Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/ZUSkOWjGApiQ17Xo1MBB1On1WgE.roa
File: ZUSkOWjGApiQ17Xo1MBB1On1WgE.roa (raw, json)
Hash identifier: C35k4yH5I4ukO2LmmP8SmLpU7AlqaWJd7YkGGDFjRK8=
Subject key identifier: 65:44:A4:39:68:C6:02:98:90:D7:B5:E8:D4:C0:41:D4:E9:F5:5A:01
Certificate issuer: /CN=fbac50f19d9930aeec09cd27f508fc502ea14d1f
Certificate serial: 05911A2B
Authority key identifier: FB:AC:50:F1:9D:99:30:AE:EC:09:CD:27:F5:08:FC:50:2E:A1:4D:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/ZUSkOWjGApiQ17Xo1MBB1On1WgE.roa
Signing time: Sat 01 Jan 2022 04:53:07 +0000
ROA not before: Sat 01 Jan 2022 04:53:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208166
IP address blocks: 2a0a:4540:13::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93395499 (0x5911a2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbac50f19d9930aeec09cd27f508fc502ea14d1f
Validity
Not Before: Jan 1 04:53:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6544a43968c6029890d7b5e8d4c041d4e9f55a01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d6:41:f9:e4:e1:08:e5:3f:06:8a:90:25:c5:
7d:e9:ac:01:81:ec:89:7e:8a:12:86:f3:ce:69:ec:
28:9b:2d:21:32:4a:c9:e5:07:6c:ff:76:0a:01:eb:
ad:2f:22:8b:ac:78:27:71:44:87:5e:cb:8f:7f:85:
f7:20:f1:e6:95:2b:84:a6:06:46:91:bf:55:8c:fc:
45:07:af:18:05:05:88:28:fc:38:46:43:6b:34:ad:
52:29:0c:9e:8b:a0:57:31:7e:8a:3a:4c:51:18:3c:
69:18:2e:d9:3e:ac:ae:e3:81:b8:22:22:c6:dd:8f:
11:e2:0b:ca:6e:05:ce:0d:8a:89:e2:19:f7:a5:62:
d1:22:18:1f:5d:36:a1:23:3c:85:be:f4:5e:55:e0:
4d:5d:43:ea:93:4e:6e:ce:6a:1d:cc:4d:d5:01:ef:
b4:c1:27:98:49:2e:b4:6f:1a:05:d4:dc:ba:f7:55:
aa:cb:7d:e0:ad:80:3e:25:be:6e:51:8a:89:2e:11:
eb:bd:ac:24:74:53:29:f4:67:04:b3:4a:bd:53:76:
fa:1b:59:ec:c7:bb:b1:6f:ca:4f:45:84:98:cc:55:
9d:7d:0f:c7:3f:bd:99:82:27:e6:40:6a:9a:48:83:
0c:6e:65:9a:f4:9e:a3:25:1d:f3:73:c1:3a:f4:53:
b0:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:44:A4:39:68:C6:02:98:90:D7:B5:E8:D4:C0:41:D4:E9:F5:5A:01
X509v3 Authority Key Identifier:
keyid:FB:AC:50:F1:9D:99:30:AE:EC:09:CD:27:F5:08:FC:50:2E:A1:4D:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/ZUSkOWjGApiQ17Xo1MBB1On1WgE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:4540:13::/48
Signature Algorithm: sha256WithRSAEncryption
a0:a5:90:86:c9:57:3b:da:08:fe:f2:84:b8:d2:7a:29:fb:c3:
c6:22:9b:de:8f:63:d3:7b:da:e8:1f:8b:11:9e:31:03:b4:e5:
42:1f:9c:c7:4f:65:43:43:d9:85:2d:7d:50:7d:38:ff:b6:9a:
e0:27:73:60:d1:a5:30:d9:99:a3:91:65:50:94:5e:2c:05:43:
e5:28:61:b8:82:28:ed:74:41:a6:df:95:aa:e1:bb:d1:1b:e4:
46:12:5d:91:6c:f7:b6:ba:32:2d:d3:4f:51:c3:8d:b7:23:c4:
17:cc:80:0d:e3:81:d2:1d:98:76:ef:ec:e9:33:01:af:d3:48:
b4:a4:29:51:18:1f:42:64:d8:7b:0a:76:9b:0b:85:02:5d:d4:
76:46:3f:99:02:f5:5c:e8:3f:8a:18:e9:50:e1:4a:cb:63:8e:
93:fb:a6:1c:05:0d:31:ff:5e:39:f7:70:97:80:0b:c9:84:be:
63:ae:37:7e:73:ad:b0:95:e9:d6:35:3d:45:88:b5:83:1f:20:
ad:a7:f1:38:45:14:2a:5d:48:d3:99:b5:15:6d:a4:37:ff:17:
f8:be:a1:9d:24:b4:ad:f8:76:11:da:35:57:4d:52:07:82:ab:
5f:7e:c1:e6:c1:fe:9f:4d:63:f8:f1:91:70:db:c3:98:21:11:
74:54:fc:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:55 2024 by rpki-client on console-fra.rpki-client.org