Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/238c6a-c671-4a34-934a-505d681d6172/1/t38Vf484aW7IhFhCTWJI2fDMcFA.roa
File: t38Vf484aW7IhFhCTWJI2fDMcFA.roa (raw, json)
Hash identifier: 1YrmDiaKopXYlZguOPobZ6lBSFLeR+ExEKYzt8va6F4=
Subject key identifier: B7:7F:15:7F:8F:38:69:6E:C8:84:58:42:4D:62:48:D9:F0:CC:70:50
Certificate issuer: /CN=3d4709d8bd7573ab1df2233b741def2f84c94fee
Certificate serial: 0183130E8AE0C2EE29C54C47B779544B1DFE
Authority key identifier: 3D:47:09:D8:BD:75:73:AB:1D:F2:23:3B:74:1D:EF:2F:84:C9:4F:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PUcJ2L11c6sd8iM7dB3vL4TJT-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/238c6a-c671-4a34-934a-505d681d6172/1/t38Vf484aW7IhFhCTWJI2fDMcFA.roa
Signing time: Tue 06 Sep 2022 13:47:43 +0000
ROA not before: Tue 06 Sep 2022 13:47:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 2a11:3c80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:13:0e:8a:e0:c2:ee:29:c5:4c:47:b7:79:54:4b:1d:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d4709d8bd7573ab1df2233b741def2f84c94fee
Validity
Not Before: Sep 6 13:47:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b77f157f8f38696ec88458424d6248d9f0cc7050
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:26:aa:b2:17:43:b2:83:ee:39:77:c8:fc:0c:
1b:b0:1c:bf:a4:c9:f4:d5:9b:f4:09:40:85:70:d3:
63:05:87:94:d4:c7:fa:21:f5:de:45:d7:76:b0:c0:
d0:c0:96:70:83:55:eb:87:68:26:98:a1:76:df:de:
79:1e:a4:24:d5:14:a8:c2:49:45:b4:44:05:b2:7c:
6e:cb:a4:37:62:ef:b3:eb:0a:d3:5c:22:c2:9e:03:
ed:cc:76:6e:34:26:72:c0:bb:2e:25:4d:ef:0c:be:
6e:b0:45:6f:ea:6f:bb:16:9b:11:87:8c:c3:31:d5:
b7:90:e3:9c:43:0e:07:23:91:fe:44:15:1f:97:56:
72:88:54:0e:34:f3:66:86:89:49:f0:f3:b7:05:fd:
50:35:48:54:56:7e:09:2b:07:b9:9c:9f:40:22:30:
75:a3:e3:fe:fe:c7:5c:e9:94:48:f0:03:3b:9b:b0:
74:a7:bd:d6:24:c9:5e:aa:b1:69:8a:44:bd:59:cd:
be:a1:0f:de:a4:9b:f4:03:93:f9:34:8c:b7:a0:19:
d4:e9:19:f7:21:44:10:9f:a0:6e:ce:4b:c1:34:7e:
eb:9d:0d:70:0b:b9:01:aa:ed:e3:77:53:a5:23:15:
48:fd:a1:31:a2:61:4f:b1:1b:b3:fb:e5:46:f8:a4:
02:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:7F:15:7F:8F:38:69:6E:C8:84:58:42:4D:62:48:D9:F0:CC:70:50
X509v3 Authority Key Identifier:
keyid:3D:47:09:D8:BD:75:73:AB:1D:F2:23:3B:74:1D:EF:2F:84:C9:4F:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PUcJ2L11c6sd8iM7dB3vL4TJT-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/238c6a-c671-4a34-934a-505d681d6172/1/t38Vf484aW7IhFhCTWJI2fDMcFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/238c6a-c671-4a34-934a-505d681d6172/1/PUcJ2L11c6sd8iM7dB3vL4TJT-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:3c80::/29
Signature Algorithm: sha256WithRSAEncryption
87:fc:a7:a1:23:ea:d8:ab:74:56:60:c7:16:89:7b:56:85:f1:
03:c9:e6:ed:89:8e:f4:4f:77:06:a5:12:2c:ad:61:3b:95:13:
e8:c0:b3:6f:70:ce:86:e1:f8:23:98:d0:ab:fb:11:2e:4c:db:
13:7b:27:d8:0d:a0:b3:9d:f2:49:c7:6a:13:a0:3b:00:65:70:
84:91:09:ae:b2:44:7e:ab:33:0b:44:b9:a8:b6:be:7a:1c:cf:
bb:20:89:cb:5a:22:43:f2:d3:dd:9a:a7:95:dc:bc:08:aa:43:
4e:3b:2f:4b:c0:5c:4d:a3:74:17:37:e1:20:4d:c0:d8:16:11:
11:1d:a2:67:8c:5f:31:e0:7c:c2:9b:77:0f:4b:bb:e8:5b:ac:
b3:31:d8:21:9d:a5:92:a3:1c:9b:cf:f6:db:2d:ac:d0:98:12:
7f:5e:65:99:b0:62:ad:47:78:1c:4e:60:14:73:24:d4:2b:e5:
3f:d6:ec:77:f8:76:52:6b:90:e9:31:b4:5a:9f:04:72:e8:a6:
76:6f:f5:f1:52:60:81:a6:0b:18:16:a3:02:f7:58:6a:68:66:
7d:8c:14:71:43:bd:48:1a:ed:d2:03:fe:17:ac:71:52:28:73:
07:59:36:44:1b:e4:ca:72:1f:4b:19:12:b1:aa:c9:69:7c:39:
de:de:34:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:55 2023 by rpki-client on console-fra.rpki-client.org