Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/5FPxtvUdOlLlE7Yzy9EVAIygbHQ.roa
File: 5FPxtvUdOlLlE7Yzy9EVAIygbHQ.roa (raw, json)
Hash identifier: AX5ufMnqUF/yoGdvATnxxlcAprvlK6N6/aYfv8bCjcg=
Subject key identifier: E4:53:F1:B6:F5:1D:3A:52:E5:13:B6:33:CB:D1:15:00:8C:A0:6C:74
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 097364F4
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/5FPxtvUdOlLlE7Yzy9EVAIygbHQ.roa
Signing time: Sat 01 Jan 2022 09:04:02 +0000
ROA not before: Sat 01 Jan 2022 09:04:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209306
IP address blocks: 2a0e:aa06:400::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158557428 (0x97364f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 09:04:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e453f1b6f51d3a52e513b633cbd115008ca06c74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:46:52:6b:c6:c5:76:32:4b:a8:ac:02:97:cb:
92:6f:1c:3f:3d:58:15:0c:39:50:91:3e:41:75:71:
48:d9:f2:f7:84:b4:9a:15:e7:4d:c1:5e:00:a8:6e:
3c:3a:47:84:0a:a1:6a:57:82:38:5a:f3:b7:14:a7:
8e:9e:54:e3:0b:66:c2:b0:c0:1d:e3:d1:64:dc:fa:
60:fa:24:72:22:9b:f0:0c:78:1c:d9:1c:16:ef:15:
ae:e3:30:8d:06:a4:c7:2d:10:90:97:29:1c:05:51:
76:01:e6:e9:3c:b9:d9:da:56:2f:01:94:84:89:4c:
df:0f:85:f2:df:59:be:dc:56:52:e2:ca:ba:26:a4:
c5:23:6d:9e:93:df:3a:c8:54:6b:fc:d5:5f:07:47:
73:e6:dc:bf:36:b9:9b:36:66:ba:3c:fb:c4:bd:a1:
b7:9a:a9:f4:ad:83:98:6e:c8:d2:c5:ea:e5:76:f6:
88:dd:c8:e4:58:05:f4:58:b4:8c:8a:57:2e:99:25:
36:1a:61:ea:64:d9:1d:98:76:b5:d4:31:c9:a9:5b:
7c:a9:30:86:3e:fc:12:a7:0f:6b:c7:2e:36:74:bf:
ec:f2:a9:42:46:9f:a5:d4:d7:11:80:e1:f5:cf:05:
2a:30:67:df:34:57:14:17:12:e1:71:3c:a0:98:0c:
23:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:53:F1:B6:F5:1D:3A:52:E5:13:B6:33:CB:D1:15:00:8C:A0:6C:74
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/5FPxtvUdOlLlE7Yzy9EVAIygbHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa06:400::/44
Signature Algorithm: sha256WithRSAEncryption
b6:aa:18:51:81:93:d9:15:b8:9d:ef:bb:c6:98:a7:14:45:37:
eb:b3:6d:68:f1:45:24:63:83:b4:3a:08:24:ec:76:6d:d7:5c:
56:31:d0:15:48:1e:1a:4f:9d:54:14:12:85:56:59:0a:56:a5:
4c:73:24:a6:73:ea:4d:0d:04:79:71:c1:74:73:70:31:9c:a6:
ba:a7:1a:3b:46:15:89:73:78:49:2a:55:ec:71:45:3d:1f:fa:
cb:cf:69:26:80:48:86:0e:28:77:3a:d3:05:98:c8:ed:de:be:
f3:82:dd:8e:c6:44:ec:3b:3b:71:5e:d1:d6:fb:e7:73:e8:fd:
68:66:3d:b4:27:7c:e8:67:4a:8c:40:5c:d6:1c:04:1f:3e:d7:
14:99:a4:00:9d:7c:6c:b3:7b:21:bb:16:2d:e7:fc:8f:0f:29:
11:78:d6:7d:db:f1:85:e8:b0:49:6a:62:ef:f0:19:7f:bd:a1:
f5:ca:c4:6b:0a:0c:db:2f:71:4a:36:16:5f:5a:e0:f0:b9:43:
1a:d3:ac:38:59:26:5e:5b:65:11:3e:09:23:9f:7d:c2:b8:0d:
74:2d:5c:84:4b:88:7c:15:d8:d7:b4:27:eb:3e:16:7b:ff:a3:
0d:ff:bb:7d:7c:e0:55:22:d8:ea:be:a5:2c:66:a7:81:d7:46:
c9:61:e9:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:09 2023 by rpki-client on console-ams.rpki-client.org