Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/Z4i0SACq_z2G3gGnbyqIvnuzqTY.roa
File: Z4i0SACq_z2G3gGnbyqIvnuzqTY.roa (raw, json)
Hash identifier: tprCSL9pzZpG70WCEHsMdT1fNGmNXECPz75xLeJoD+k=
Subject key identifier: 67:88:B4:48:00:AA:FF:3D:86:DE:01:A7:6F:2A:88:BE:7B:B3:A9:36
Certificate issuer: /CN=fbac50f19d9930aeec09cd27f508fc502ea14d1f
Certificate serial: 06F0184D
Authority key identifier: FB:AC:50:F1:9D:99:30:AE:EC:09:CD:27:F5:08:FC:50:2E:A1:4D:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/Z4i0SACq_z2G3gGnbyqIvnuzqTY.roa
Signing time: Fri 27 May 2022 13:43:13 +0000
ROA not before: Fri 27 May 2022 13:43:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205723
IP address blocks: 2a0a:4540:2000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116398157 (0x6f0184d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbac50f19d9930aeec09cd27f508fc502ea14d1f
Validity
Not Before: May 27 13:43:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6788b44800aaff3d86de01a76f2a88be7bb3a936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c3:79:3e:c0:3a:76:1b:54:09:c2:ce:af:c2:
a7:25:33:6a:6f:1c:83:55:df:33:25:60:09:3c:51:
27:69:91:6b:24:54:7b:b9:58:b3:40:2e:99:0c:ef:
28:9a:4c:e6:13:e1:c2:c8:d1:41:6c:76:f7:78:6f:
a5:6b:9d:6d:d2:66:43:d2:c2:57:e4:a1:c6:03:b6:
07:8b:94:68:3a:3e:46:39:78:1b:17:57:74:3f:45:
bd:5f:f9:bf:20:f3:04:02:60:10:44:56:09:42:20:
c0:2d:3c:41:47:ec:9d:82:54:3c:47:97:57:d7:1a:
a1:8c:17:c6:f7:ec:48:65:b0:54:e9:0d:1d:31:52:
45:96:ef:fd:19:64:18:5d:66:a1:8a:33:e2:d7:e9:
ed:2e:fc:d0:d7:c4:aa:47:9f:0e:e7:84:7d:ce:18:
27:9c:ae:9a:12:df:aa:19:42:ac:41:4f:44:f3:a7:
d1:bd:00:c6:f9:bc:af:13:7a:57:c8:d2:12:97:93:
aa:cc:f3:2b:e1:27:3e:e9:59:a8:4a:3f:30:6e:ca:
b0:40:ab:f5:64:f1:ec:1e:19:ba:40:f4:a3:bc:be:
c5:e9:28:59:11:aa:0a:45:90:c3:a6:cf:45:45:08:
26:a1:c0:9b:55:ff:d5:11:68:bb:a9:fc:5c:f4:ba:
de:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:88:B4:48:00:AA:FF:3D:86:DE:01:A7:6F:2A:88:BE:7B:B3:A9:36
X509v3 Authority Key Identifier:
keyid:FB:AC:50:F1:9D:99:30:AE:EC:09:CD:27:F5:08:FC:50:2E:A1:4D:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/Z4i0SACq_z2G3gGnbyqIvnuzqTY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:4540:2000::/48
Signature Algorithm: sha256WithRSAEncryption
4f:3b:a1:a6:22:1e:7f:6c:a7:72:7f:a2:03:dc:07:18:35:90:
d9:bb:84:06:66:f3:5d:ac:3e:26:09:f7:85:2d:e4:62:24:97:
d6:75:0d:ed:a2:ea:cd:1c:fd:4a:76:14:f5:66:ed:7a:95:89:
a2:86:19:ba:7d:cb:c9:a5:98:c9:5b:a3:17:9f:53:28:00:1e:
07:47:d8:e8:87:ea:d7:86:1f:54:69:40:fa:26:51:57:a7:88:
cd:32:0b:42:fc:4f:01:bf:98:6f:53:55:c0:1d:46:96:de:5e:
81:62:47:51:cc:60:fb:3e:b1:2f:d7:be:91:f7:8d:45:1a:87:
ea:e2:04:d2:bf:92:2c:12:d3:fe:82:e5:23:45:3a:c6:5d:d2:
d8:17:17:d2:8b:10:db:55:f9:ab:f7:b6:a7:30:64:71:86:f8:
11:c0:dd:d1:3e:a7:e5:d5:35:86:d4:cf:7a:94:cb:1d:e4:8b:
66:f7:5c:33:56:ab:f9:8d:4f:e2:a9:0c:21:92:44:d4:6a:39:
24:a5:d9:14:9f:07:13:9c:8b:4e:e2:89:bf:6a:64:86:e2:ef:
cd:c1:ed:5b:8c:4f:b8:74:d9:99:42:49:64:15:56:39:23:8e:
98:5b:9c:b9:5f:bf:d9:18:02:60:99:0c:ba:05:5c:43:c3:03:
17:ab:98:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:15 2024 by rpki-client on console-ams.rpki-client.org