Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/hGij4Q0l338tBFOFdwc5pmCizNY.roa
File: hGij4Q0l338tBFOFdwc5pmCizNY.roa (raw, json)
Hash identifier: TWY21pweO8/kVyqaISFWyaxK+K2dD6g7VgsuJYXsd+0=
Subject key identifier: 84:68:A3:E1:0D:25:DF:7F:2D:04:53:85:77:07:39:A6:60:A2:CC:D6
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0308F1B7
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/hGij4Q0l338tBFOFdwc5pmCizNY.roa
Signing time: Thu 16 Jun 2022 14:51:45 +0000
ROA not before: Thu 16 Jun 2022 14:51:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204633
IP address blocks: 2a0c:b641:8d0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50917815 (0x308f1b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jun 16 14:51:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8468a3e10d25df7f2d045385770739a660a2ccd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:fb:cf:8f:b2:e8:2f:da:41:df:d8:1f:3e:91:
a6:72:10:4f:3d:b1:54:f5:85:28:4d:0e:c8:50:36:
de:60:4c:8d:de:a4:0f:d5:bf:fa:0a:19:07:1b:ea:
9d:f1:4d:73:00:87:5e:44:3c:0c:4d:47:fa:2e:ee:
c2:58:f6:64:3a:88:eb:9d:b0:90:5d:6a:ea:24:a0:
0d:db:48:fc:f2:d7:85:c4:fb:0b:43:5b:50:0f:77:
47:08:e3:06:32:f5:9b:c9:14:d1:75:f3:c8:0a:ae:
1f:f1:8e:c5:ca:43:dd:31:a1:1b:b5:4c:90:24:c1:
20:c9:2b:1f:a2:b4:03:bd:b6:fd:ad:97:61:a4:78:
a9:07:d4:62:97:0a:4f:90:29:a1:64:9a:80:f4:9e:
7d:33:f3:4c:b8:7e:bb:ac:a5:c9:81:3e:14:83:f6:
b7:b4:a8:c4:81:3f:87:c9:ec:de:c2:55:70:a9:85:
54:13:64:aa:76:2d:40:1a:2f:50:58:53:82:a1:fa:
47:7a:3f:ed:4d:a5:0f:39:0e:fa:5d:60:60:7b:4c:
62:08:33:e5:04:d2:b5:3b:b5:33:15:bb:c9:fe:a0:
f3:d0:a8:07:dd:ee:60:e8:0d:0c:25:47:ae:dd:b2:
1a:d1:6d:59:e4:f7:53:41:5f:40:89:fd:84:92:57:
52:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:68:A3:E1:0D:25:DF:7F:2D:04:53:85:77:07:39:A6:60:A2:CC:D6
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/hGij4Q0l338tBFOFdwc5pmCizNY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:8d0::/44
Signature Algorithm: sha256WithRSAEncryption
80:a5:71:1f:c7:7f:8b:2d:41:54:4c:93:a1:13:fd:5f:98:db:
8b:fe:be:2c:9e:d7:e5:8f:75:2f:7a:38:49:86:76:1c:14:73:
79:15:d8:b2:cb:d5:fb:aa:8a:7c:5b:9c:28:1d:53:9b:31:99:
7e:15:04:07:48:c1:ea:ab:59:f2:4d:f9:f6:91:56:24:94:63:
55:bf:1e:1b:d8:56:67:66:39:7f:bd:20:b1:47:27:a5:a9:82:
61:a8:94:1a:3e:b3:b6:a2:86:11:ed:d0:ee:88:be:bb:6d:c2:
92:b8:40:f7:1f:64:d1:73:ba:bf:a5:81:70:62:cf:02:ed:ce:
cd:9e:ce:49:23:e4:80:5f:f1:05:b8:d9:30:2c:cf:3a:31:1f:
32:06:8a:03:f3:c7:6d:4c:e6:c8:15:a5:dd:47:e7:61:99:ac:
89:05:28:a6:a2:89:0b:8a:8b:0d:2e:50:15:a7:b4:7b:03:59:
dc:66:3e:3a:43:b8:c8:fe:4b:a5:7c:40:6b:1f:a7:b2:eb:d3:
86:07:45:80:74:ab:3d:4a:c6:2a:bf:3e:1d:d6:5c:51:d8:71:
0d:c5:8f:42:76:e9:29:c1:0c:c6:f4:80:10:73:13:40:21:e2:
75:5f:db:6b:f0:b8:e0:8f:60:81:04:55:d3:e6:c6:a2:8a:eb:
86:76:53:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:38 2024 by rpki-client on console-ams.rpki-client.org