Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/9f7b6b-b29d-486e-8478-27efc13aff1e/1/Da0kyWdVIbvAwlAvPoJ2BSMcE1I.roa
File: Da0kyWdVIbvAwlAvPoJ2BSMcE1I.roa (raw, json)
Hash identifier: vdn4eDLx7fVMv6Z+4Q94dfMefZiT6RY74QygpCwfWbk=
Subject key identifier: 0D:AD:24:C9:67:55:21:BB:C0:C2:50:2F:3E:82:76:05:23:1C:13:52
Certificate issuer: /CN=afec4f4a16cc51bd51621011539ceb574ac15d02
Certificate serial: 302715BC
Authority key identifier: AF:EC:4F:4A:16:CC:51:BD:51:62:10:11:53:9C:EB:57:4A:C1:5D:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r-xPShbMUb1RYhARU5zrV0rBXQI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/9f7b6b-b29d-486e-8478-27efc13aff1e/1/Da0kyWdVIbvAwlAvPoJ2BSMcE1I.roa
Signing time: Sat 01 Jan 2022 09:06:25 +0000
ROA not before: Sat 01 Jan 2022 09:06:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41562
IP address blocks: 2a03:2040:ff00::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 807867836 (0x302715bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afec4f4a16cc51bd51621011539ceb574ac15d02
Validity
Not Before: Jan 1 09:06:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0dad24c9675521bbc0c2502f3e827605231c1352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b6:ba:24:61:a7:df:0e:36:48:83:a1:ee:99:
84:e9:a3:c7:92:69:25:3c:7c:39:67:e0:e8:76:42:
72:77:77:2f:af:03:10:38:d6:cc:c7:3d:94:40:6c:
fe:53:94:2c:7a:8a:1f:eb:c2:b0:76:0e:ec:62:45:
42:2b:37:aa:9f:9a:c1:90:eb:27:66:e0:21:80:e4:
72:99:df:fa:0d:12:a4:03:63:d6:5f:22:56:95:22:
ea:03:c9:70:e6:74:aa:0b:3d:39:46:50:fd:ec:cb:
0c:ae:29:79:ea:bc:81:21:56:64:34:04:b3:eb:dc:
be:6c:32:90:a5:50:4e:65:80:80:fe:ce:3f:02:20:
9c:27:8b:b1:2a:18:b9:07:23:55:a4:02:de:52:5f:
7b:df:7f:ae:b0:40:f0:c5:80:50:d6:80:17:5b:46:
ae:65:50:7d:c6:46:40:82:dc:c3:8c:33:52:a9:a8:
67:cf:eb:21:a3:ef:dd:e9:b4:66:75:f0:3e:b3:98:
66:49:69:9b:a7:ed:f4:88:dc:2c:ef:a1:84:1a:c8:
ec:15:26:e5:89:35:92:25:35:cc:1a:9e:05:bf:3f:
0a:4a:05:05:0c:6f:a0:eb:37:33:7e:bc:6f:e6:da:
3d:2d:be:d8:3a:59:be:86:69:68:d3:4c:27:36:47:
4a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:AD:24:C9:67:55:21:BB:C0:C2:50:2F:3E:82:76:05:23:1C:13:52
X509v3 Authority Key Identifier:
keyid:AF:EC:4F:4A:16:CC:51:BD:51:62:10:11:53:9C:EB:57:4A:C1:5D:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r-xPShbMUb1RYhARU5zrV0rBXQI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9f7b6b-b29d-486e-8478-27efc13aff1e/1/Da0kyWdVIbvAwlAvPoJ2BSMcE1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9f7b6b-b29d-486e-8478-27efc13aff1e/1/r-xPShbMUb1RYhARU5zrV0rBXQI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:2040:ff00::/40
Signature Algorithm: sha256WithRSAEncryption
6c:0e:5d:d6:ed:e5:96:aa:e3:76:5a:45:b2:96:0f:b6:54:f8:
f9:28:d8:dd:d7:2c:fc:40:55:1d:e9:86:6a:14:92:0d:77:a9:
f1:c1:78:75:c9:19:b1:43:c3:0c:83:a8:47:0c:7f:37:0d:04:
8e:dc:d7:bf:99:b0:8f:e7:05:fd:36:35:aa:dc:8a:ad:8e:2f:
d4:ad:64:23:76:94:c2:38:98:3b:26:e9:f0:56:af:96:af:1f:
cd:60:8e:aa:96:e9:c1:8e:d6:56:10:da:d7:c9:5e:35:bd:42:
73:c6:a9:c7:d3:fa:55:e5:39:6b:6d:9d:1e:23:ef:8c:1f:08:
d9:c1:7e:62:20:49:32:4c:86:32:d0:55:a8:8f:4a:e7:69:38:
2a:bd:16:0f:bd:82:56:a5:0c:80:59:d2:6b:97:51:ca:9b:1a:
0c:49:1a:f9:bb:45:a3:95:59:6b:7f:cf:64:3d:eb:77:d7:d1:
67:b6:18:69:91:e3:f7:50:ad:02:a1:d9:1b:5b:ad:f1:16:37:
50:27:83:8c:c8:4a:90:8e:b2:6c:24:38:a3:13:e3:91:01:24:
ac:49:d1:f9:e7:05:1e:cb:58:93:e3:a7:67:c6:0c:ea:d6:a7:
8b:c0:d5:53:17:20:d9:bf:81:3e:61:8e:15:b3:e7:b9:db:62:
38:f0:a8:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:14 2024 by rpki-client on console-fra.rpki-client.org