Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/rS06XIb0nVdCmFBjuReewLXdBIM.roa
File: rS06XIb0nVdCmFBjuReewLXdBIM.roa (raw, json)
Hash identifier: ym0vS4n5LDhfMYbM2fOQ2beD9v3L9516QVaCjGfXMUc=
Subject key identifier: AD:2D:3A:5C:86:F4:9D:57:42:98:50:63:B9:17:9E:C0:B5:DD:04:83
Certificate issuer: /CN=02fc5c064f5159c8a1fa4066c8cb8ff701671dd2
Certificate serial: 018389E3C2B1B8C1C8866C4C37EB51C7526B
Authority key identifier: 02:FC:5C:06:4F:51:59:C8:A1:FA:40:66:C8:CB:8F:F7:01:67:1D:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AvxcBk9RWcih-kBmyMuP9wFnHdI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/rS06XIb0nVdCmFBjuReewLXdBIM.roa
Signing time: Thu 29 Sep 2022 15:35:48 +0000
ROA not before: Thu 29 Sep 2022 15:35:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208731
IP address blocks: 2a0f:98c0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:89:e3:c2:b1:b8:c1:c8:86:6c:4c:37:eb:51:c7:52:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02fc5c064f5159c8a1fa4066c8cb8ff701671dd2
Validity
Not Before: Sep 29 15:35:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad2d3a5c86f49d5742985063b9179ec0b5dd0483
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b3:39:d2:c6:01:9b:06:6b:d6:4c:eb:6e:5c:
00:55:b1:15:dd:dd:bb:43:e0:66:99:09:d7:96:2d:
b1:d4:b9:d6:1d:34:c6:3f:6f:99:90:92:71:c2:7a:
5b:a3:d1:69:91:f3:cf:22:bf:8d:5d:cd:32:d6:9b:
9d:d6:21:b4:53:4f:88:f5:63:10:e3:37:8c:9b:36:
bb:7a:2f:7c:4a:de:b2:35:de:6e:35:8c:6e:da:c3:
34:2f:c3:72:cb:15:a8:48:f8:9d:1c:21:05:7c:46:
6c:26:51:3d:38:b5:83:53:c5:b5:e9:45:e2:ba:26:
93:ee:67:01:f0:46:57:22:12:8b:d1:f1:de:87:c7:
bf:a9:ed:21:12:02:aa:d2:b8:e1:8b:17:1c:f1:ad:
fc:a6:a5:76:0c:60:1a:c8:6e:6f:6c:48:79:f8:83:
9c:64:83:b7:e9:64:66:5e:02:4e:81:06:57:dc:7b:
70:d0:e4:a2:f6:ce:d1:59:c8:b3:cf:a3:30:a5:bb:
30:93:93:8b:1c:96:e1:1b:3d:dd:43:b8:ec:e2:71:
98:3e:ca:9d:1c:53:8d:c6:74:d2:52:8e:e4:3c:c3:
6a:fb:d2:be:a4:67:df:1e:8a:2f:14:ae:69:22:1e:
d0:2d:73:59:f7:2d:ce:7d:db:b9:08:0e:b5:7a:57:
74:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:2D:3A:5C:86:F4:9D:57:42:98:50:63:B9:17:9E:C0:B5:DD:04:83
X509v3 Authority Key Identifier:
keyid:02:FC:5C:06:4F:51:59:C8:A1:FA:40:66:C8:CB:8F:F7:01:67:1D:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AvxcBk9RWcih-kBmyMuP9wFnHdI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/rS06XIb0nVdCmFBjuReewLXdBIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:98c0::/29
Signature Algorithm: sha256WithRSAEncryption
38:08:52:f1:83:be:b6:2e:48:3c:f4:35:5f:9d:0a:b9:a3:0a:
bc:73:36:2b:be:15:b6:c0:18:b2:ae:55:67:b9:75:74:e0:9d:
5a:2b:b6:c8:f1:3e:95:36:08:24:e9:93:80:88:aa:20:d3:a0:
76:3c:c5:49:04:55:06:e2:9b:ef:f4:ec:9c:ad:ad:fd:f2:db:
cf:24:c6:bc:59:a2:da:ea:76:9b:bb:9b:b5:5a:31:1b:b5:49:
1c:eb:76:22:ea:24:97:ad:66:40:99:ed:6b:61:fc:49:48:1b:
c0:b6:4d:78:f8:c8:10:2c:15:b9:c7:93:e8:de:53:cf:4b:ae:
2f:08:22:4e:1e:b4:8c:33:27:29:13:53:6a:0f:a3:43:0b:80:
d9:f5:7b:44:d8:57:63:0b:17:5b:04:1c:96:05:49:5e:c1:25:
99:94:bd:a8:4e:ff:86:c9:56:90:5a:f2:c4:66:c0:8d:ab:67:
6d:61:a5:1b:4a:42:82:7c:be:97:f7:c6:bb:59:57:de:02:07:
6c:55:48:1c:4c:82:8f:72:d3:d8:ab:75:71:cf:58:36:76:fd:
ab:7b:3f:00:2a:e3:3f:de:d6:eb:a2:c3:9f:f7:a2:50:21:3c:
36:e4:47:b1:b0:6a:f0:44:37:75:a6:f0:5f:ad:6c:4a:4b:66:
f3:73:41:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:09 2024 by rpki-client on console-fra.rpki-client.org