Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/4609ad-0b95-40e4-b053-ad5d53699dd8/1/2e7Is5lKvqnXWd_QfslCR1GMe_k.roa
File: 2e7Is5lKvqnXWd_QfslCR1GMe_k.roa (raw, json)
Hash identifier: jkLX9vKP3km2f/4kQHGTYGjG0haa/xb2vqyR9SR40lg=
Subject key identifier: D9:EE:C8:B3:99:4A:BE:A9:D7:59:DF:D0:7E:C9:42:47:51:8C:7B:F9
Certificate issuer: /CN=ed3141220968d0ae44045e6836999928eca864b8
Certificate serial: 1D1C3CA2
Authority key identifier: ED:31:41:22:09:68:D0:AE:44:04:5E:68:36:99:99:28:EC:A8:64:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7TFBIglo0K5EBF5oNpmZKOyoZLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/4609ad-0b95-40e4-b053-ad5d53699dd8/1/2e7Is5lKvqnXWd_QfslCR1GMe_k.roa
Signing time: Sat 01 Jan 2022 03:58:11 +0000
ROA not before: Sat 01 Jan 2022 03:58:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198949
IP address blocks: 2a00:9380::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 488389794 (0x1d1c3ca2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed3141220968d0ae44045e6836999928eca864b8
Validity
Not Before: Jan 1 03:58:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d9eec8b3994abea9d759dfd07ec94247518c7bf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2a:4f:65:99:4e:2b:1a:4b:55:e7:fc:52:c4:
e6:9a:5f:ac:9b:9d:e1:86:7d:af:cf:7c:bd:1b:66:
b3:d0:48:17:1e:67:87:0d:89:73:67:65:e0:2c:94:
11:a3:b0:b2:7e:7b:73:54:ea:55:39:dc:86:23:15:
f7:92:1d:2c:8b:50:6b:0d:b4:8c:02:91:e8:26:25:
46:bc:b4:56:bc:0f:5d:1a:d5:de:f3:2f:10:f7:7b:
6c:3e:e0:e6:0e:66:8f:7c:de:9a:25:84:c0:68:c4:
60:4b:1e:3b:62:bc:fd:fb:21:b5:cd:14:97:1b:39:
a8:7d:21:27:c4:77:03:92:6e:fb:a2:b1:39:79:3f:
d0:9a:3a:69:c5:74:42:d0:04:9f:9f:09:a4:53:77:
f4:35:02:98:2e:09:47:c6:26:af:62:9c:b6:75:ad:
e9:eb:43:d4:26:03:ef:8b:21:a7:9f:2a:fc:c6:21:
2d:57:22:c7:e8:79:5c:fa:11:e1:cc:4d:f2:75:13:
b3:31:6d:bd:12:bc:3e:85:54:60:0b:cf:98:ec:2f:
de:4d:25:25:7f:b5:79:79:d1:33:c9:19:b4:72:91:
60:fc:e0:18:38:a5:e9:15:f6:28:dd:6a:fd:c0:1b:
45:0c:bc:d3:a2:19:1b:48:16:13:a3:ba:c9:fb:2f:
4c:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:EE:C8:B3:99:4A:BE:A9:D7:59:DF:D0:7E:C9:42:47:51:8C:7B:F9
X509v3 Authority Key Identifier:
keyid:ED:31:41:22:09:68:D0:AE:44:04:5E:68:36:99:99:28:EC:A8:64:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7TFBIglo0K5EBF5oNpmZKOyoZLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/4609ad-0b95-40e4-b053-ad5d53699dd8/1/2e7Is5lKvqnXWd_QfslCR1GMe_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/4609ad-0b95-40e4-b053-ad5d53699dd8/1/7TFBIglo0K5EBF5oNpmZKOyoZLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:9380::/32
Signature Algorithm: sha256WithRSAEncryption
8d:89:2a:51:e1:cb:69:14:6e:a7:46:d5:7f:42:92:76:43:1e:
c8:69:9d:e9:14:a0:b3:81:1b:07:c2:a4:3e:59:b8:49:f7:f3:
c6:60:f1:ad:c4:a9:e9:40:4c:06:39:86:3c:71:26:02:07:2c:
fa:82:8e:ef:b6:d7:b3:15:5c:52:9d:6c:f8:73:af:4a:c8:1a:
8f:c4:d6:b9:49:9a:e2:d7:9e:5f:83:94:a8:70:5a:b7:af:ff:
b1:4e:f9:ba:43:b3:28:0e:11:29:cd:f4:88:bb:25:a5:0f:95:
e6:7f:a5:a0:e4:cf:64:b3:db:a9:91:ae:13:de:08:d1:dc:d0:
40:71:84:08:2a:9d:56:84:54:7f:82:f7:d9:15:08:69:0c:9a:
f2:08:78:62:c3:4c:92:ab:88:1b:98:46:d4:fd:90:ce:1a:4c:
32:69:ae:7d:a6:88:28:bd:5b:4c:54:9d:af:29:18:87:66:ad:
bf:cf:41:79:84:c5:9c:f4:4b:2c:a2:70:14:28:7d:16:2b:01:
d3:07:c5:33:f1:61:94:e9:c8:e6:08:be:bc:e0:2e:b1:c0:db:
ac:69:03:05:3c:b6:03:fd:01:0c:04:26:bc:09:73:4e:5b:38:
66:33:b8:ad:3f:7d:cb:ae:2e:b3:1d:3f:a8:79:04:4e:a6:6a:
67:8e:12:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:29 2023 by rpki-client on console-fra.rpki-client.org