Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/tDvP52TzYQrdgZrbBwZGDUuWcj0.roa
File: tDvP52TzYQrdgZrbBwZGDUuWcj0.roa (raw, json)
Hash identifier: KtnYryIYygofn3Jcx0sHaKOfGweMBzBYwQwKqDNNw9I=
Subject key identifier: B4:3B:CF:E7:64:F3:61:0A:DD:81:9A:DB:07:06:46:0D:4B:96:72:3D
Certificate issuer: /CN=fbac50f19d9930aeec09cd27f508fc502ea14d1f
Certificate serial: 06E2C898
Authority key identifier: FB:AC:50:F1:9D:99:30:AE:EC:09:CD:27:F5:08:FC:50:2E:A1:4D:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/tDvP52TzYQrdgZrbBwZGDUuWcj0.roa
Signing time: Wed 25 May 2022 06:16:13 +0000
ROA not before: Wed 25 May 2022 06:16:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205723
IP address blocks: 2a0a:4540:2000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115525784 (0x6e2c898)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbac50f19d9930aeec09cd27f508fc502ea14d1f
Validity
Not Before: May 25 06:16:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b43bcfe764f3610add819adb0706460d4b96723d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e0:3c:2c:c6:e3:20:ef:67:9b:3e:95:d7:2a:
01:95:f1:09:b0:59:5f:aa:65:c2:cd:84:ce:fe:39:
32:a7:19:78:ea:6a:9d:ea:05:51:e6:e3:75:73:51:
39:e3:be:a3:5e:69:c8:1d:97:3a:ed:33:32:1f:ad:
e1:ed:db:db:ea:b3:fb:df:74:28:ce:66:7e:e0:f5:
fa:b7:81:2d:78:90:e6:cb:7b:5f:54:63:ec:2c:3a:
0d:2d:15:b7:8b:f1:fd:74:b0:f7:70:99:55:4f:e2:
84:d9:02:45:3e:c4:7b:23:8a:7c:8f:b5:b5:0d:fc:
3f:a3:99:5a:b8:c2:c8:e7:f5:f6:d7:d6:95:30:c1:
71:8d:a8:12:39:18:1d:e4:0e:aa:ca:76:ae:34:9a:
74:ab:0e:e5:1c:d8:5f:cf:b5:15:ef:db:aa:54:6a:
97:9e:1a:ec:a4:00:be:95:a4:04:f6:4b:9e:82:a4:
55:87:b1:71:7e:c2:7c:3e:3b:fa:63:80:50:6f:51:
12:20:a0:fe:ac:d3:0c:57:65:48:13:5a:6a:ca:67:
63:a9:8d:d8:97:fd:cf:57:51:4c:10:1b:d2:81:53:
a5:2c:09:9e:1a:59:11:57:26:54:0c:4e:14:99:a6:
29:08:cd:59:79:7f:c3:e4:71:f6:69:7d:4e:9c:ac:
f8:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:3B:CF:E7:64:F3:61:0A:DD:81:9A:DB:07:06:46:0D:4B:96:72:3D
X509v3 Authority Key Identifier:
keyid:FB:AC:50:F1:9D:99:30:AE:EC:09:CD:27:F5:08:FC:50:2E:A1:4D:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/tDvP52TzYQrdgZrbBwZGDUuWcj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:4540:2000::/48
Signature Algorithm: sha256WithRSAEncryption
51:de:2b:0c:aa:97:e3:34:d1:c2:dc:d9:b6:fa:11:ec:0e:b7:
43:c6:b3:09:f7:6c:8e:d9:01:d2:57:9f:88:7a:b8:64:79:c3:
b3:53:5a:57:69:38:df:40:b1:39:29:c2:28:7f:1d:5c:2d:b6:
83:10:b3:57:3f:c9:ce:df:64:eb:51:0b:f5:f5:13:f3:78:10:
27:d8:3a:6d:eb:0b:e5:2a:af:1f:e8:fd:1b:9f:d2:fe:f4:27:
5c:fd:bb:08:d4:3e:92:e7:f8:66:cd:5a:b1:74:a4:23:99:60:
22:40:79:df:72:07:ff:dc:4e:cf:42:a1:b4:4a:f0:ba:57:f0:
2e:1e:38:a0:34:3a:41:0c:e5:94:d5:99:69:77:bf:c0:60:ab:
88:51:76:50:57:16:1d:68:3e:cf:69:1d:52:ad:38:c7:0d:2e:
26:a6:75:bf:de:c0:89:df:90:04:a5:95:1d:b4:59:4b:39:c0:
ff:f2:1e:b0:d4:81:e5:6b:cb:ad:8f:cd:a0:5c:f1:c5:76:50:
72:27:65:91:5e:13:f5:62:70:88:68:47:b9:c8:db:7e:13:92:
e5:86:a5:43:0b:16:8f:30:69:39:43:ab:be:8e:31:ba:1c:d1:
fa:03:6d:c5:d5:ab:40:20:e4:eb:95:bb:14:a2:6e:58:52:4a:
c5:a3:f7:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:55 2024 by rpki-client on console-fra.rpki-client.org