Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/Psr8c474jVXRTxUAs16qEvdrIL4.roa
File: Psr8c474jVXRTxUAs16qEvdrIL4.roa (raw, json)
Hash identifier: t1krldzmQpyszlEaEWM2fzwy/eePgQBB76StahmqapQ=
Subject key identifier: 3E:CA:FC:73:8E:F8:8D:55:D1:4F:15:00:B3:5E:AA:12:F7:6B:20:BE
Certificate issuer: /CN=259490c5dbcfbf590da33bfbd37970a0763469c9
Certificate serial: 011C4841
Authority key identifier: 25:94:90:C5:DB:CF:BF:59:0D:A3:3B:FB:D3:79:70:A0:76:34:69:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JZSQxdvPv1kNozv703lwoHY0ack.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/Psr8c474jVXRTxUAs16qEvdrIL4.roa
Signing time: Sat 14 May 2022 09:33:40 +0000
ROA not before: Sat 14 May 2022 09:33:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209968
IP address blocks: 2a09:be42::/32 maxlen: 48
2a12:49c4::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18630721 (0x11c4841)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=259490c5dbcfbf590da33bfbd37970a0763469c9
Validity
Not Before: May 14 09:33:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ecafc738ef88d55d14f1500b35eaa12f76b20be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:cd:76:a3:6b:f1:69:5a:35:0d:71:6c:40:6b:
ba:d1:63:7c:f6:c6:67:ca:9c:32:c1:a4:96:b8:85:
5e:31:58:6a:29:a0:4d:69:23:04:b1:e5:22:71:b6:
ee:a0:72:56:03:4b:0a:8c:92:8d:5c:b9:24:45:ba:
07:05:7d:7a:fb:45:01:90:71:82:bc:3f:a7:48:67:
fa:d7:9b:ba:56:7b:ed:a1:07:7b:8b:c6:73:26:ea:
c6:ca:a5:02:73:e5:80:8d:fc:53:a6:7b:55:cf:b9:
72:8b:f6:78:b7:17:3f:65:c9:fa:b3:b7:d6:18:ae:
ce:1e:a4:78:48:6f:6a:bc:07:a2:84:45:6f:bb:7c:
6d:f4:a3:13:8d:3a:a8:7c:df:31:cf:2a:16:7d:84:
1e:2e:e2:36:2e:1c:92:24:18:b6:ab:4d:db:21:75:
fa:6e:8a:ab:48:4a:48:da:95:5d:ca:ff:35:7f:42:
fb:76:5d:21:80:34:e3:91:5c:54:d9:98:69:20:4c:
38:eb:45:72:cc:07:24:0f:4a:46:32:f0:34:d2:0f:
ec:a2:c9:4d:06:8d:79:61:ce:b7:27:1e:f1:78:12:
d8:18:4b:98:ff:f3:26:64:1d:4f:24:f7:ae:28:2b:
3e:f3:6e:0c:8c:ef:38:b8:65:94:1c:cf:e4:81:14:
d9:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:CA:FC:73:8E:F8:8D:55:D1:4F:15:00:B3:5E:AA:12:F7:6B:20:BE
X509v3 Authority Key Identifier:
keyid:25:94:90:C5:DB:CF:BF:59:0D:A3:3B:FB:D3:79:70:A0:76:34:69:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JZSQxdvPv1kNozv703lwoHY0ack.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/Psr8c474jVXRTxUAs16qEvdrIL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/JZSQxdvPv1kNozv703lwoHY0ack.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:be42::/32
2a12:49c4::/32
Signature Algorithm: sha256WithRSAEncryption
bc:bb:07:d0:2f:1b:a6:31:77:19:77:31:2f:03:c4:cf:f9:3c:
d7:31:ad:2e:8d:4e:fc:83:15:83:43:71:65:a3:ba:d2:d7:9b:
1f:87:71:9d:97:0c:be:11:25:3d:54:74:aa:ab:07:63:2c:d8:
12:79:6d:f1:57:05:5e:bf:4b:af:98:dd:a9:24:8d:59:d2:05:
6a:34:02:81:e9:ae:bc:a7:33:20:e4:46:8a:f8:76:2e:69:fb:
af:da:27:2e:c5:d5:22:42:ca:95:d2:1c:e2:c1:dd:60:72:22:
34:87:30:ff:e1:35:35:47:7b:1c:ed:4e:bb:56:3d:20:ee:10:
fd:c2:19:75:05:1e:1e:f8:3a:1a:b3:10:c6:40:f1:7a:db:84:
cb:44:32:85:d7:db:3e:0d:8b:00:a7:b3:db:94:dc:20:f9:68:
87:a3:0e:44:07:60:b0:38:f8:7c:97:5a:5f:8a:b7:06:3a:92:
e0:3a:d2:d5:39:34:dc:b7:4f:7f:ee:c6:85:87:a7:98:24:c8:
d0:f3:df:9c:03:ca:30:09:48:58:e0:e2:d8:ec:c8:f0:13:57:
21:43:7f:04:37:d5:b0:9f:ea:f7:43:06:01:05:7c:fa:4c:d1:
5c:23:1a:cb:9f:95:90:b8:93:60:d8:25:cb:c9:c5:2d:f5:9d:
4e:9a:02:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:48 2023 by rpki-client on console-fra.rpki-client.org