Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/8-nP_wVCA0XW8bFUOtMvzJ6MQRE.roa
File: 8-nP_wVCA0XW8bFUOtMvzJ6MQRE.roa (raw, json)
Hash identifier: 7xQ8I7ZpYs1iimZcsMbHwKy96XbCYr0QUQTPJ49oqVE=
Subject key identifier: F3:E9:CF:FF:05:42:03:45:D6:F1:B1:54:3A:D3:2F:CC:9E:8C:41:11
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 08C71726
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/8-nP_wVCA0XW8bFUOtMvzJ6MQRE.roa
Signing time: Sat 01 Jan 2022 14:02:00 +0000
ROA not before: Sat 01 Jan 2022 14:02:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212519
IP address blocks: 2a0e:8f02:f027::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147265318 (0x8c71726)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 14:02:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f3e9cfff05420345d6f1b1543ad32fcc9e8c4111
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ff:e0:79:85:21:b6:bf:ff:c9:94:54:89:74:
73:2f:33:d8:40:99:ba:51:58:b6:80:2c:e9:2f:83:
f3:b7:43:d8:60:ab:8c:b9:91:5d:ea:9c:9f:54:93:
75:c0:0f:2a:22:3c:f9:a5:b2:2c:58:0b:90:a9:55:
66:de:0b:c3:3d:bd:55:ed:56:15:63:9a:ee:d3:94:
f7:f1:7e:b1:f4:ae:4a:56:e3:8e:7e:69:61:52:a1:
12:b3:53:d4:55:c7:73:cf:91:f9:80:7c:0c:00:d1:
d3:cf:27:d4:ce:10:8e:68:b0:b6:87:88:20:a2:42:
90:5d:1d:e7:bc:b2:a3:b7:f8:cb:83:48:e0:b8:a6:
14:26:12:3a:ba:f0:ff:35:fb:1a:34:32:99:2f:c1:
29:fd:d2:5b:b0:d3:6f:0a:14:f0:8f:7c:3c:17:b4:
42:a2:2d:bb:ba:29:ff:6c:73:dc:23:89:f2:e1:92:
4a:e1:f4:9f:3b:fd:f0:16:fd:f5:a2:69:a5:08:50:
51:7e:18:6e:ef:9a:ec:23:bc:6c:b2:9c:8b:2c:e9:
b3:d8:d2:e6:4f:90:03:1f:ce:b4:0e:96:f1:f1:05:
be:d5:48:c7:e4:3b:0f:6f:42:5d:e4:8c:60:a7:42:
02:bd:5e:08:0d:3c:37:23:6d:40:3c:4c:96:a3:1d:
6d:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:E9:CF:FF:05:42:03:45:D6:F1:B1:54:3A:D3:2F:CC:9E:8C:41:11
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/8-nP_wVCA0XW8bFUOtMvzJ6MQRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f027::/48
Signature Algorithm: sha256WithRSAEncryption
67:3d:ec:a4:f0:79:8d:43:7b:e6:c3:9e:3e:95:99:11:c3:8c:
9e:1f:1b:38:52:d6:43:dd:d6:67:80:63:87:1f:42:e6:ec:d9:
13:71:ea:a0:9b:f5:a6:10:d7:be:38:21:15:b8:71:51:06:d7:
78:d1:93:9d:0c:00:28:22:73:01:8c:d5:c5:f3:17:75:c2:90:
2b:42:21:45:61:1b:f9:ec:67:72:06:88:dc:06:9b:b6:e9:cc:
cc:c8:1d:46:d9:ff:4e:ee:83:86:28:b6:1f:5b:01:de:f7:2c:
be:4b:72:76:24:86:cb:a6:eb:c9:88:30:8b:96:d6:86:ea:2e:
3d:62:49:d6:c8:a2:01:90:8c:80:01:a6:56:c1:9d:42:a1:21:
bb:1c:6e:b9:8a:56:bc:10:0c:7d:98:d2:8b:d2:42:00:0b:97:
86:db:18:b2:3b:86:20:7d:ab:7c:53:18:48:4e:86:81:41:8f:
6e:71:96:55:d4:ea:14:0e:28:47:eb:88:cb:47:41:81:32:05:
c2:9b:89:1d:6c:7d:86:3b:a8:bf:8d:b1:2d:42:83:73:82:c4:
3a:84:72:4e:d3:a2:47:6e:56:0b:bf:8a:0c:29:33:e6:69:bf:
29:a5:4e:70:4f:75:18:91:3c:42:4f:c9:09:92:df:97:15:03:
22:57:00:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:24 2023 by rpki-client on console-fra.rpki-client.org