Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/8YwqTs1_ZZwsRxgnk8vbx5cQV_M.roa
File: 8YwqTs1_ZZwsRxgnk8vbx5cQV_M.roa (raw, json)
Hash identifier: eJWbDoA8E9zyKdR7ViRNXCkY+TzMxD9GMW8jD6f4x9A=
Subject key identifier: F1:8C:2A:4E:CD:7F:65:9C:2C:47:18:27:93:CB:DB:C7:97:10:57:F3
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 08BD5D29
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/8YwqTs1_ZZwsRxgnk8vbx5cQV_M.roa
Signing time: Sat 01 Jan 2022 14:01:55 +0000
ROA not before: Sat 01 Jan 2022 14:01:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211980
IP address blocks: 2a0e:8f02:f006::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146627881 (0x8bd5d29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 14:01:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f18c2a4ecd7f659c2c47182793cbdbc7971057f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:99:ba:f7:64:f3:1d:03:65:78:7b:05:93:6b:
dd:26:99:3a:84:ea:71:0e:c6:a2:1e:da:2a:d4:20:
b7:b4:10:9b:c8:a8:e4:08:80:f7:48:e5:dd:55:fe:
d8:ca:5b:1b:9c:21:8a:c6:b5:f8:f6:02:dc:de:88:
20:71:8a:4a:f9:52:e1:b4:2b:96:04:28:e4:55:e3:
f6:8a:d2:98:22:b8:ad:91:33:36:89:c2:93:ba:e9:
08:77:47:7a:b5:01:5e:26:55:0a:6a:d9:b2:6e:94:
14:8f:72:a5:58:c1:0f:7b:0a:c6:c0:f8:a1:f2:11:
25:73:8f:58:7c:4f:f7:9f:44:30:aa:81:6d:fc:68:
d4:bd:44:cf:92:66:7c:da:f5:f2:fb:d3:13:66:f0:
5b:4d:98:31:5d:86:35:da:cf:6e:c4:cb:7f:fe:7c:
37:8f:8c:50:b0:13:8d:1a:a6:1e:c7:0d:99:41:6b:
ec:bf:4b:43:39:f5:6b:9a:6b:b9:70:52:b8:82:25:
18:7f:56:bb:6d:55:c0:84:72:a7:f7:6c:57:10:a9:
56:b0:09:a0:cf:2e:5a:63:0e:5a:34:ec:ea:1d:72:
ee:d3:45:92:fc:07:20:f7:ac:f8:40:c0:88:90:67:
67:4f:cd:05:4b:17:59:fd:73:3d:73:32:89:69:5c:
e5:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:8C:2A:4E:CD:7F:65:9C:2C:47:18:27:93:CB:DB:C7:97:10:57:F3
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/8YwqTs1_ZZwsRxgnk8vbx5cQV_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f006::/48
Signature Algorithm: sha256WithRSAEncryption
a8:c7:55:44:a3:a1:9d:4f:fe:c3:c9:c2:d6:d0:6d:93:78:fd:
88:05:27:3e:e3:17:67:2b:7a:f9:62:b8:dd:b6:7e:12:c7:da:
d0:09:1b:cc:43:e5:05:7e:d4:e7:01:dc:65:a0:4f:47:f0:70:
cd:74:ac:10:00:bd:ac:9d:88:c3:f6:4d:24:a1:c9:bb:71:28:
da:bb:f0:a0:17:fc:87:58:21:66:d1:52:70:0b:17:46:c6:47:
84:1a:a2:73:b2:e7:c3:d9:e0:63:96:ce:69:f3:f9:ad:6d:d4:
2a:48:1c:ec:6c:01:cb:84:3f:5f:b5:5e:bb:26:3a:a9:be:d2:
f4:28:48:6e:ed:06:4a:b9:8c:5b:7d:8c:a3:42:46:5c:72:ab:
cd:d8:76:78:64:b0:f4:32:27:fe:3f:9a:37:ce:0e:8e:17:fa:
a1:86:14:a3:28:ca:9e:a8:57:61:38:a5:c6:dc:9f:39:fe:55:
0c:db:6a:11:0b:6d:e1:2f:30:11:34:cf:af:fb:7a:ff:12:6f:
ae:16:d1:ab:b4:a1:6f:4b:45:8a:00:f3:dd:35:06:42:29:be:
ba:1f:d1:b0:19:86:17:ee:14:3e:d0:70:bf:33:f5:83:67:a0:
9f:12:06:b2:9b:c2:52:e3:57:dd:76:79:33:5a:d5:9a:81:02:
53:5e:79:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:24 2023 by rpki-client on console-fra.rpki-client.org