Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/PNqY-TkajyRR6PnL0M3oyOJS5YE.roa
File: PNqY-TkajyRR6PnL0M3oyOJS5YE.roa (raw, json)
Hash identifier: JjR9tIyLtvkyBeuzn/vFZi8VJhkdQf/uZWidyfvkim8=
Subject key identifier: 3C:DA:98:F9:39:1A:8F:24:51:E8:F9:CB:D0:CD:E8:C8:E2:52:E5:81
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 3A7DEAC4
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/PNqY-TkajyRR6PnL0M3oyOJS5YE.roa
Signing time: Sat 01 Jan 2022 05:59:57 +0000
ROA not before: Sat 01 Jan 2022 05:59:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 26415
IP address blocks: 2a00:11c0:48:5::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 981330628 (0x3a7deac4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Jan 1 05:59:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3cda98f9391a8f2451e8f9cbd0cde8c8e252e581
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c6:41:57:fc:ab:33:bc:89:96:ef:72:15:3c:
91:da:34:92:9e:56:9e:ca:31:85:7b:75:9d:88:89:
b5:45:92:1c:af:49:34:e4:b3:c2:c9:5d:48:2e:9d:
d3:d1:cd:92:e5:f3:d4:0c:cb:65:60:48:f0:99:17:
76:9c:39:bf:68:28:fe:fa:52:61:fc:66:09:0d:59:
1b:09:b7:2e:aa:0a:72:e0:be:77:17:6a:28:a8:81:
47:9f:e8:d1:48:ec:04:32:fa:93:0b:00:cc:a5:4a:
cf:9c:bd:89:9a:3a:f5:7f:82:2d:bb:e8:fc:87:a0:
e4:7c:65:c0:8f:28:95:02:7c:08:23:3f:4c:60:2c:
01:1c:7a:be:63:b4:67:5d:3a:fa:6d:bc:c9:3b:48:
26:d9:32:49:da:0f:cb:c0:db:08:81:bb:57:50:e1:
99:0f:55:55:8b:f3:a8:bf:04:e6:c8:76:d6:5c:69:
42:e1:b6:c1:62:ce:24:08:99:04:78:96:24:60:d0:
bf:a0:aa:dd:aa:55:3e:9d:7b:7c:61:36:c9:28:75:
d4:d2:73:45:e5:4e:15:4a:53:1b:ba:53:1d:37:56:
b8:41:48:3a:31:9e:32:c3:70:5a:6c:7b:c9:c8:98:
2b:6f:ca:52:5d:87:4e:e8:3f:c4:33:69:14:b8:53:
80:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:DA:98:F9:39:1A:8F:24:51:E8:F9:CB:D0:CD:E8:C8:E2:52:E5:81
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/PNqY-TkajyRR6PnL0M3oyOJS5YE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:11c0:48:5::/64
Signature Algorithm: sha256WithRSAEncryption
8c:c9:1e:82:f7:cc:86:14:34:ae:b7:a6:2c:41:55:c6:af:bc:
fc:7d:91:5c:50:7a:fd:10:fc:7b:aa:c5:8d:19:ca:d1:8c:53:
1c:3a:8d:a4:d1:bf:e0:fb:52:4f:6f:a6:49:de:63:0d:92:fa:
e4:f3:44:b2:8c:78:68:a3:31:1e:73:52:5b:b0:7b:73:65:80:
1f:4a:fd:68:fb:39:5d:49:da:a0:d0:c2:6c:82:1a:9f:39:12:
61:ec:bd:26:24:f0:03:1a:ac:a6:14:c9:eb:96:73:19:4c:a2:
f9:d0:ec:c2:28:38:25:a9:1d:61:b3:0c:bd:e9:5f:3b:39:21:
26:57:38:31:0b:d0:11:59:de:71:14:f7:42:40:e9:36:36:32:
f3:4a:f8:e9:9d:83:e1:d9:b7:84:ea:c0:73:94:48:f4:25:05:
14:3c:34:95:51:80:a7:36:25:c6:c9:9c:3e:ac:b9:52:0d:d3:
cb:ac:3a:21:b6:55:7a:07:32:3d:22:16:98:cd:81:1d:47:23:
80:48:6e:1c:ce:7b:17:b5:07:ab:fe:52:ab:f8:90:f3:d9:72:
df:76:2e:fc:db:4a:6d:f6:e7:81:6d:c8:d9:e9:66:35:b5:b2:
9e:3e:27:6c:72:19:3f:80:6d:5c:2f:fa:bc:6f:1b:72:c8:4f:
87:cf:b9:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:14 2024 by rpki-client on console-fra.rpki-client.org