
Hash identifier: y/aPtUfP4FknXRSGJ02/1LaPawvEvk2u+B7/0swO6t8=
Subject key identifier: AC:38:7A:00:BC:25:F4:51:63:07:84:54:0C:EE:DF:34:E4:92:B2:99
Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Certificate serial: 01855D3F1527ED17C135761A9952BF59FF8D
Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/rDh6ALwl9FFjB4RUDO7fNOSSspk.roa
Signing time: Thu 29 Dec 2022 09:38:13 +0000
ROA not before: Thu 29 Dec 2022 09:38:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212065
IP address blocks: 2a10:4646:14::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:5d:3f:15:27:ed:17:c1:35:76:1a:99:52:bf:59:ff:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Validity
Not Before: Dec 29 09:38:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac387a00bc25f451630784540ceedf34e492b299
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:9c:c0:a2:4f:8e:ec:3c:df:b7:ec:92:46:e2:
57:5f:2b:3f:b3:7a:74:c0:cd:71:08:bf:b5:b6:f2:
db:40:36:a4:2c:ce:a8:92:0d:57:ee:c2:a0:51:20:
04:db:cf:ae:bc:c9:a4:14:28:7f:ea:b8:b2:81:69:
76:01:cf:c0:ee:7b:8c:60:28:75:df:41:a1:90:8c:
ae:db:18:65:fd:d5:cc:49:96:13:7d:56:91:2c:7a:
d7:dc:f8:a4:c6:3b:1c:75:69:f3:64:dd:16:d0:a8:
76:01:73:20:d9:d8:57:18:7a:e9:bc:f5:9e:92:6b:
b0:75:9c:a2:e8:fd:c9:19:11:5b:dc:8c:fe:dd:31:
cb:10:fb:6d:ea:e5:0e:21:fc:38:c6:28:b2:a5:c1:
58:f6:16:ea:b9:45:aa:c5:ce:d1:98:fe:39:3f:b6:
ae:24:09:54:f6:fa:d9:fd:50:ab:0a:c9:8f:7e:05:
89:0b:be:b0:5b:b3:28:11:f5:de:d6:44:30:10:65:
0a:23:4a:45:c0:72:06:62:5c:fd:41:25:8d:82:33:
a9:1a:f6:8b:28:6d:01:2f:d3:8c:d7:ad:ba:56:bb:
69:2b:74:9c:18:5b:15:3a:76:f8:fb:c3:95:65:c8:
67:ae:b7:40:ef:0f:6b:9a:d0:62:95:73:42:d8:73:
3f:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:38:7A:00:BC:25:F4:51:63:07:84:54:0C:EE:DF:34:E4:92:B2:99
X509v3 Authority Key Identifier:
keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/rDh6ALwl9FFjB4RUDO7fNOSSspk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:14::/48
Signature Algorithm: sha256WithRSAEncryption
98:78:db:68:a6:cb:3b:81:e5:1c:20:1c:c3:4a:4c:a3:81:42:
b3:fa:e7:9d:4d:3e:1f:d6:86:ef:59:30:b0:93:42:fd:a7:77:
8c:0b:81:db:73:47:a3:7e:74:1a:79:04:63:dd:ab:d0:81:dc:
64:53:85:f6:6d:d5:54:5a:1f:6a:5a:bf:76:27:a1:3b:0b:cd:
35:8b:07:e1:ee:8a:82:b1:26:e1:e0:65:70:bf:3e:9b:80:1a:
90:62:f0:3d:4b:0e:b2:cc:02:09:b0:79:4f:58:7f:6e:c4:6f:
3b:26:b0:ec:c3:a8:84:9c:fb:e8:75:4a:0d:a0:0f:d6:0f:b0:
2a:05:b7:42:ba:c6:3d:0b:6e:fd:0f:c2:ea:55:06:e3:97:8b:
12:12:b6:2f:08:d0:2c:2d:aa:b4:bc:33:5d:ad:ca:21:e7:84:
64:a9:5d:ed:2f:2b:38:5e:87:0d:34:12:46:b6:13:8f:36:f7:
70:4b:3a:76:2e:97:81:db:e6:71:a6:5a:52:05:1b:61:d1:98:
6c:96:36:10:21:84:96:32:fb:eb:1c:41:a7:a4:dc:1c:bf:5a:
86:14:6b:38:3d:da:0b:b8:47:af:97:8c:ed:9e:c0:a7:8d:39:
e9:d6:19:aa:e3:3a:74:66:fc:28:2f:f9:42:1b:84:a0:d2:8c:
81:70:f7:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:05 2024 by rpki-client on console-fra.rpki-client.org