Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/21f1ef-d6f5-4ad4-ad11-af4c1de0249d/1/xzsjeNiNbvQiCAg-tla7GX4aTUo.roa
File: xzsjeNiNbvQiCAg-tla7GX4aTUo.roa (raw, json)
Hash identifier: B1JuEQYWngjIns+oVViujURDRoxKv1NBJNaFMIbLj60=
Subject key identifier: C7:3B:23:78:D8:8D:6E:F4:22:08:08:3E:B6:56:BB:19:7E:1A:4D:4A
Certificate issuer: /CN=77c3131201b08679481a03a494a1367cae81ea03
Certificate serial: 30415CD4
Authority key identifier: 77:C3:13:12:01:B0:86:79:48:1A:03:A4:94:A1:36:7C:AE:81:EA:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d8MTEgGwhnlIGgOklKE2fK6B6gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/21f1ef-d6f5-4ad4-ad11-af4c1de0249d/1/xzsjeNiNbvQiCAg-tla7GX4aTUo.roa
Signing time: Fri 14 Jan 2022 20:46:05 +0000
ROA not before: Fri 14 Jan 2022 20:46:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44406
IP address blocks: 2a03:7540::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 809589972 (0x30415cd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77c3131201b08679481a03a494a1367cae81ea03
Validity
Not Before: Jan 14 20:46:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c73b2378d88d6ef42208083eb656bb197e1a4d4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ed:a8:61:28:4f:29:72:88:de:c4:8e:5f:ea:
7d:f0:02:1e:1f:f1:f9:e7:15:e7:9a:e1:a9:d8:c2:
54:6e:ea:f1:6d:6e:05:64:e2:9f:d7:b2:d5:30:b5:
8f:8d:7e:24:ba:53:47:97:35:2b:38:ff:6f:1d:13:
7e:fb:86:ef:83:f1:2b:8d:07:83:65:1c:d4:21:91:
5e:3a:4f:0d:49:1a:8e:28:79:47:5b:bd:5e:87:41:
18:fa:f4:97:2c:c0:2c:05:62:ee:14:28:da:17:7f:
58:56:2d:0e:0e:78:58:7e:41:50:ca:80:b5:37:55:
7a:7d:88:c7:13:07:41:81:17:ba:25:a4:c4:81:93:
8a:a7:85:4c:98:3b:e4:5e:5d:19:a4:9b:13:ed:d7:
26:34:5d:1e:62:8b:42:80:e4:5e:d4:d7:5c:9f:08:
8c:f1:6f:5e:36:2e:dc:52:a3:62:49:8f:d9:61:14:
6d:18:02:c1:a0:ba:e4:c8:66:2b:2d:e0:71:f7:00:
72:f6:62:a5:8f:5e:52:1b:7c:07:db:d4:ca:51:27:
ca:38:d2:d4:6c:1f:80:b4:73:06:a1:4e:2f:9c:1e:
c7:42:5e:3f:fc:ac:4f:89:3c:77:19:d5:0a:64:a5:
d6:c9:26:e3:62:8e:63:54:f8:e3:46:e6:dd:45:5e:
bd:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:3B:23:78:D8:8D:6E:F4:22:08:08:3E:B6:56:BB:19:7E:1A:4D:4A
X509v3 Authority Key Identifier:
keyid:77:C3:13:12:01:B0:86:79:48:1A:03:A4:94:A1:36:7C:AE:81:EA:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8MTEgGwhnlIGgOklKE2fK6B6gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/21f1ef-d6f5-4ad4-ad11-af4c1de0249d/1/xzsjeNiNbvQiCAg-tla7GX4aTUo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/21f1ef-d6f5-4ad4-ad11-af4c1de0249d/1/d8MTEgGwhnlIGgOklKE2fK6B6gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:7540::/32
Signature Algorithm: sha256WithRSAEncryption
3d:68:91:92:fb:87:e3:c3:0b:13:4c:ef:10:10:aa:85:0e:a5:
da:5d:60:48:16:2a:0a:c0:ce:2f:65:65:9b:5c:a2:87:62:65:
6c:dc:53:77:46:5d:74:86:61:fb:b6:88:31:63:e0:9f:cd:67:
78:43:73:c9:da:a2:42:1e:78:40:ab:e7:d5:47:e7:fa:73:12:
21:40:14:50:34:7d:66:44:f9:26:87:33:39:c7:bb:dd:8a:91:
6f:cb:76:c1:6b:3c:a6:81:9d:3a:96:78:cf:70:42:22:96:a1:
95:d7:24:32:41:7d:0f:ea:71:3a:ab:28:68:ca:07:e5:8c:80:
2a:8f:ba:81:4a:0a:bb:cd:bb:b8:b8:17:02:f6:0d:f6:82:eb:
f7:d5:2e:df:18:70:ff:ef:d3:1a:47:67:cd:71:08:4b:c9:94:
8d:10:bb:cd:4f:97:b0:3e:0b:e7:45:8d:59:e9:b6:31:7d:d1:
31:40:34:1c:aa:4c:3d:42:8c:d5:17:f2:de:9e:fc:4f:86:c9:
3e:f6:c6:ba:4e:69:24:c8:b4:2f:70:a4:79:bf:cf:d5:1b:7e:
00:73:d1:79:6a:da:ae:af:30:d3:1e:97:3a:29:f0:38:62:05:
54:bb:5b:15:a9:f3:1f:2e:e5:48:06:81:ce:32:ad:2e:b9:de:
96:34:b5:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:57 2024 by rpki-client on console-ams.rpki-client.org