Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/2J1zAVIhUSi8SFVDBlx58m4iPjc.roa
File: 2J1zAVIhUSi8SFVDBlx58m4iPjc.roa (raw, json)
Hash identifier: uuhDWCKZZ99/9OvwG/KUVNkLttAhA07mrnrKjaogBsc=
Subject key identifier: D8:9D:73:01:52:21:51:28:BC:48:55:43:06:5C:79:F2:6E:22:3E:37
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 0AFE846F
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/2J1zAVIhUSi8SFVDBlx58m4iPjc.roa
Signing time: Fri 10 Jun 2022 16:08:03 +0000
ROA not before: Fri 10 Jun 2022 16:08:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204721
IP address blocks: 2a0e:aa07:e040::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 184452207 (0xafe846f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jun 10 16:08:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d89d730152215128bc485543065c79f26e223e37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ea:13:37:1c:83:44:3d:41:a2:33:d4:c5:7b:
4c:f9:d5:9c:d4:bf:56:59:1c:9b:50:26:4f:03:7d:
58:f7:fa:fc:fe:57:67:0b:dc:c7:35:b3:96:12:71:
d1:87:2d:73:f0:ff:6d:32:cb:e3:1c:82:5c:03:8b:
21:ec:a7:6d:13:93:2e:7c:4c:5e:d1:f3:4f:14:c7:
06:19:8b:ad:76:da:5b:18:bd:bc:7f:b1:02:c8:6a:
88:31:12:e5:92:3e:d0:38:97:05:08:78:a8:d6:02:
93:0e:7e:2d:d5:70:9e:47:a3:b5:b5:26:f4:59:ed:
b5:9d:81:bd:24:49:d5:5e:64:b5:65:15:a0:23:54:
9c:74:d7:0f:2b:33:26:68:e2:85:c1:86:3e:11:4e:
fc:bf:6c:6a:66:07:27:6a:4d:1f:c4:e3:7b:75:b9:
7a:14:99:d7:f1:a7:bc:2b:8e:ff:8c:65:de:ba:45:
fb:9d:d4:7f:85:20:09:62:35:47:91:e7:62:06:9c:
a4:46:a6:e0:3d:a6:86:ef:57:0a:ed:83:2a:b6:46:
09:9b:bf:4b:f1:41:a6:ff:2e:5e:20:ef:45:95:88:
39:cf:dd:df:2e:17:c4:03:67:b4:1a:b2:d8:dc:7d:
e0:64:c9:fb:53:32:1c:5d:30:47:5a:48:3b:c8:9a:
64:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:9D:73:01:52:21:51:28:BC:48:55:43:06:5C:79:F2:6E:22:3E:37
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/2J1zAVIhUSi8SFVDBlx58m4iPjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e040::/48
Signature Algorithm: sha256WithRSAEncryption
39:0a:bb:ed:22:14:22:32:78:32:3e:07:a1:69:f8:27:39:d7:
3b:bb:2e:06:8a:81:98:92:5d:b7:d5:56:8d:f7:a1:6c:c1:be:
de:20:0f:80:bb:bb:67:e0:0b:b8:82:55:26:49:bc:00:37:6c:
05:a0:5a:61:3d:4c:7f:77:ef:44:5b:c8:3e:f8:c3:fe:06:a0:
1b:49:ef:40:be:2e:68:dc:1c:62:79:ee:ba:79:6c:52:21:da:
ec:7c:4e:4e:e0:56:a1:9d:0b:9e:27:de:8f:4e:48:10:3b:6c:
76:4a:ca:57:59:7f:1b:91:a0:53:74:76:40:c3:64:d6:1e:2e:
d0:90:da:6e:f4:91:6d:e7:5b:0b:c7:3e:7f:cf:a4:c8:dc:1a:
ee:45:fd:37:0b:73:59:1a:7b:75:de:74:6f:f6:9c:5b:4e:e1:
a0:fa:51:b3:de:51:44:f6:f6:af:ba:9c:f6:01:2e:15:2d:2f:
23:61:3c:e7:aa:8b:e2:83:24:e5:93:01:c1:a0:e8:40:eb:d2:
2e:0a:06:6b:d1:61:19:d2:9a:bc:db:b5:bd:98:3c:81:3a:f1:
21:f4:8d:6e:30:9a:a8:83:3b:3a:1a:93:94:ce:06:b4:c4:de:
06:51:05:1c:3d:b5:e1:89:31:bc:ce:c6:46:de:64:ae:bc:00:
11:d5:d9:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:31 2023 by rpki-client on console-fra.rpki-client.org