Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/cfac31-8356-432d-a34d-b614361196fd/1/aAJzDTkLeGzOLMwONGuwGFLhtg4.roa
File: aAJzDTkLeGzOLMwONGuwGFLhtg4.roa (raw, json)
Hash identifier: sON6KsoNXS4H13kMEXiqFnnjXZIvyu6fXbnWLMt191A=
Subject key identifier: 68:02:73:0D:39:0B:78:6C:CE:2C:CC:0E:34:6B:B0:18:52:E1:B6:0E
Certificate issuer: /CN=fb723706d0e83758ba52138e9db4207b5a5c189c
Certificate serial: 0183A771C02163780AE6B4EC5F99F458D5B8
Authority key identifier: FB:72:37:06:D0:E8:37:58:BA:52:13:8E:9D:B4:20:7B:5A:5C:18:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-3I3BtDoN1i6UhOOnbQge1pcGJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/cfac31-8356-432d-a34d-b614361196fd/1/aAJzDTkLeGzOLMwONGuwGFLhtg4.roa
Signing time: Wed 05 Oct 2022 09:19:53 +0000
ROA not before: Wed 05 Oct 2022 09:19:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48345
IP address blocks: 2a0e:d340::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a7:71:c0:21:63:78:0a:e6:b4:ec:5f:99:f4:58:d5:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb723706d0e83758ba52138e9db4207b5a5c189c
Validity
Not Before: Oct 5 09:19:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6802730d390b786cce2ccc0e346bb01852e1b60e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:b4:d7:aa:0e:90:40:6c:83:83:03:17:22:90:
1e:a5:1a:8f:bc:e6:c5:78:e3:82:9c:e7:7b:40:d0:
48:ba:12:db:f5:2b:ad:76:c3:c1:6c:e7:f6:5a:8d:
ed:17:2c:69:ed:d9:71:63:d9:ad:ca:d3:b7:48:5a:
5f:44:3f:bd:41:1b:12:c1:44:47:76:19:49:0f:b3:
51:68:25:54:49:d7:28:59:dd:a2:70:90:62:f6:bd:
bc:e1:d6:96:e0:b4:a9:3c:08:8b:1f:d5:47:6a:37:
0e:c5:f9:a3:0a:42:32:13:5d:86:26:da:05:72:61:
ae:e8:80:2a:49:a8:c0:07:86:53:4a:6b:24:3e:f0:
3a:86:ed:0e:30:a0:25:eb:0e:2f:84:bd:40:13:a9:
b2:c9:81:fe:cc:f5:ad:ec:f2:75:5f:39:cf:50:59:
f8:a6:65:fe:50:a1:eb:4d:59:c9:2a:5f:75:70:60:
86:b9:84:12:7d:59:ba:27:31:54:4d:d5:ba:4b:b5:
4e:00:20:3f:d4:eb:f3:cf:65:96:c3:f8:89:1b:c6:
03:55:20:3a:ef:db:20:08:58:34:98:65:1a:6a:db:
1b:a9:94:3c:c2:9e:74:94:5f:9f:4f:19:5c:52:04:
8d:64:7a:25:45:13:28:44:17:83:5a:13:e1:e7:e0:
33:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:02:73:0D:39:0B:78:6C:CE:2C:CC:0E:34:6B:B0:18:52:E1:B6:0E
X509v3 Authority Key Identifier:
keyid:FB:72:37:06:D0:E8:37:58:BA:52:13:8E:9D:B4:20:7B:5A:5C:18:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-3I3BtDoN1i6UhOOnbQge1pcGJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/cfac31-8356-432d-a34d-b614361196fd/1/aAJzDTkLeGzOLMwONGuwGFLhtg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/cfac31-8356-432d-a34d-b614361196fd/1/1-3I3BtDoN1i6UhOOnbQge1pcGJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:d340::/48
Signature Algorithm: sha256WithRSAEncryption
13:00:8e:eb:6c:03:c3:76:65:2c:65:6e:97:45:fc:16:f0:8f:
d8:17:29:6e:6a:73:47:25:24:94:0b:2b:84:f2:7a:a7:7a:3e:
bb:85:44:38:7a:ac:53:41:54:d7:ad:8d:25:28:ad:c2:42:33:
02:ae:3e:57:55:b6:d2:a0:d5:21:82:f4:9f:d1:53:57:d7:e5:
06:8a:4c:a8:db:7e:b9:26:86:ed:71:dd:40:29:5a:f3:d8:f7:
54:2b:53:e1:63:4a:83:54:b1:31:29:72:e3:85:27:a7:fc:af:
01:70:0f:f0:cc:ea:0e:9e:2d:9e:69:1a:77:8a:6c:7f:cd:11:
c9:84:73:8c:ce:a3:d1:c5:3b:c4:ef:77:4a:82:02:8d:b6:88:
d7:56:2f:95:41:98:b3:77:6a:c5:6e:d4:f2:86:f1:e0:e4:c7:
bf:eb:c3:8c:ee:90:bd:66:bf:a5:cd:ab:0f:25:7f:00:66:a2:
69:51:ce:26:a5:b2:6e:9d:41:69:bf:20:d4:63:84:71:f3:16:
77:f8:5e:7b:43:1c:dd:17:12:2d:b2:7a:96:3d:51:b1:7a:18:
12:8c:69:0d:f3:d5:e2:e0:b0:46:cc:4e:f5:48:4b:e6:34:c8:
58:f6:14:2c:02:3c:e8:f6:0d:e2:9e:11:f6:06:7e:72:69:3a:
fc:df:cd:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:20:56 2025 by rpki-client