Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/Vp9Y_EkpU1pnlw6SguTw132BbmA.roa
File: Vp9Y_EkpU1pnlw6SguTw132BbmA.roa (raw, json)
Hash identifier: bd1bA+zM2gxRr6elm8OrwSHxmq7XkqDY3YbEEKr93lY=
Subject key identifier: 56:9F:58:FC:49:29:53:5A:67:97:0E:92:82:E4:F0:D7:7D:81:6E:60
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0B4742CC
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/Vp9Y_EkpU1pnlw6SguTw132BbmA.roa
Signing time: Sat 01 Jan 2022 13:04:58 +0000
ROA not before: Sat 01 Jan 2022 13:04:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41028
IP address blocks: 2a05:b680:7::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 189219532 (0xb4742cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jan 1 13:04:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=569f58fc4929535a67970e9282e4f0d77d816e60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ab:cf:6f:f7:30:a8:a4:68:1d:bf:91:e0:ca:
cd:3e:e2:2c:0f:39:b0:a1:74:80:23:8b:bd:27:0e:
90:0a:45:d9:c1:8c:0e:64:60:b4:e2:e9:bb:79:47:
f0:9d:65:d6:9d:27:58:e7:b7:be:a0:00:4c:bd:5f:
66:e4:f3:cb:71:1b:9b:8b:02:42:51:b7:f9:9f:13:
9e:c9:ab:8e:d2:c4:11:24:66:9c:bb:3d:cc:0c:b6:
b1:6d:03:55:fd:50:5e:59:2c:42:de:0a:8f:19:52:
9e:74:b4:9c:5c:25:8a:08:bc:b1:07:59:04:8a:c7:
fb:66:58:72:88:45:92:c9:f6:36:ef:55:a0:82:ac:
24:bc:d7:5a:02:37:dc:ac:36:d4:d2:0e:e9:c7:fe:
5a:ad:84:17:85:9a:dd:26:38:fe:25:0c:88:df:53:
78:73:33:27:76:5f:13:58:f0:c3:d0:4b:a3:4b:e0:
de:9b:e3:0a:28:a5:21:ec:8b:93:5b:fa:4e:cb:4b:
11:df:56:80:ce:9f:23:41:88:74:64:57:3e:c2:c5:
54:62:08:85:38:4a:a4:8e:4c:3e:5e:2a:33:5f:b1:
90:bf:76:9b:01:05:e3:92:cb:dc:e1:c2:09:91:07:
52:7f:93:47:04:3f:a4:07:92:1f:37:83:8d:73:4b:
d8:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:9F:58:FC:49:29:53:5A:67:97:0E:92:82:E4:F0:D7:7D:81:6E:60
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/Vp9Y_EkpU1pnlw6SguTw132BbmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:b680:7::/48
Signature Algorithm: sha256WithRSAEncryption
ad:d6:b1:c6:e8:c1:89:59:6f:82:f2:fb:a6:e7:b5:05:e1:f9:
ec:d8:90:ff:49:34:6e:0b:ff:20:a6:a2:1e:6b:31:77:94:15:
b1:fc:f4:aa:3b:8f:fa:f1:bb:40:fb:59:46:01:24:55:94:d0:
f7:2e:95:5f:01:b7:0a:f6:c1:be:3f:69:89:d3:73:6c:64:1e:
5b:f4:ea:35:a6:fb:3e:90:30:c6:89:96:1b:a5:c6:31:18:dd:
c3:aa:c3:8a:e6:09:3a:af:bc:6c:95:45:a3:9a:5b:c8:98:2b:
ff:fe:cd:c7:67:b6:c2:30:ba:1f:ae:24:ad:ac:86:c1:ab:6c:
c0:34:66:32:2c:fb:e4:20:48:f1:65:43:56:2d:c2:7a:5c:e8:
4e:14:42:8b:2a:e1:28:56:c7:33:65:b2:ba:34:f0:52:06:88:
7a:7d:1a:8f:ed:6b:6b:b8:80:fc:1b:8d:ff:94:5d:3d:b4:09:
72:69:5e:35:4f:1f:d8:ab:e1:e6:d3:d5:23:80:c7:73:ff:11:
6b:8d:44:31:58:e5:ef:5d:86:91:4b:bf:ae:c2:ce:1f:b8:ff:
99:d5:a0:06:55:72:20:94:f4:ca:e1:17:15:86:2a:98:93:bf:
82:ea:25:10:1f:ba:ca:69:37:ba:c8:70:88:b2:7e:6a:d1:1b:
ee:4a:4e:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:29 2024 by rpki-client on console-fra.rpki-client.org