Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/fsng0yvZ6WesLWEPyZT2svKDuPI.roa
File: fsng0yvZ6WesLWEPyZT2svKDuPI.roa (raw, json)
Hash identifier: D525yCS8lrOn74P2MhZ/bay6hYSBN1C1CRp8t45PpMo=
Subject key identifier: 7E:C9:E0:D3:2B:D9:E9:67:AC:2D:61:0F:C9:94:F6:B2:F2:83:B8:F2
Certificate issuer: /CN=73975d5da9da8a074b33fbcb5c09d503a3b443a1
Certificate serial: 15FC6AAF
Authority key identifier: 73:97:5D:5D:A9:DA:8A:07:4B:33:FB:CB:5C:09:D5:03:A3:B4:43:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c5ddXanaigdLM_vLXAnVA6O0Q6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/fsng0yvZ6WesLWEPyZT2svKDuPI.roa
Signing time: Sat 01 Jan 2022 11:58:18 +0000
ROA not before: Sat 01 Jan 2022 11:58:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49752
IP address blocks: 2a01:208::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 368863919 (0x15fc6aaf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73975d5da9da8a074b33fbcb5c09d503a3b443a1
Validity
Not Before: Jan 1 11:58:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ec9e0d32bd9e967ac2d610fc994f6b2f283b8f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:18:4f:46:81:a3:92:31:da:0c:d0:9c:be:67:
43:31:d1:55:4a:7d:35:4d:78:fa:15:9b:30:d5:ab:
46:97:c6:9e:07:36:1f:d8:11:ab:02:1b:02:93:53:
3f:41:62:33:cc:21:6d:c2:10:41:42:79:b0:5f:9c:
2d:c0:d0:b3:03:34:42:70:ac:9f:82:4f:31:4b:82:
0c:c2:6b:8c:6d:12:41:86:cc:62:3c:94:db:e4:f4:
7d:df:de:24:bf:2b:23:0f:31:75:3b:29:d6:81:b1:
b5:27:0b:bf:75:9b:5f:02:70:51:94:d2:2a:a3:2d:
94:02:72:db:5f:f7:13:ba:22:32:a4:d3:47:ed:c1:
c6:42:01:e8:cb:85:23:5a:fe:78:27:ef:ae:a9:6a:
e8:e1:59:51:bf:bc:b2:30:fc:f7:33:7a:47:95:32:
98:04:29:c1:ae:b9:56:2c:25:8b:49:17:03:75:2d:
a3:9c:70:63:a4:49:ad:11:eb:02:f2:90:f5:a3:fa:
56:ef:ce:0f:58:c2:5b:43:9a:36:05:86:83:24:f2:
81:8c:2d:6f:47:20:03:5f:bf:de:97:e3:b5:dd:86:
68:74:c9:2a:db:04:fc:8d:6f:05:fc:43:6e:18:47:
a9:9e:98:cb:81:9e:f1:94:73:a7:ca:4f:7f:b4:cb:
32:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:C9:E0:D3:2B:D9:E9:67:AC:2D:61:0F:C9:94:F6:B2:F2:83:B8:F2
X509v3 Authority Key Identifier:
keyid:73:97:5D:5D:A9:DA:8A:07:4B:33:FB:CB:5C:09:D5:03:A3:B4:43:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5ddXanaigdLM_vLXAnVA6O0Q6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/fsng0yvZ6WesLWEPyZT2svKDuPI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/c5ddXanaigdLM_vLXAnVA6O0Q6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:208::/32
Signature Algorithm: sha256WithRSAEncryption
7d:93:68:7a:9c:71:c0:f9:f7:38:32:77:3b:3d:81:07:de:76:
c5:31:0c:a7:fc:46:7e:b2:4f:4d:4e:e9:e9:39:d4:6a:46:16:
2d:bd:51:0e:b4:f0:f5:07:c6:51:68:1e:44:1c:ea:ac:de:6a:
7f:2f:56:8f:ec:de:a0:87:4b:54:2f:c2:98:3c:b9:fb:c9:94:
b0:2c:dd:0e:db:e4:24:e2:b0:ac:43:48:0c:29:5c:8f:65:0a:
22:46:94:2d:56:8e:86:b9:b5:a8:14:b2:e6:13:d8:9f:94:a7:
e1:2b:15:48:57:38:a0:68:e2:bd:14:ae:6e:47:1a:05:9b:7b:
77:ac:f4:66:39:b4:6d:b3:f0:6a:7e:2f:de:96:20:4d:32:37:
bc:02:9a:8b:ab:47:40:ed:88:46:08:77:b3:4f:c2:ca:6a:9d:
1a:8a:77:46:a5:7d:25:83:26:24:4a:b6:51:78:d9:da:08:7d:
a0:88:54:55:80:06:5f:ca:65:4e:31:2f:01:bb:f9:d3:14:fc:
9c:96:81:2c:4a:2c:b7:4f:9f:ec:05:7f:45:ea:38:a6:63:63:
6e:b6:73:63:1f:28:cb:cb:2b:8a:a5:cc:e2:9f:f7:1b:b8:f2:
fa:6d:31:8b:dc:ec:fa:57:90:6e:6a:80:1a:70:be:8f:65:d7:
0e:5a:73:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:26 2024 by rpki-client on console-fra.rpki-client.org