Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/1-01DQDwBTDN925lJ18AosOvJxYw.roa
File: 1-01DQDwBTDN925lJ18AosOvJxYw.roa (raw, json)
Hash identifier: iejKmgKjaGUhWQZ3c/86KCPachZ7xZs+3wP8EgmeNeo=
Subject key identifier: FB:4D:43:40:3C:01:4C:33:7D:DB:99:49:D7:C0:28:B0:EB:C9:C5:8C
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 018225C8FA237D38295E1ED0832496DCE963
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/1-01DQDwBTDN925lJ18AosOvJxYw.roa
Signing time: Fri 22 Jul 2022 12:01:44 +0000
ROA not before: Fri 22 Jul 2022 12:01:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203888
IP address blocks: 2a0e:aa07:e045::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:25:c8:fa:23:7d:38:29:5e:1e:d0:83:24:96:dc:e9:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jul 22 12:01:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb4d43403c014c337ddb9949d7c028b0ebc9c58c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d1:18:f6:c6:81:ad:58:31:9f:af:cc:24:19:
3c:c8:5d:18:a7:82:bf:cc:76:c3:c4:ae:06:00:b6:
d3:aa:f0:b6:40:cd:1f:45:40:2f:ec:74:3d:85:82:
76:91:5b:59:6c:3e:43:78:be:11:14:e5:7c:1b:4d:
ab:fc:99:9b:3e:27:34:c9:9b:61:93:58:49:da:51:
24:4d:98:9f:ed:6e:67:6d:27:63:d1:7f:98:0f:a0:
8e:36:dc:e2:36:a4:7b:f0:3e:b5:f3:18:4f:c6:27:
34:77:d3:f7:85:26:6a:67:99:40:e7:76:36:d3:92:
ca:b6:57:6c:02:69:8c:e0:a7:93:d4:98:29:f5:cb:
c2:23:77:fd:b4:a5:49:81:4f:7b:a0:58:ce:99:5a:
d9:b7:05:e6:bb:d8:ef:4b:11:cd:5d:48:27:8c:d3:
82:78:72:1b:61:9c:9a:2a:dd:df:4f:d8:95:d2:d1:
64:2c:0f:5c:04:e6:e4:c2:b6:aa:d0:4b:50:c1:c8:
fb:8d:1e:77:d0:2b:ba:14:88:5c:93:f7:09:8f:75:
64:89:3b:31:31:74:89:bd:de:fd:00:ec:01:26:5e:
f3:40:86:54:c3:ab:53:c5:df:18:ea:2c:81:79:46:
d7:66:00:c1:1b:da:4d:80:d9:ff:d8:e8:82:f9:bc:
80:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:4D:43:40:3C:01:4C:33:7D:DB:99:49:D7:C0:28:B0:EB:C9:C5:8C
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/1-01DQDwBTDN925lJ18AosOvJxYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e045::/48
Signature Algorithm: sha256WithRSAEncryption
99:0c:5f:a4:3a:58:e7:cc:f5:c7:97:b7:8e:8b:b1:a3:3a:54:
19:fe:71:19:53:eb:28:1e:db:e0:38:3a:f9:bd:4c:b7:9d:73:
dd:34:2c:d9:36:79:61:d1:5d:6e:1c:1b:6a:e2:75:eb:75:ff:
0e:13:94:11:26:bd:de:6b:b2:f9:68:b7:e4:52:28:c8:fa:8a:
d6:c4:f8:4a:15:8e:aa:72:db:59:af:1a:63:26:5d:e8:79:42:
ae:57:2b:18:46:fc:0d:48:cf:1b:4e:66:59:07:a0:40:ee:59:
47:ed:be:fd:d6:ab:af:ab:3b:52:4a:5a:4e:8b:34:02:f8:74:
09:0b:f1:9c:6e:a7:d6:0b:e9:a1:aa:f3:b9:38:ab:d2:cb:27:
ce:40:28:a7:91:d0:03:eb:54:d9:dc:cf:eb:f7:f9:58:df:d6:
7e:ee:22:f1:45:a4:1a:c7:6e:d1:5a:a5:7a:51:71:a4:f9:9f:
46:e4:ef:b9:8d:00:85:67:35:37:6e:52:0a:2b:7f:77:67:7e:
1b:b5:c8:db:b2:52:8c:18:a8:b0:70:8d:bf:f4:de:38:9e:e7:
dc:de:5f:38:20:d1:8f:de:da:67:72:e5:17:b1:7c:1d:98:4a:
be:23:eb:e8:9e:a9:e9:82:dd:38:01:f0:58:ff:02:60:7a:10:
fb:45:7f:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:10 2024 by rpki-client on console-ams.rpki-client.org