Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/9decaf-47eb-4349-9e86-01b8bb6ad90a/1/fZ5M9We6zTsg6MvP_yrddJq4wSs.roa
File: fZ5M9We6zTsg6MvP_yrddJq4wSs.roa (raw, json)
Hash identifier: 2HCaOHUCyFKxSMDiXFigQLpbKVjHBUoBkcFmbl1qSxA=
Subject key identifier: 7D:9E:4C:F5:67:BA:CD:3B:20:E8:CB:CF:FF:2A:DD:74:9A:B8:C1:2B
Certificate issuer: /CN=9502d8b8269c6b07f814acf0c7ed729b3f4b5984
Certificate serial: 0183187FF9D665F562033536CC4F2681482F
Authority key identifier: 95:02:D8:B8:26:9C:6B:07:F8:14:AC:F0:C7:ED:72:9B:3F:4B:59:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lQLYuCacawf4FKzwx-1ymz9LWYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/9decaf-47eb-4349-9e86-01b8bb6ad90a/1/fZ5M9We6zTsg6MvP_yrddJq4wSs.roa
Signing time: Wed 07 Sep 2022 15:09:43 +0000
ROA not before: Wed 07 Sep 2022 15:09:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206804
IP address blocks: 2a03:efc0:2100::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:18:7f:f9:d6:65:f5:62:03:35:36:cc:4f:26:81:48:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9502d8b8269c6b07f814acf0c7ed729b3f4b5984
Validity
Not Before: Sep 7 15:09:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d9e4cf567bacd3b20e8cbcfff2add749ab8c12b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f7:94:ce:6b:93:aa:53:0f:6d:8a:08:54:38:
32:1e:fd:a7:36:ea:b0:1e:0d:3a:47:a4:70:db:0a:
7d:16:52:d6:81:62:5c:63:b1:fc:ec:b0:30:18:73:
f9:76:c7:68:7a:66:24:26:cd:53:1d:50:6c:a8:d1:
09:9e:ec:6f:80:4d:99:c9:2a:c5:4c:fb:a3:25:33:
4e:ff:8f:dd:f0:a7:93:fc:2f:11:20:eb:ba:23:1d:
a3:06:c6:93:d1:3d:23:9e:12:30:16:d7:61:64:49:
48:11:63:46:49:d8:d0:99:6d:e3:39:47:35:51:cc:
15:3c:91:29:f5:04:7b:36:40:82:88:db:d5:2d:9f:
5e:d5:a9:10:48:85:f7:11:4a:e6:09:b6:fd:17:20:
dd:cd:b1:a6:6d:a3:cf:e5:22:15:05:55:78:2d:30:
18:d1:86:96:17:2e:2c:ab:02:7d:30:8f:27:d9:96:
94:ad:fd:a4:9c:3b:f7:3f:a8:08:ac:29:d5:81:83:
5d:a7:ae:17:23:04:5f:ae:d8:d6:f9:7d:92:1a:78:
ba:f1:51:70:db:df:9c:47:20:d6:8b:db:5e:5f:a7:
a0:08:63:7e:cc:26:30:11:37:03:1a:2b:47:61:94:
49:ea:e7:51:60:55:71:15:01:a1:e7:c0:2a:4b:7e:
e2:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:9E:4C:F5:67:BA:CD:3B:20:E8:CB:CF:FF:2A:DD:74:9A:B8:C1:2B
X509v3 Authority Key Identifier:
keyid:95:02:D8:B8:26:9C:6B:07:F8:14:AC:F0:C7:ED:72:9B:3F:4B:59:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lQLYuCacawf4FKzwx-1ymz9LWYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/9decaf-47eb-4349-9e86-01b8bb6ad90a/1/fZ5M9We6zTsg6MvP_yrddJq4wSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/9decaf-47eb-4349-9e86-01b8bb6ad90a/1/lQLYuCacawf4FKzwx-1ymz9LWYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:efc0:2100::/40
Signature Algorithm: sha256WithRSAEncryption
ae:83:e4:5e:65:d0:e3:1f:98:3b:bb:80:bf:a8:26:6e:ab:04:
59:75:8a:d2:e9:e1:f7:19:d9:76:84:62:03:ff:bd:8d:99:02:
8c:c1:dc:34:4f:06:54:9c:13:47:b3:b9:5a:03:9e:0f:28:85:
bb:bd:0a:e1:05:17:e1:63:56:b3:33:80:86:d5:02:8c:e2:66:
90:02:79:cc:c9:3a:b0:26:e5:36:d1:5c:af:9c:96:8c:f9:aa:
87:72:5f:aa:36:31:90:ac:df:fb:54:e1:39:af:99:4d:ae:24:
4a:59:a9:50:fc:76:76:bf:5c:23:d0:22:a6:89:0e:1f:4e:8f:
76:c2:fb:5a:de:0d:a9:f7:2d:e0:1d:33:64:f5:67:d4:b8:49:
a9:7b:d8:10:69:5f:5c:46:a5:92:b6:cc:13:13:06:23:77:fa:
8f:3d:a8:7c:7c:ed:5b:0f:35:f1:3c:ff:90:18:92:d9:d7:b6:
96:a7:cc:84:c9:5c:66:e1:55:12:75:03:85:e8:66:46:cc:c9:
68:53:db:d2:c0:d9:16:85:5a:e4:4f:08:08:bb:ee:c5:8e:1f:
d6:9f:af:ea:30:ce:58:ad:9a:61:fc:43:a5:09:8f:46:e6:8f:
29:97:ba:bc:2b:07:9f:1b:e1:29:3d:bf:3c:e3:c7:9c:6d:93:
c0:36:44:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:30 2024 by rpki-client on console-fra.rpki-client.org