Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/9F64H2k-bEvM98g4XaBVUjfX1To.roa
File: 9F64H2k-bEvM98g4XaBVUjfX1To.roa (raw, json)
Hash identifier: c8mHf7qsc3Lh3RCOT08eErcblhYLYCLQUOL3uWHMlG0=
Subject key identifier: F4:5E:B8:1F:69:3E:6C:4B:CC:F7:C8:38:5D:A0:55:52:37:D7:D5:3A
Certificate issuer: /CN=807709e7b0efba127025c83e5d3194c71ba428c3
Certificate serial: 06E9C15B
Authority key identifier: 80:77:09:E7:B0:EF:BA:12:70:25:C8:3E:5D:31:94:C7:1B:A4:28:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gHcJ57DvuhJwJcg-XTGUxxukKMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/9F64H2k-bEvM98g4XaBVUjfX1To.roa
Signing time: Sat 01 Jan 2022 14:05:46 +0000
ROA not before: Sat 01 Jan 2022 14:05:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31078
IP address blocks: 2a0f:6040:7966::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115982683 (0x6e9c15b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=807709e7b0efba127025c83e5d3194c71ba428c3
Validity
Not Before: Jan 1 14:05:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f45eb81f693e6c4bccf7c8385da0555237d7d53a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:2c:2a:ed:7d:0f:c1:ed:7e:a0:71:85:33:81:
9f:96:6f:d4:10:9f:38:d6:94:6b:cd:c3:34:f0:de:
32:19:1f:e4:b5:5e:98:38:d9:62:de:82:f3:e6:e4:
75:40:13:5f:9d:58:95:64:da:7f:9f:01:98:8b:32:
35:ab:9c:58:ed:a0:d7:58:43:fa:72:3b:40:2f:66:
b8:64:b0:ae:88:91:74:61:7b:4b:1d:1c:58:69:21:
2e:ce:55:3d:84:e0:54:73:04:62:61:e5:e1:ed:4e:
bd:e2:d6:8d:dc:9d:e0:1f:38:51:2d:23:66:0f:b1:
66:a5:3f:ac:9b:59:53:45:6a:81:70:4e:73:bc:b6:
4b:44:db:0c:9c:6e:36:79:c9:6d:85:29:da:62:9c:
35:7a:36:32:31:9b:16:3d:56:f6:69:33:1c:8b:59:
f2:61:b2:d5:7b:01:55:10:0a:80:ac:2f:a3:0c:b4:
24:0a:49:ce:18:fd:d2:ee:57:39:b5:2c:f1:d1:21:
3d:bd:93:bf:25:86:39:37:5f:dc:97:41:9c:96:0d:
01:e5:55:66:57:86:1d:d3:d1:ca:1f:bd:ff:7a:ea:
96:4d:6f:25:8b:83:e9:70:45:06:1f:50:ce:e1:55:
37:9e:f7:1e:a5:15:32:18:56:e2:b0:04:41:23:df:
7f:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:5E:B8:1F:69:3E:6C:4B:CC:F7:C8:38:5D:A0:55:52:37:D7:D5:3A
X509v3 Authority Key Identifier:
keyid:80:77:09:E7:B0:EF:BA:12:70:25:C8:3E:5D:31:94:C7:1B:A4:28:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gHcJ57DvuhJwJcg-XTGUxxukKMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/9F64H2k-bEvM98g4XaBVUjfX1To.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/gHcJ57DvuhJwJcg-XTGUxxukKMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:6040:7966::/48
Signature Algorithm: sha256WithRSAEncryption
1e:52:75:21:cc:8d:ec:6f:dc:04:00:d2:32:42:71:da:c4:39:
c8:db:dd:a2:7f:9d:ac:ff:58:5a:6b:37:74:6e:e1:8c:f3:ef:
0d:77:3b:31:8b:05:d6:a5:ca:fa:29:49:91:12:25:15:97:24:
66:68:05:f5:80:cf:0f:b2:7a:d2:55:70:98:00:3b:7b:7e:24:
d1:a1:43:3c:dc:83:bc:70:a0:0e:84:82:09:a8:d3:5f:25:64:
5f:7a:26:45:de:41:91:19:d1:b9:66:09:a3:23:63:84:d7:37:
13:3a:c5:5e:d2:a4:8e:ed:36:e3:c3:39:8c:fa:39:b0:d2:7d:
e6:84:e6:d9:75:b7:96:10:c1:ac:08:ca:98:7c:f3:3b:f3:78:
a8:f9:69:eb:ff:cf:34:d9:1a:3b:ca:57:ed:93:a9:7b:ea:b0:
f0:f7:28:12:05:27:60:00:30:27:cf:4a:f9:fd:70:05:a4:00:
77:cd:05:85:5a:1f:64:de:fe:79:2a:b2:f4:75:a0:04:34:a5:
6e:65:a6:9f:e6:ab:b8:66:89:1c:81:ef:4e:4d:b1:47:99:4a:
f6:6e:90:6d:26:7f:43:b2:9e:d6:15:12:8a:2d:dd:28:f6:c5:
28:2f:18:d7:09:fa:a6:f4:97:ac:ca:05:f3:92:7a:63:2f:83:
8c:9f:47:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:49 2024 by rpki-client on console-fra.rpki-client.org