Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/Gx4VZ8TMKTbY4dUjnXXuqMV5Csg.roa
File: Gx4VZ8TMKTbY4dUjnXXuqMV5Csg.roa (raw, json)
Hash identifier: svWTyNlKcP7OFrguxcWpjOH65VxF9QcDY7S1iO78z78=
Subject key identifier: 1B:1E:15:67:C4:CC:29:36:D8:E1:D5:23:9D:75:EE:A8:C5:79:0A:C8
Certificate issuer: /CN=feb84d9f8f9e33156589a5ebf722203a899e0a51
Certificate serial: 02B79569
Authority key identifier: FE:B8:4D:9F:8F:9E:33:15:65:89:A5:EB:F7:22:20:3A:89:9E:0A:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_rhNn4-eMxVliaXr9yIgOomeClE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/Gx4VZ8TMKTbY4dUjnXXuqMV5Csg.roa
Signing time: Wed 22 Jun 2022 11:58:32 +0000
ROA not before: Wed 22 Jun 2022 11:58:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 2a0a:a200:3cf::/48 maxlen: 48
2a0a:a200:18d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45585769 (0x2b79569)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=feb84d9f8f9e33156589a5ebf722203a899e0a51
Validity
Not Before: Jun 22 11:58:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b1e1567c4cc2936d8e1d5239d75eea8c5790ac8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fa:89:e1:d9:29:d0:86:4b:2b:9f:9e:ed:34:
e9:20:fb:d4:b7:19:44:6a:e2:d2:38:42:77:27:db:
f3:0e:db:f0:11:65:24:71:a0:ba:77:4a:64:83:01:
ef:37:8d:75:eb:bc:e1:47:6d:4e:a4:34:91:00:17:
10:49:8b:51:d0:39:91:68:64:0b:2b:99:5f:3c:0c:
cc:bd:5c:8e:b7:9b:d8:04:1b:40:06:4d:1a:9e:a0:
ac:93:8e:93:37:3e:11:d8:4e:e3:33:f5:f0:69:10:
be:aa:7a:d0:44:cc:be:d7:e2:a3:31:35:6d:7b:a0:
0c:07:b5:bd:26:b1:bb:1c:df:de:e6:48:44:0f:ca:
8d:6d:ef:3e:97:be:c5:07:3f:89:b3:98:0c:f7:3a:
9e:1c:37:0a:27:c4:0b:cd:9a:d1:d7:e3:d3:27:d4:
77:5d:77:98:18:dc:ce:4d:31:2c:6f:bb:19:76:71:
e4:25:1d:87:ec:46:9f:d4:f5:ad:56:02:75:c6:83:
6b:a7:c6:69:6f:bd:53:1d:ba:ed:bf:93:d8:2d:9f:
ec:4c:2b:f8:e2:67:28:de:44:ac:62:bf:05:a6:7e:
86:0c:af:44:5f:78:83:bd:f4:cf:23:5b:c2:2e:99:
fe:29:4f:b0:51:10:40:2d:73:da:30:cd:1a:9a:87:
6f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:1E:15:67:C4:CC:29:36:D8:E1:D5:23:9D:75:EE:A8:C5:79:0A:C8
X509v3 Authority Key Identifier:
keyid:FE:B8:4D:9F:8F:9E:33:15:65:89:A5:EB:F7:22:20:3A:89:9E:0A:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_rhNn4-eMxVliaXr9yIgOomeClE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/Gx4VZ8TMKTbY4dUjnXXuqMV5Csg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/_rhNn4-eMxVliaXr9yIgOomeClE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:a200:18d::/48
2a0a:a200:3cf::/48
Signature Algorithm: sha256WithRSAEncryption
e3:21:92:34:e4:8a:86:c4:ff:4c:d9:55:48:be:05:d1:e4:6f:
c7:69:1c:83:7b:43:7a:8a:9a:b2:aa:fd:a8:cf:6f:40:85:61:
0e:66:90:25:b9:58:ff:e8:93:17:4f:a6:96:f1:a8:f1:8b:bc:
bd:b2:6c:8a:cb:e8:3f:0d:3f:da:b1:1a:39:cf:e3:b7:46:67:
c8:2b:b1:bb:90:f1:f0:fe:8f:63:b4:17:d9:5e:f1:35:b0:9d:
6a:bf:a0:d7:3e:05:93:a8:be:2f:7d:df:aa:65:04:6d:64:bf:
80:26:2c:e4:93:2d:e6:ff:d9:5e:cf:62:c0:d6:4b:13:e3:9a:
e4:7e:b8:a0:73:36:6a:83:e7:c4:07:fc:67:d3:74:d7:fd:7a:
df:77:11:c0:62:d0:5b:78:e7:82:7c:fa:8e:3b:12:a7:ee:1b:
60:5e:5c:b7:11:f9:54:52:59:b9:67:bd:0a:b9:d0:99:d8:cf:
62:b2:3b:14:14:de:06:96:09:75:ec:cb:42:53:2e:0a:66:ef:
91:b8:d3:b6:ad:0d:d8:04:3c:84:d0:41:cc:2d:b7:ad:cc:8f:
f0:f6:ae:57:20:b1:05:8c:3d:44:fd:78:09:72:8d:4a:af:e7:
31:fd:6a:c7:8a:26:0f:1f:1e:a5:13:8a:43:c2:3f:df:9f:d7:
a0:2a:37:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:49 2024 by rpki-client on console-fra.rpki-client.org