Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/caa743-1c13-4a25-9f6a-65be5503165d/1/ioJ1-aoqzjOFl3EuNdVpGjj96nc.roa
File: ioJ1-aoqzjOFl3EuNdVpGjj96nc.roa (raw, json)
Hash identifier: o81iN+3Gt5p1X4+l1OD1XiO1DaILgMRRQDyjoXySYJc=
Subject key identifier: 8A:82:75:F9:AA:2A:CE:33:85:97:71:2E:35:D5:69:1A:38:FD:EA:77
Certificate issuer: /CN=5a376c8008d6abd962341563dd2a4dccaf153cba
Certificate serial: 0632A600
Authority key identifier: 5A:37:6C:80:08:D6:AB:D9:62:34:15:63:DD:2A:4D:CC:AF:15:3C:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WjdsgAjWq9liNBVj3SpNzK8VPLo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/caa743-1c13-4a25-9f6a-65be5503165d/1/ioJ1-aoqzjOFl3EuNdVpGjj96nc.roa
Signing time: Thu 10 Mar 2022 14:10:35 +0000
ROA not before: Thu 10 Mar 2022 14:10:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44486
IP address blocks: 2a05:bec0:40::/48 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103982592 (0x632a600)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a376c8008d6abd962341563dd2a4dccaf153cba
Validity
Not Before: Mar 10 14:10:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a8275f9aa2ace338597712e35d5691a38fdea77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3f:64:cc:ac:5a:c0:1d:cb:72:3c:4f:f5:72:
72:48:56:f7:24:b3:c8:c4:7e:7d:57:8d:49:c3:7c:
eb:cf:d3:06:11:db:12:9e:e5:96:fa:a5:e9:64:c3:
7e:78:3d:da:77:d1:10:a8:09:37:38:9e:8a:ef:c5:
d5:d2:a2:76:48:e0:2a:71:c5:3a:db:3a:5b:a7:71:
b2:f1:60:6d:9c:6b:99:6f:7a:37:9f:e7:b8:c3:96:
e4:58:77:f1:f2:3d:50:c6:d1:7f:d3:76:90:60:a8:
b9:8b:09:c6:41:7d:70:32:7c:99:f5:b9:79:19:e8:
9f:33:31:59:ee:8a:ce:71:5c:e4:95:d3:20:b6:4f:
93:ac:99:33:f4:dc:d8:c2:a0:1b:97:d4:12:47:42:
8d:61:dc:26:d2:14:2c:fe:07:be:a3:9d:61:5e:3a:
ea:62:17:e6:c0:b2:bb:93:c5:4b:58:24:69:96:b4:
ec:fb:e2:9f:5a:5a:90:1c:93:20:16:30:e3:25:07:
0f:c5:0e:27:85:81:b7:da:78:53:60:8d:54:86:40:
ab:8e:e0:94:ce:bb:2f:99:57:1c:11:93:51:08:37:
c2:54:81:e3:48:c6:ba:d4:6a:de:65:31:ba:bc:27:
b2:ac:14:ff:71:f1:ac:30:85:3b:26:52:2e:05:d7:
c5:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:82:75:F9:AA:2A:CE:33:85:97:71:2E:35:D5:69:1A:38:FD:EA:77
X509v3 Authority Key Identifier:
keyid:5A:37:6C:80:08:D6:AB:D9:62:34:15:63:DD:2A:4D:CC:AF:15:3C:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WjdsgAjWq9liNBVj3SpNzK8VPLo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/caa743-1c13-4a25-9f6a-65be5503165d/1/ioJ1-aoqzjOFl3EuNdVpGjj96nc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/caa743-1c13-4a25-9f6a-65be5503165d/1/WjdsgAjWq9liNBVj3SpNzK8VPLo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:bec0:40::/48
Signature Algorithm: sha256WithRSAEncryption
ab:7d:4b:d8:c0:92:6e:7f:2e:22:b0:8c:d5:e1:cf:82:85:50:
9d:21:46:43:b5:ae:34:1d:ab:30:c8:f1:60:d4:bf:7d:5d:13:
62:4e:5f:30:d3:ac:29:bb:96:a0:c0:b3:ad:30:ff:ba:49:b5:
59:cd:38:e6:38:6e:f8:8b:c8:92:53:45:a2:5d:af:ec:f9:d8:
5b:20:33:88:d0:d2:9d:e4:a4:4b:a0:dd:91:47:c3:43:39:c1:
cb:7f:51:dd:ac:dd:fe:6a:1a:b0:15:37:54:ac:87:c1:3e:df:
be:12:c4:78:68:fa:b4:69:b9:7a:4c:df:3e:2a:26:db:70:e8:
4b:ed:cc:c4:9f:07:6a:70:79:fb:92:0d:35:99:63:e1:cf:d8:
01:7a:b9:72:60:ce:63:c8:b4:f0:9c:ba:18:36:d2:56:15:a6:
3f:c1:a9:57:e5:01:95:02:00:7d:7e:4b:ab:dd:a8:ed:9c:71:
1c:12:ab:b7:f8:2e:b4:92:5e:5c:68:ef:30:5c:7a:7e:23:d6:
5a:fd:58:72:74:2f:d7:f9:85:d2:14:a3:d5:8a:c0:08:cc:e9:
4e:53:4b:45:37:9a:39:fc:c9:10:27:e1:1e:eb:bb:8d:81:a9:
e8:36:94:84:6c:44:d9:63:bb:1a:94:04:24:02:28:53:d5:5c:
0a:84:f9:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:28 2024 by rpki-client on console-ams.rpki-client.org