Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/ac1GVdijmR1XQlr_F73wKBfhUuw.roa
File: ac1GVdijmR1XQlr_F73wKBfhUuw.roa (raw, json)
Hash identifier: tK6KGczIj3B66hUToRoZZWFqSrp9ux79RlZo/+Da2nY=
Subject key identifier: 69:CD:46:55:D8:A3:99:1D:57:42:5A:FF:17:BD:F0:28:17:E1:52:EC
Certificate issuer: /CN=07d44a52778aa65f736e72436003f6654f268318
Certificate serial: 0EED819A
Authority key identifier: 07:D4:4A:52:77:8A:A6:5F:73:6E:72:43:60:03:F6:65:4F:26:83:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9RKUneKpl9zbnJDYAP2ZU8mgxg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/ac1GVdijmR1XQlr_F73wKBfhUuw.roa
Signing time: Sat 01 Jan 2022 14:06:31 +0000
ROA not before: Sat 01 Jan 2022 14:06:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12303
IP address blocks: 2001:738:4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 250446234 (0xeed819a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07d44a52778aa65f736e72436003f6654f268318
Validity
Not Before: Jan 1 14:06:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69cd4655d8a3991d57425aff17bdf02817e152ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b6:29:91:17:0d:4f:f4:f1:2b:38:81:0f:72:
29:63:9c:08:e4:cc:39:a2:2c:4f:93:ba:48:66:26:
fe:d4:c6:92:2e:22:7e:8e:15:57:5d:6b:75:c3:d9:
2d:f3:fe:bc:57:51:ed:87:0a:f9:49:58:80:aa:1d:
66:d1:ed:a4:aa:34:9f:d6:fe:fd:f3:76:f9:6f:5c:
45:ee:36:d1:cb:51:dd:cb:47:a4:69:be:23:da:4b:
93:d1:f6:40:15:65:a9:60:5e:d0:9b:c3:04:10:8b:
b3:e7:e4:9d:8b:a1:db:99:6c:52:b8:27:1c:01:15:
04:9f:d2:aa:30:df:d2:53:7f:84:e5:21:22:98:80:
9d:4e:3d:8e:ae:4e:4d:3a:1a:99:49:03:41:4a:3f:
1e:34:a6:2b:b4:f8:d1:3a:60:ea:c2:ff:98:ff:35:
e9:db:36:9f:00:1e:a1:5e:0f:e1:a2:d0:67:0d:08:
0a:5a:62:13:91:a7:9c:c0:49:87:f6:c7:bd:61:59:
c0:ff:ad:1f:99:84:9e:ad:bf:ec:0b:c7:d0:da:cd:
29:66:18:92:54:ef:cb:64:ca:b7:8c:04:b8:6f:0b:
d4:5a:10:60:91:a1:af:45:4e:50:ee:cb:4d:5f:0e:
0a:32:25:20:4a:a5:ea:09:c4:d4:2a:f7:ac:5d:50:
17:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:CD:46:55:D8:A3:99:1D:57:42:5A:FF:17:BD:F0:28:17:E1:52:EC
X509v3 Authority Key Identifier:
keyid:07:D4:4A:52:77:8A:A6:5F:73:6E:72:43:60:03:F6:65:4F:26:83:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9RKUneKpl9zbnJDYAP2ZU8mgxg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/ac1GVdijmR1XQlr_F73wKBfhUuw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/B9RKUneKpl9zbnJDYAP2ZU8mgxg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:738:4::/48
Signature Algorithm: sha256WithRSAEncryption
a3:59:11:47:a6:d8:1b:ae:32:1a:64:25:c9:13:78:41:c6:60:
a7:ca:77:e5:14:8d:ff:90:72:f4:ca:55:2b:7d:96:8d:4d:4a:
da:91:ac:6b:1c:a5:d4:c0:29:a6:2e:af:50:73:14:0b:ab:67:
89:98:10:e0:d9:86:8f:62:6b:91:a7:db:76:2c:d5:22:a2:4b:
28:ed:9e:55:c3:c3:84:35:12:f6:7e:b0:f7:2f:d1:b0:a9:05:
fc:c7:41:08:6b:aa:b9:fa:00:26:1d:47:ec:31:e4:61:27:cb:
ce:d5:f7:13:8a:aa:11:92:c9:5b:1d:51:38:88:0a:a3:76:e3:
42:cc:dc:9f:0f:e3:60:a2:bb:11:20:9b:83:33:b3:70:92:d6:
12:c7:77:94:43:be:34:74:e2:84:68:86:a0:41:91:0f:0d:e9:
ce:c7:c0:54:61:2d:3a:3a:18:c6:8d:af:a3:82:c3:f4:8a:53:
44:c7:09:7a:c4:d7:6a:b4:09:62:75:17:45:3e:75:72:13:c1:
93:b7:b9:06:79:e2:b2:7b:e8:62:24:47:36:34:fd:80:04:21:
4c:e2:74:47:81:a0:f4:5a:fb:48:04:f1:1b:e3:de:87:0e:f6:
a0:8c:1c:94:ad:47:51:a1:ac:43:ff:b6:1b:3c:94:3d:4e:96:
43:fc:d5:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:14 2024 by rpki-client on console-ams.rpki-client.org