Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/S7b0gA3efcBbTcHRWSaPLORyyLg.roa
File: S7b0gA3efcBbTcHRWSaPLORyyLg.roa (raw, json)
Hash identifier: H4BJXQM7GgUs4qaYdZuC75ED/QMb66xNNtLjSY5FRnY=
Subject key identifier: 4B:B6:F4:80:0D:DE:7D:C0:5B:4D:C1:D1:59:26:8F:2C:E4:72:C8:B8
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 092CC1DF
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/S7b0gA3efcBbTcHRWSaPLORyyLg.roa
Signing time: Tue 08 Feb 2022 16:57:26 +0000
ROA not before: Tue 08 Feb 2022 16:57:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211747
IP address blocks: 2a0e:8f02:f01d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153928159 (0x92cc1df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Feb 8 16:57:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bb6f4800dde7dc05b4dc1d159268f2ce472c8b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:5f:09:e7:4c:57:20:75:63:7d:3f:e9:a9:aa:
34:33:bf:fb:18:c8:94:32:20:eb:57:c4:f7:6d:ea:
cf:d1:9a:91:ec:48:ef:29:3b:b4:38:40:91:cc:b2:
8c:21:16:3b:bb:c7:90:d5:3f:f3:ca:03:41:74:28:
05:06:68:b3:49:02:ce:95:d6:f4:fc:70:8a:e8:22:
cb:85:d4:4f:57:fd:c7:ae:50:41:65:bc:66:7d:08:
d3:be:77:b4:3e:43:1d:6d:00:85:d2:58:c3:43:5a:
4e:d6:e1:ec:9c:3a:c5:f1:55:b6:7a:b3:ef:21:04:
bf:59:bc:ee:01:75:2d:1e:90:30:a9:fe:dc:fc:94:
f0:4d:5d:09:c9:e0:33:3f:8a:73:08:0d:9f:fb:53:
8e:ba:73:f6:d7:05:0e:37:33:0d:bc:f4:88:00:ba:
a2:41:56:13:86:12:6e:5f:e7:12:46:8f:75:86:f6:
d7:bf:9a:fe:97:09:60:21:f1:6d:ef:3f:d8:e3:6e:
01:26:e9:38:e4:a0:61:2b:be:8e:25:78:df:56:61:
51:b0:75:81:5a:27:ef:60:f2:bb:77:dc:a7:fd:91:
6b:6b:08:15:dc:e3:4b:78:3d:60:40:a0:6d:12:3b:
ed:1d:15:d7:d1:da:70:4e:e5:68:5f:25:55:cb:f6:
d0:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:B6:F4:80:0D:DE:7D:C0:5B:4D:C1:D1:59:26:8F:2C:E4:72:C8:B8
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/S7b0gA3efcBbTcHRWSaPLORyyLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f01d::/48
Signature Algorithm: sha256WithRSAEncryption
92:ae:29:4a:60:1b:27:c8:99:8d:8c:6e:69:10:80:93:f1:ab:
c5:2d:85:b1:93:fd:ae:eb:9e:09:7f:4b:6c:e3:f5:43:49:ee:
0d:96:4d:54:ac:66:de:7b:6e:22:e2:ec:c3:0c:75:e0:f3:9a:
5c:4f:74:0d:e9:ac:23:1a:b8:7c:88:29:25:09:75:79:1a:e3:
0c:16:2b:2e:28:84:b0:5c:b7:3f:3d:87:55:5d:2e:07:84:86:
e0:f7:b8:c5:b7:d8:3e:7b:e2:af:49:04:da:4a:9a:7f:ea:dd:
4c:58:7a:74:a9:57:94:c3:7d:51:28:33:7e:86:f8:d3:23:aa:
14:ca:47:1a:15:bb:8c:d0:11:c8:f8:88:4a:09:5d:f5:af:fc:
0d:c1:67:6f:a9:e0:0a:46:16:9e:5f:b4:bc:42:1d:72:37:ae:
5c:26:89:08:94:0a:bc:ad:a9:f5:43:9a:ec:1a:46:99:1d:3f:
be:75:bc:e4:41:8f:ce:4e:d4:57:b6:c6:d3:34:d1:d0:61:69:
d1:56:68:09:8a:02:15:a5:86:07:cd:da:aa:8c:94:19:ff:27:
cb:35:bf:51:a4:2c:65:66:c1:51:61:09:98:9f:e3:52:82:6f:
ed:10:48:f4:1b:70:d5:2d:e3:8b:c0:c7:b4:2e:82:7e:b0:24:
f9:c5:0f:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:12 2023 by rpki-client on console-ams.rpki-client.org