Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/Ppiib4ZniSfV19IVjt47VQXp5b0.roa
File: Ppiib4ZniSfV19IVjt47VQXp5b0.roa (raw, json)
Hash identifier: digVjPsK6pOkMujzBy93SP+vj4p8PZsxJY95XlQgDOs=
Subject key identifier: 3E:98:A2:6F:86:67:89:27:D5:D7:D2:15:8E:DE:3B:55:05:E9:E5:BD
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 0969FC2A
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/Ppiib4ZniSfV19IVjt47VQXp5b0.roa
Signing time: Fri 04 Mar 2022 10:04:15 +0000
ROA not before: Fri 04 Mar 2022 10:04:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211517
IP address blocks: 2a0e:8f02:f03f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157940778 (0x969fc2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Mar 4 10:04:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e98a26f86678927d5d7d2158ede3b5505e9e5bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:b2:9d:c8:ce:9a:71:48:94:84:13:da:06:31:
05:08:b3:3a:0a:fe:d3:95:18:4a:5d:83:91:cf:a9:
17:43:5c:6f:32:2b:6a:07:70:ae:25:e5:f4:ac:25:
ff:dd:64:69:b2:04:60:fe:55:83:27:81:1e:31:8a:
58:c7:63:c1:1d:f9:5e:f3:bf:13:5d:0f:57:1c:74:
4c:86:ab:47:fd:da:91:75:34:4a:1d:51:52:b1:96:
0b:ca:63:23:d9:83:6b:05:a5:e6:1d:de:17:f4:2c:
0d:2d:90:ae:84:53:f3:e4:f4:93:e3:94:12:0e:b2:
ef:8c:84:9f:cd:c1:17:9c:3e:10:eb:a2:cc:eb:7a:
47:ed:52:40:6a:84:b6:1c:83:81:24:63:c2:a2:85:
9d:ad:cd:1c:8b:db:fb:e1:1b:46:92:a1:cb:e0:ca:
3e:e9:63:50:fc:ea:ca:55:28:f7:b0:b0:23:c6:05:
f7:d3:f0:86:4f:eb:ed:49:66:82:17:12:65:62:97:
67:6b:0e:cb:18:8f:d3:f8:74:5c:59:99:2f:cc:cb:
21:60:6d:2b:f0:e9:bf:65:e4:3e:36:b3:42:77:36:
ce:01:c1:d0:59:5a:19:6b:6c:48:40:ca:7f:34:34:
33:7c:2c:0c:c2:a2:c7:30:98:15:fa:79:9f:4d:41:
d0:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:98:A2:6F:86:67:89:27:D5:D7:D2:15:8E:DE:3B:55:05:E9:E5:BD
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/Ppiib4ZniSfV19IVjt47VQXp5b0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f03f::/48
Signature Algorithm: sha256WithRSAEncryption
2b:8b:c7:b8:af:9c:db:0b:f4:3c:ca:a8:d2:bb:c9:9d:5c:92:
b2:73:77:4d:31:fe:f1:11:7a:1b:50:d1:f8:5f:c3:ac:75:b0:
61:96:df:ce:4f:d2:a5:f3:6a:30:90:85:be:d0:85:27:e0:07:
7a:e0:35:bd:8f:d8:ac:8c:76:7a:9a:23:9f:e9:2f:c1:c6:ad:
22:1f:c2:60:13:4f:c8:b6:87:48:53:ad:a2:30:59:e5:ed:fe:
f9:5d:76:af:59:20:f8:44:c2:f0:41:26:80:b7:ae:63:20:0e:
76:8a:6f:98:f5:be:c0:c8:96:17:2d:ce:91:40:6a:9a:9b:92:
8b:c1:57:66:7d:d2:a6:cd:58:3f:ca:ea:73:df:1e:03:14:b0:
b2:a7:ec:39:20:64:b7:5c:68:04:62:ad:cd:a3:6b:78:1e:bb:
4b:42:4d:a8:57:cc:30:c0:2d:ce:32:1e:fe:65:e6:b8:bf:05:
43:3e:f0:c4:c2:2b:cf:d7:33:b7:ab:cf:8d:14:39:bc:96:c6:
6e:e0:df:74:86:a4:40:03:45:bc:f1:50:11:1d:43:e0:cc:36:
9d:d2:3c:3d:ba:c3:43:b7:7e:c5:5c:75:d5:ad:ff:29:03:e5:
61:c7:9f:32:3f:6a:14:cc:e1:f7:a3:8b:af:ed:6a:ae:5c:4d:
4f:ef:1d:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:24 2023 by rpki-client on console-fra.rpki-client.org