Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/8oQ4mQJpiTi9dhAYF4BXzSj4mFg.roa
File: 8oQ4mQJpiTi9dhAYF4BXzSj4mFg.roa (raw, json)
Hash identifier: prVjYO88TrSRpLoQ66tA2Zp2gK/urkm/Bnt7/QpiAHg=
Subject key identifier: F2:84:38:99:02:69:89:38:BD:76:10:18:17:80:57:CD:28:F8:98:58
Certificate issuer: /CN=7bab6c11d41162db0306858f83e5e65121132a6b
Certificate serial: 03FB3DA3
Authority key identifier: 7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/8oQ4mQJpiTi9dhAYF4BXzSj4mFg.roa
Signing time: Sat 01 Jan 2022 06:00:52 +0000
ROA not before: Sat 01 Jan 2022 06:00:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213388
IP address blocks: 2a07:22c1:fff0::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66796963 (0x3fb3da3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bab6c11d41162db0306858f83e5e65121132a6b
Validity
Not Before: Jan 1 06:00:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f284389902698938bd761018178057cd28f89858
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:91:e5:e0:94:bf:c0:b3:27:8a:b3:51:2c:88:
60:a0:14:e9:da:e1:66:30:21:cb:57:5a:73:69:53:
4a:9e:db:cc:9f:07:4f:6d:3b:79:3f:75:f6:9b:4b:
67:18:66:0f:4d:55:d5:9e:ac:c3:89:c6:ba:9b:0d:
4a:c4:b2:be:9b:ac:a3:4e:44:b2:3a:c1:c2:3b:9d:
0a:87:e5:c5:ad:c3:eb:1a:6e:54:2d:2a:3a:d3:2b:
36:89:cb:18:85:40:df:21:43:10:32:23:07:57:6c:
e1:55:2b:8d:a6:94:1e:01:05:ef:b7:1c:86:c1:63:
0f:22:93:f8:af:53:4d:d2:7e:c6:18:bb:e9:eb:27:
f6:6d:be:b6:11:f5:df:bb:dc:92:16:92:17:13:80:
7f:fe:66:44:13:d9:2c:ac:6a:1b:68:1a:b7:55:46:
4c:09:1a:fb:ee:a8:2b:e8:35:7d:96:89:59:59:d0:
ba:61:01:73:63:07:28:65:83:e2:a1:00:f5:cd:15:
11:e0:12:8d:7c:fa:2e:8a:11:4e:81:79:c2:f3:e9:
81:b7:e2:00:15:27:c6:61:9f:ac:3a:4c:04:2a:1d:
02:b3:5e:4a:94:82:8d:65:2a:97:89:36:ef:57:fa:
c0:ae:f8:c0:6e:94:df:e2:db:5f:98:dd:74:93:4f:
72:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:84:38:99:02:69:89:38:BD:76:10:18:17:80:57:CD:28:F8:98:58
X509v3 Authority Key Identifier:
keyid:7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/8oQ4mQJpiTi9dhAYF4BXzSj4mFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/e6tsEdQRYtsDBoWPg-XmUSETKms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:22c1:fff0::/44
Signature Algorithm: sha256WithRSAEncryption
04:ef:00:1f:50:19:81:d6:0e:1d:9a:6d:53:94:81:d4:04:86:
40:f5:19:55:1d:4e:8d:62:2e:eb:4d:3f:ef:49:76:a4:6d:3e:
de:1f:af:19:89:3e:b0:44:ab:a6:fe:84:46:25:c3:ca:17:c2:
7b:2d:1c:51:a9:f8:3c:fe:64:2d:3b:2d:47:46:d3:fe:f3:21:
8d:bb:af:3b:0f:61:e3:6b:ed:bf:f4:6b:20:de:92:2d:23:44:
70:5a:74:ec:c7:2d:93:24:eb:f8:45:d2:af:db:a4:d4:b0:14:
c0:4c:2b:0c:ef:ed:be:37:eb:8c:32:67:21:3e:0b:6e:a4:a9:
1b:ac:78:f7:0f:a8:a3:0d:95:97:c1:18:1f:59:2c:d7:d5:07:
c7:04:07:17:b8:aa:80:59:78:4c:d7:0f:28:f2:10:e1:57:2f:
0a:26:cc:98:96:44:b7:58:d2:33:9c:ad:a0:cf:ee:7e:2b:15:
20:d8:2b:f0:4c:f7:ac:9b:fd:ef:0b:ef:30:2a:dd:d8:77:da:
d1:ef:a7:e3:77:22:69:66:d5:46:24:cb:36:e5:24:03:ad:79:
08:47:38:44:c4:14:5f:ee:90:59:ff:17:df:3e:bb:bd:91:75:
85:c9:81:26:e8:d5:c7:55:fd:cf:85:00:13:40:80:83:06:74:
9e:1b:15:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:35 2024 by rpki-client on console-ams.rpki-client.org