Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/r8TotRaYvw8Iaz0d8qoSWaGWouk.roa
File: r8TotRaYvw8Iaz0d8qoSWaGWouk.roa (raw, json)
Hash identifier: EaB8o1LHO8m4Ymlb3fKbUY/sAmh7gO9sXyqEdejD9Mw=
Subject key identifier: AF:C4:E8:B5:16:98:BF:0F:08:6B:3D:1D:F2:AA:12:59:A1:96:A2:E9
Certificate issuer: /CN=5f7da568ad027b9e249c13e223d322769881a29f
Certificate serial: 0182EF340EDB25D645E732E2BD13AAB36913
Authority key identifier: 5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/r8TotRaYvw8Iaz0d8qoSWaGWouk.roa
Signing time: Tue 30 Aug 2022 14:42:22 +0000
ROA not before: Tue 30 Aug 2022 14:42:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58321
IP address blocks: 2a06:1980::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ef:34:0e:db:25:d6:45:e7:32:e2:bd:13:aa:b3:69:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f7da568ad027b9e249c13e223d322769881a29f
Validity
Not Before: Aug 30 14:42:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=afc4e8b51698bf0f086b3d1df2aa1259a196a2e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e5:8a:83:37:17:3b:7e:a6:fc:b3:42:35:ba:
92:6b:22:3f:79:8d:db:16:2e:bf:ec:85:28:23:25:
60:07:97:11:14:4e:e2:66:5c:70:51:fe:47:6d:c6:
c3:85:2f:71:ef:ca:99:be:b7:98:d6:2a:b8:32:03:
82:09:ca:2e:cd:ed:9a:1a:20:08:11:05:9a:f5:d3:
70:0c:80:5a:7e:f0:7c:78:f9:7f:66:53:a7:a6:d9:
26:64:70:44:4a:36:1e:c7:32:22:ea:0d:24:f8:7b:
96:82:dc:7c:3d:eb:2a:0e:b7:7f:a9:2f:83:3b:b4:
a9:76:21:7c:6a:fb:1b:5b:d6:36:3e:01:ba:af:a0:
91:8c:60:f4:e6:b7:bd:99:3a:d0:e1:00:b2:cb:19:
6b:08:f7:56:fa:67:1f:40:dd:63:2b:e2:dc:e1:86:
de:39:57:6d:fd:38:1a:88:2a:9d:6b:23:d9:f6:4b:
5c:51:dc:51:c0:4d:fe:d8:06:20:c2:08:f1:39:f6:
22:53:84:53:06:27:37:48:d8:c1:11:60:ad:4b:ca:
06:11:99:ad:0e:96:78:b1:bd:e1:6e:73:97:1d:a7:
28:11:2f:ea:89:94:17:a8:79:a6:38:09:4c:f1:64:
6e:f7:44:08:20:7d:9c:45:8d:16:5e:e6:14:ca:9d:
96:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:C4:E8:B5:16:98:BF:0F:08:6B:3D:1D:F2:AA:12:59:A1:96:A2:E9
X509v3 Authority Key Identifier:
keyid:5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/r8TotRaYvw8Iaz0d8qoSWaGWouk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1980::/48
Signature Algorithm: sha256WithRSAEncryption
38:a8:59:8f:03:bb:8f:eb:89:54:db:03:6c:56:fb:86:92:e8:
64:38:de:7e:75:8a:01:cb:fa:0b:28:11:13:23:06:ca:ad:bb:
b0:3b:97:a5:a3:b9:5e:1b:df:3d:12:81:08:56:64:71:be:c6:
61:cd:92:ac:db:e5:a1:0f:ca:d2:82:9d:c3:4a:9e:0c:ea:ca:
6f:ed:b0:1a:dd:dc:03:09:4b:01:e5:d6:6e:d5:e8:07:cf:c3:
bd:6d:55:66:ed:a4:4e:8f:30:64:cd:b4:f4:45:fc:86:b4:1f:
5c:56:c2:e9:33:37:36:f5:24:06:09:78:ae:96:ec:b6:69:49:
0d:fb:db:2e:63:00:72:4c:e8:48:aa:17:6e:8a:d2:da:ed:8b:
d3:15:e0:c3:35:42:9a:32:e4:70:32:3b:36:23:ef:a4:a6:96:
22:5d:72:7d:75:ce:19:84:49:56:10:bc:51:ad:be:b8:ca:e4:
57:ec:b1:13:31:5c:c5:40:bb:ff:ba:c1:17:05:ee:e1:af:ac:
ce:2a:34:34:25:fe:84:54:13:24:d3:ed:e8:81:54:c4:2a:1b:
f4:8b:4a:42:ff:3e:67:48:29:92:9b:5b:60:1b:0a:8f:e3:d6:
8d:4b:1f:f1:2c:bb:24:2f:41:b1:aa:a3:23:5d:f3:a3:2d:44:
34:4f:c9:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:58 2024 by rpki-client on console-fra.rpki-client.org