Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/df84a7-72c9-4a2f-8115-afbdbdad58a5/1/Pfo4eHRzbNHA3nRhfO-HnmLDEJ0.roa
File: Pfo4eHRzbNHA3nRhfO-HnmLDEJ0.roa (raw, json)
Hash identifier: HuePstWJBw7OmXWMToa5NNIqtdyYUO7z4aRg4sSuYNQ=
Subject key identifier: 3D:FA:38:78:74:73:6C:D1:C0:DE:74:61:7C:EF:87:9E:62:C3:10:9D
Certificate issuer: /CN=b194f0304eedd363c6622fd91c59b10871aa3044
Certificate serial: 0E97C01A
Authority key identifier: B1:94:F0:30:4E:ED:D3:63:C6:62:2F:D9:1C:59:B1:08:71:AA:30:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sZTwME7t02PGYi_ZHFmxCHGqMEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/df84a7-72c9-4a2f-8115-afbdbdad58a5/1/Pfo4eHRzbNHA3nRhfO-HnmLDEJ0.roa
Signing time: Sat 01 Jan 2022 13:01:47 +0000
ROA not before: Sat 01 Jan 2022 13:01:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57685
IP address blocks: 2a06:4a80::/32 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 244826138 (0xe97c01a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b194f0304eedd363c6622fd91c59b10871aa3044
Validity
Not Before: Jan 1 13:01:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3dfa387874736cd1c0de74617cef879e62c3109d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1f:1f:59:33:80:a7:91:a3:a0:aa:ba:59:4d:
60:14:07:e3:3f:85:3e:71:b1:d0:44:35:63:b8:60:
98:73:b1:91:5d:1c:40:09:cb:68:58:a1:2f:a8:22:
6c:3f:55:5a:0b:23:20:d3:e5:92:48:3f:03:2b:8f:
ba:c3:0f:86:57:ae:f2:22:8b:35:36:7f:16:31:b1:
f8:a0:6c:c2:ff:76:16:1b:56:d8:0a:b4:80:70:a6:
8a:64:80:95:2a:80:c4:fa:e0:33:37:ca:f7:42:5c:
1c:ec:48:df:e4:4e:c4:6b:15:c2:34:19:f8:46:89:
f9:0e:5b:00:26:f1:f8:46:6e:e0:c0:69:a0:b8:24:
2d:03:72:ee:ae:8c:0a:9f:d9:cd:e3:b9:bd:03:14:
d0:e6:1e:f9:9c:ad:b0:b2:83:81:34:5a:ee:3e:01:
b3:41:cd:4f:31:01:e2:b4:8f:c8:d4:ff:09:33:32:
ee:8a:fd:e6:61:b1:dc:9a:da:66:a7:b5:e6:e5:91:
59:1f:18:51:87:68:ec:40:20:44:ec:cd:d8:08:0b:
d9:92:74:e9:02:d5:8b:3d:2a:46:60:9c:cc:04:f2:
f5:81:6e:86:e8:fc:fd:68:79:9a:93:c0:eb:4c:cc:
8f:c3:64:be:55:68:c0:e6:6d:d5:21:14:44:89:e6:
11:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:FA:38:78:74:73:6C:D1:C0:DE:74:61:7C:EF:87:9E:62:C3:10:9D
X509v3 Authority Key Identifier:
keyid:B1:94:F0:30:4E:ED:D3:63:C6:62:2F:D9:1C:59:B1:08:71:AA:30:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sZTwME7t02PGYi_ZHFmxCHGqMEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/df84a7-72c9-4a2f-8115-afbdbdad58a5/1/Pfo4eHRzbNHA3nRhfO-HnmLDEJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/df84a7-72c9-4a2f-8115-afbdbdad58a5/1/sZTwME7t02PGYi_ZHFmxCHGqMEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:4a80::/32
Signature Algorithm: sha256WithRSAEncryption
88:bd:64:49:b7:48:36:c4:50:44:72:b9:b0:87:41:6f:be:23:
67:99:84:72:f7:d1:a1:89:1f:60:e5:2a:96:03:79:23:e9:c8:
ec:3a:37:5e:54:60:06:58:78:3d:b8:fe:aa:d6:0c:23:9e:c1:
0f:82:d9:75:75:04:a8:cb:aa:31:ec:84:67:af:63:1e:40:5d:
b8:a5:62:ea:04:94:ec:80:04:a3:9b:95:f1:22:89:fb:8c:10:
1b:b3:e7:c4:cf:27:75:09:fa:de:dd:1a:65:c0:f9:4b:a1:ac:
6b:52:db:40:48:09:d3:64:8c:3a:58:b4:ce:37:d2:13:d6:88:
23:6a:5c:bc:fd:e8:1d:2e:1d:43:59:b1:58:ed:3c:6e:74:2e:
16:f0:7d:7e:8f:4c:62:77:30:57:85:fb:66:00:a8:92:91:6c:
e1:45:13:43:c6:d2:0d:28:53:1e:e0:d4:43:d0:84:e6:0b:5a:
88:4c:84:58:7b:c5:c6:0e:fe:67:85:78:ed:a2:78:17:55:be:
9a:2f:cd:ca:20:6a:c0:d4:0a:62:aa:d0:f9:62:b6:8b:af:09:
d4:79:21:a6:4c:88:37:fc:ac:cf:88:3f:2b:5f:6f:fd:52:e3:
ad:31:9d:99:25:37:c1:a1:56:93:0c:44:7a:81:e9:a1:c3:f9:
2f:3c:6a:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:02 2024 by rpki-client on console-fra.rpki-client.org