Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/fO2esttBUEnkYvU6B554La1ZEkA.roa
File: fO2esttBUEnkYvU6B554La1ZEkA.roa (raw, json)
Hash identifier: hwIGayJAVAEKozoHCojAQSv/pnyZOb0xVRBHBo7TpRU=
Subject key identifier: 7C:ED:9E:B2:DB:41:50:49:E4:62:F5:3A:07:9E:78:2D:AD:59:12:40
Certificate issuer: /CN=8f2824c61357dc344bbdf35b83577459b9d3fc44
Certificate serial: 02E2E8E5
Authority key identifier: 8F:28:24:C6:13:57:DC:34:4B:BD:F3:5B:83:57:74:59:B9:D3:FC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jygkxhNX3DRLvfNbg1d0WbnT_EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/fO2esttBUEnkYvU6B554La1ZEkA.roa
Signing time: Sat 01 Jan 2022 14:59:20 +0000
ROA not before: Sat 01 Jan 2022 14:59:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31004
IP address blocks: 2a00:4bc0:2000::/44 maxlen: 56
2a00:4bc0:2100::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48425189 (0x2e2e8e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f2824c61357dc344bbdf35b83577459b9d3fc44
Validity
Not Before: Jan 1 14:59:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ced9eb2db415049e462f53a079e782dad591240
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:a4:54:f7:f9:d6:13:53:77:6c:f3:59:ca:cc:
78:1e:b6:c6:28:48:1b:bc:3b:86:08:01:ca:eb:16:
fd:0d:16:c4:4b:64:60:58:3f:42:a3:2c:5c:3e:0a:
64:96:7d:de:8f:d6:8e:7b:f9:76:b2:41:61:ec:27:
99:b6:bb:93:08:1e:c9:ff:c5:05:33:12:ef:a2:16:
97:29:bd:be:83:72:a0:bf:82:17:cf:ac:a6:0b:26:
9d:82:96:15:11:a1:0a:f5:67:23:71:26:1f:ee:14:
f2:39:df:3c:9f:26:44:46:6c:a0:90:67:ef:4a:c6:
9c:16:be:b9:52:d1:1d:68:ce:6f:76:c6:da:27:00:
62:06:2d:ca:b0:c0:09:79:ac:5e:81:dc:f3:45:a5:
c3:b3:7c:9f:ed:45:fe:27:9c:00:7a:b4:ad:3f:0a:
71:db:b6:22:ab:0b:20:f4:16:7c:d2:b3:db:05:98:
6c:fa:75:a4:54:e3:fc:9c:56:63:a7:17:a8:b1:2c:
61:3f:e7:e0:1f:c6:dc:36:9f:c7:1b:78:db:39:3e:
5d:20:71:e9:4c:e1:31:81:3d:a1:1d:55:38:c0:d1:
23:34:2b:26:09:36:04:13:36:ab:84:6a:59:9b:1e:
06:db:38:16:14:a8:24:58:63:ef:94:96:7a:f5:49:
31:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:ED:9E:B2:DB:41:50:49:E4:62:F5:3A:07:9E:78:2D:AD:59:12:40
X509v3 Authority Key Identifier:
keyid:8F:28:24:C6:13:57:DC:34:4B:BD:F3:5B:83:57:74:59:B9:D3:FC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jygkxhNX3DRLvfNbg1d0WbnT_EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/fO2esttBUEnkYvU6B554La1ZEkA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/jygkxhNX3DRLvfNbg1d0WbnT_EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:4bc0:2000::/44
2a00:4bc0:2100::/40
Signature Algorithm: sha256WithRSAEncryption
20:71:66:eb:2f:3e:c2:56:2a:20:aa:80:b8:48:92:97:61:15:
89:bb:c0:90:07:05:d2:9c:3c:a8:57:41:45:eb:d0:61:92:bf:
81:5f:0a:1d:74:50:35:d4:f7:53:cb:09:b8:db:fb:82:d9:8d:
49:e5:02:bd:3e:37:17:b2:c1:48:f4:4e:f8:f7:bb:53:70:46:
43:fb:a8:62:d8:f5:e3:74:c6:3f:73:5f:97:78:b4:a7:85:fb:
31:f2:75:aa:67:f7:19:e5:8a:36:54:92:af:71:03:54:6b:06:
88:df:4e:db:30:ec:ae:d9:79:7c:32:87:55:8e:65:ce:1d:64:
7c:e6:e1:8f:01:31:97:a4:10:fb:44:44:44:17:c0:01:be:dd:
9d:72:dc:d5:99:fd:44:a5:08:4f:f4:82:ea:e8:84:32:4f:ed:
c5:47:99:88:0e:b1:d7:bb:81:d3:55:83:bb:95:2b:4f:8d:bd:
c4:81:6e:6e:be:04:fa:c6:07:e8:af:72:69:36:54:d5:d0:93:
53:0e:9d:b2:4b:24:7d:7a:b4:f3:c2:fe:fd:65:1c:96:c1:5c:
e0:dd:06:d5:2b:99:61:06:af:da:70:66:59:29:d4:81:a8:95:
b9:05:c6:67:90:d2:f9:15:7e:ac:f6:ba:e1:d6:02:dd:ba:1a:
19:6d:9f:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:20 2024 by rpki-client on console-ams.rpki-client.org