Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/cf3ca3-1cd7-4312-ba73-83c8596229fa/1/3flJL_2m-f-ZkeOppmEYIE_kv08.roa
File: 3flJL_2m-f-ZkeOppmEYIE_kv08.roa (raw, json)
Hash identifier: fkULOiWHw1xLmw5p2CiYAOKYU9kC0eWKtRVsFpeNKlw=
Subject key identifier: DD:F9:49:2F:FD:A6:F9:FF:99:91:E3:A9:A6:61:18:20:4F:E4:BF:4F
Certificate issuer: /CN=d24f497d157847005336b777361b1d20905c5213
Certificate serial: 0919521D
Authority key identifier: D2:4F:49:7D:15:78:47:00:53:36:B7:77:36:1B:1D:20:90:5C:52:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0k9JfRV4RwBTNrd3NhsdIJBcUhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/cf3ca3-1cd7-4312-ba73-83c8596229fa/1/3flJL_2m-f-ZkeOppmEYIE_kv08.roa
Signing time: Sun 22 May 2022 00:33:29 +0000
ROA not before: Sun 22 May 2022 00:33:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212985
IP address blocks: 2a0e:9b43::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152654365 (0x919521d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d24f497d157847005336b777361b1d20905c5213
Validity
Not Before: May 22 00:33:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ddf9492ffda6f9ff9991e3a9a66118204fe4bf4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:48:7d:6b:e9:4e:cf:dd:3e:3a:32:82:66:14:
56:e0:47:59:c3:85:1e:ae:70:b6:d3:64:2f:4f:71:
ae:b7:21:97:0b:43:61:58:6c:dd:82:ab:91:57:c6:
27:3b:5e:2f:88:f0:03:5b:4d:52:04:e3:de:56:e1:
97:f7:63:e5:61:86:44:1c:95:8f:d8:66:ef:ee:16:
ba:0b:a0:cb:b5:7b:0d:22:8c:89:1a:15:ca:31:5e:
78:3e:6a:a3:53:19:f7:fd:5c:e8:6c:a5:b0:7b:c8:
1c:3b:e5:1d:e0:3b:df:eb:12:e2:35:cf:25:a9:89:
f7:68:06:be:e5:d9:c4:8b:d0:ac:df:4b:4c:cb:e0:
4c:37:9b:80:3c:dc:9e:d2:3d:40:5f:49:a3:b8:4e:
41:82:6d:31:c5:f3:66:03:b4:ed:d9:db:58:57:e0:
7d:d6:3c:76:95:83:0b:17:e6:fd:f0:98:44:77:6e:
a7:88:93:a8:f0:65:08:21:9f:65:3a:f2:d3:5f:4f:
1e:95:ec:67:b5:0b:42:2b:90:76:b7:aa:8b:bb:7a:
e3:65:3c:05:fe:4f:28:40:77:15:eb:6c:c8:20:4e:
45:d4:f7:c5:ed:a9:31:0f:8d:df:68:6f:d7:5f:1a:
17:cb:98:43:dc:04:b2:17:8d:59:2c:b6:f8:10:24:
9f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:F9:49:2F:FD:A6:F9:FF:99:91:E3:A9:A6:61:18:20:4F:E4:BF:4F
X509v3 Authority Key Identifier:
keyid:D2:4F:49:7D:15:78:47:00:53:36:B7:77:36:1B:1D:20:90:5C:52:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0k9JfRV4RwBTNrd3NhsdIJBcUhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/cf3ca3-1cd7-4312-ba73-83c8596229fa/1/3flJL_2m-f-ZkeOppmEYIE_kv08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/cf3ca3-1cd7-4312-ba73-83c8596229fa/1/0k9JfRV4RwBTNrd3NhsdIJBcUhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:9b43::/32
Signature Algorithm: sha256WithRSAEncryption
7b:64:81:b0:b8:75:91:ba:fc:d1:65:55:2c:b6:96:b9:64:b2:
0f:96:e8:a7:99:68:50:09:d0:fc:ff:24:48:97:5a:b3:a6:31:
9d:f3:bc:1d:73:36:20:cf:a2:ce:2a:1b:ac:1c:0c:b3:d6:82:
eb:ff:64:a1:00:1c:62:de:4a:4a:0c:44:36:dc:f0:e5:b6:85:
2f:5a:a8:b7:e9:1b:28:50:d0:b4:aa:bc:c1:f5:8a:51:48:63:
fb:ac:77:f9:d0:53:08:a9:86:32:58:ca:e3:08:4d:52:da:98:
3c:b6:8c:77:bc:13:9c:9b:1e:34:13:91:a1:3c:92:c4:4f:60:
06:94:44:aa:9e:60:78:00:3e:1b:4f:ac:d7:25:6b:2c:b0:3a:
00:43:25:d4:f1:fe:4f:92:61:27:e8:af:13:64:8a:93:11:57:
1d:f4:21:00:95:2c:ea:25:35:64:36:e8:33:ab:79:43:80:6c:
2e:55:73:1b:68:8e:78:eb:f3:a5:5a:d6:00:24:d1:f0:f9:13:
25:6b:51:22:08:aa:8f:34:02:6c:31:38:48:56:14:88:d5:ff:
c9:20:b0:81:2f:bf:a4:f3:5c:3f:e8:19:32:3f:59:8e:d4:59:
d6:b5:1d:d9:45:6d:14:d6:78:87:e1:44:c9:96:68:ba:c0:59:
7e:d1:35:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:40 2023 by rpki-client on console-fra.rpki-client.org