Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/1a18de-efbd-41b5-b336-79fbd385a550/1/K-SnFUDt1BVBfUIl1YZpe0Sk3bg.roa
File: K-SnFUDt1BVBfUIl1YZpe0Sk3bg.roa (raw, json)
Hash identifier: TMrYcm7kqPBbmHdlnu4s02FSxUJ74PEAYcfCxsQxcKA=
Subject key identifier: 2B:E4:A7:15:40:ED:D4:15:41:7D:42:25:D5:86:69:7B:44:A4:DD:B8
Certificate issuer: /CN=7580d16569bb24a328e27b47f7d751659725defb
Certificate serial: 3224B70D
Authority key identifier: 75:80:D1:65:69:BB:24:A3:28:E2:7B:47:F7:D7:51:65:97:25:DE:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dYDRZWm7JKMo4ntH99dRZZcl3vs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/1a18de-efbd-41b5-b336-79fbd385a550/1/K-SnFUDt1BVBfUIl1YZpe0Sk3bg.roa
Signing time: Sat 01 Jan 2022 12:04:47 +0000
ROA not before: Sat 01 Jan 2022 12:04:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20712
IP address blocks: 2a03:3a40:2000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 841266957 (0x3224b70d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7580d16569bb24a328e27b47f7d751659725defb
Validity
Not Before: Jan 1 12:04:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2be4a71540edd415417d4225d586697b44a4ddb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:c4:40:51:2e:fc:c3:10:79:cc:cf:b8:82:2b:
7c:cc:de:be:13:0f:83:70:eb:b5:12:52:6e:04:60:
2f:e0:38:72:81:30:70:39:9c:8c:b3:05:ec:18:c8:
cd:c6:39:56:9d:ed:23:70:c6:73:fa:88:d4:b8:d2:
4a:be:54:fb:bc:2d:0a:26:dd:a5:bb:72:7a:0e:8c:
e8:27:3b:44:f0:2b:f4:33:b4:19:f8:73:89:b2:7b:
0f:a5:f1:61:d0:6c:ac:5c:27:91:da:18:b1:c9:31:
f9:37:c5:ce:db:c2:0f:50:f1:1f:b4:8e:19:83:3f:
e6:95:b8:70:d5:b1:81:63:65:99:fb:07:cf:d2:2c:
e7:9f:0a:1d:52:ed:0f:a1:58:c3:5a:f2:c7:4e:94:
07:c9:93:a8:00:1e:94:75:5b:b3:07:51:45:fe:ac:
71:be:df:38:9e:4e:77:cb:fc:f7:1f:e6:6f:d0:a7:
71:1c:2d:d0:8b:1b:44:1a:4c:5a:cd:11:18:09:5d:
53:bf:55:30:c1:6e:2b:be:bb:9d:04:5d:37:3d:90:
13:9f:39:d3:8f:6c:b5:2c:e3:9c:9f:39:90:5d:d5:
10:5b:7b:98:22:8e:1c:d1:9b:40:f6:22:17:29:bc:
be:98:21:0a:3b:e6:03:8f:fc:80:a7:e2:fa:04:a9:
e2:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:E4:A7:15:40:ED:D4:15:41:7D:42:25:D5:86:69:7B:44:A4:DD:B8
X509v3 Authority Key Identifier:
keyid:75:80:D1:65:69:BB:24:A3:28:E2:7B:47:F7:D7:51:65:97:25:DE:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dYDRZWm7JKMo4ntH99dRZZcl3vs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/1a18de-efbd-41b5-b336-79fbd385a550/1/K-SnFUDt1BVBfUIl1YZpe0Sk3bg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/1a18de-efbd-41b5-b336-79fbd385a550/1/dYDRZWm7JKMo4ntH99dRZZcl3vs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:3a40:2000::/48
Signature Algorithm: sha256WithRSAEncryption
89:3f:a3:17:3c:50:66:37:e9:44:ea:f3:8d:4b:64:cf:35:5e:
58:9a:65:88:24:e7:25:b7:66:12:b7:46:e4:02:14:5a:92:db:
fc:90:fb:cd:9f:91:bd:34:14:8e:96:37:34:96:49:9b:a7:12:
e8:96:97:09:74:ce:6d:69:d9:d2:e4:7c:5b:ad:a5:3e:96:56:
de:4d:3a:1c:8b:11:db:bd:5d:fa:e8:b9:c0:75:26:f6:c4:1e:
e6:21:57:1a:52:50:f6:e2:63:bf:2f:a7:27:72:ed:e6:04:f9:
b9:1e:8b:e6:96:1d:15:64:d8:24:b3:85:12:e8:14:e3:35:b5:
77:67:34:9f:a5:75:31:f3:e5:04:85:7e:ce:2d:2b:d9:7f:b7:
2e:ec:21:b8:95:e3:36:64:6f:4e:4d:c5:36:97:6f:01:0c:d9:
8a:f8:5b:fe:69:ce:04:7a:1d:88:ba:65:ca:94:36:df:a5:c9:
c7:b7:63:02:98:6a:b0:be:4f:38:53:b3:f2:50:58:be:a2:a2:
b3:ca:8c:34:c0:93:42:4f:97:b7:46:1b:50:55:3d:74:2a:ff:
0a:76:5f:88:31:ee:80:36:d0:06:35:f6:b7:0f:c5:ec:7c:82:
1a:54:65:9e:0e:35:4a:2b:31:1d:ab:78:83:71:9d:41:96:37:
ba:57:6e:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:14 2024 by rpki-client on console-ams.rpki-client.org