Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/PN3eqk99oCIlq86P4Ue4cBWMwys.roa
File: PN3eqk99oCIlq86P4Ue4cBWMwys.roa (raw, json)
Hash identifier: 6jlBaLUQwfOo3hTUORijQ0FwWHG2Vd7iVESouFdl9EQ=
Subject key identifier: 3C:DD:DE:AA:4F:7D:A0:22:25:AB:CE:8F:E1:47:B8:70:15:8C:C3:2B
Certificate issuer: /CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Certificate serial: 08180EE4
Authority key identifier: F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/PN3eqk99oCIlq86P4Ue4cBWMwys.roa
Signing time: Wed 04 May 2022 01:56:33 +0000
ROA not before: Wed 04 May 2022 01:56:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205232
IP address blocks: 2a03:5840:270::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135794404 (0x8180ee4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Validity
Not Before: May 4 01:56:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3cdddeaa4f7da02225abce8fe147b870158cc32b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:9f:53:ea:cd:de:84:38:7a:ba:cc:cc:9c:69:
d9:3d:a8:a1:bd:f5:df:6f:01:f0:4a:b1:9b:d1:49:
b4:39:97:0f:dc:99:5c:54:e2:fc:26:32:cd:25:5a:
d9:f4:c8:a3:b2:24:16:a1:7c:31:e3:4d:47:86:96:
34:40:9c:0c:cf:3d:38:0b:a8:08:a3:25:3a:28:de:
cb:33:26:be:3b:f8:97:a2:06:8c:6a:31:03:c1:90:
bf:2e:6e:25:5b:6f:db:e9:ed:18:28:a4:6f:26:66:
33:6f:21:21:a8:0a:6d:0c:e9:c2:2e:80:ea:d8:ed:
a6:74:19:2e:c3:46:fc:84:1d:53:2a:80:2a:43:d3:
fe:60:fd:9d:f5:d5:a7:8a:bd:f8:4c:59:21:c0:68:
d7:c0:18:55:6a:8b:dc:8c:e5:02:9c:3f:c2:fd:c6:
7b:f0:8b:58:42:3f:e6:cc:72:22:da:82:42:e0:32:
a5:7c:4b:c2:73:af:e6:89:5a:cf:69:73:0d:dc:a7:
60:b9:9d:36:a8:ac:a1:50:23:73:5e:d5:81:8e:20:
93:6a:55:8e:98:65:b7:78:e0:87:e6:7f:86:36:4e:
19:77:a6:17:06:e8:05:46:c8:55:96:47:fd:3c:b7:
36:8c:ce:26:3d:a0:cf:aa:3f:64:2e:82:9b:96:70:
07:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:DD:DE:AA:4F:7D:A0:22:25:AB:CE:8F:E1:47:B8:70:15:8C:C3:2B
X509v3 Authority Key Identifier:
keyid:F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/PN3eqk99oCIlq86P4Ue4cBWMwys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:5840:270::/44
Signature Algorithm: sha256WithRSAEncryption
66:e7:32:b4:80:fd:8b:6b:88:b4:b0:36:53:c0:e6:64:0f:91:
31:2d:05:83:30:3f:49:1b:78:ff:13:b9:00:2d:2f:e0:20:91:
7e:a2:79:74:73:f6:9d:64:f2:41:95:bd:12:4a:ad:40:e7:04:
64:37:c6:66:d0:21:40:d5:41:a8:a6:96:7f:38:a6:55:82:d9:
18:ee:ba:af:d8:88:0b:32:fb:6c:2a:65:b3:db:d1:f7:ea:90:
41:18:9b:86:27:2f:f0:a9:4c:b8:70:df:1f:9d:18:60:de:1a:
07:ad:15:14:49:53:9d:5c:f1:85:80:d5:f8:62:16:b4:d7:ca:
8d:de:b7:df:e9:61:77:af:3d:e4:ce:d1:44:fd:8a:2b:de:df:
09:3f:e2:a1:73:4d:be:12:76:11:f7:00:fd:ba:69:92:b3:b6:
14:54:98:32:48:7d:4b:a8:d6:b6:6c:9a:04:bc:4c:37:eb:e6:
5c:1d:d4:cf:8f:bf:fc:e1:f8:96:64:7f:ce:bd:58:4e:f7:bc:
2d:11:e3:ca:b8:a2:22:f1:83:3a:af:87:9a:51:5e:e9:fc:be:
08:82:31:5a:0d:40:26:92:a4:ed:7b:ce:80:26:52:0b:f6:39:
4b:a1:c9:fa:33:a4:da:2b:bf:ed:97:0a:94:2e:ba:48:61:6a:
a9:6d:71:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:23 2023 by rpki-client on console-fra.rpki-client.org