Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/B8fuwFgCNNhTbm1PRg-ltCAyQLg.roa
File: B8fuwFgCNNhTbm1PRg-ltCAyQLg.roa (raw, json)
Hash identifier: 4A/7wtlNRVwF9SspLJR+S8sNgt1EZxWaevDUn4+Of/E=
Subject key identifier: 07:C7:EE:C0:58:02:34:D8:53:6E:6D:4F:46:0F:A5:B4:20:32:40:B8
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 0A9C1190
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/B8fuwFgCNNhTbm1PRg-ltCAyQLg.roa
Signing time: Thu 28 Apr 2022 17:04:34 +0000
ROA not before: Thu 28 Apr 2022 17:04:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209557
IP address blocks: 2a0e:aa02:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178000272 (0xa9c1190)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Apr 28 17:04:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07c7eec0580234d8536e6d4f460fa5b4203240b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c3:28:4f:68:ea:83:e0:0e:b4:a9:ea:fe:2e:
17:15:a9:6e:e6:b5:e8:3f:e3:cc:6f:ce:9f:5b:43:
1a:68:2f:e5:5e:80:5e:7e:69:4e:dc:2a:05:f7:2d:
c7:a4:7b:e5:61:d6:e2:d3:2e:94:9d:05:60:9a:af:
26:72:32:10:fe:80:46:f3:64:6e:a9:b9:9b:38:1e:
7a:07:f6:a6:25:5b:da:cb:91:aa:a3:b7:5f:ab:cc:
51:ab:c3:64:6a:9a:35:21:52:83:7d:e6:c4:84:77:
46:f5:ea:ab:b5:ca:f1:c3:6f:ff:77:47:01:cc:5a:
8c:11:99:76:49:79:44:8e:17:68:40:11:59:f0:1f:
a2:6f:2c:e6:d6:f0:96:d3:af:f7:18:d1:7b:80:b5:
72:c7:78:78:d4:bd:5c:8a:a6:f0:39:6f:01:9c:71:
03:fa:dc:ef:0d:ab:e1:aa:ec:cb:29:5f:c3:30:80:
99:0f:3a:7c:5f:4c:c7:20:f8:89:14:bd:f7:01:94:
c0:0d:9e:a6:22:89:d8:9b:5e:90:f3:4f:39:39:00:
21:a6:2e:fa:fd:23:ce:e5:b9:ff:b6:d7:c5:70:89:
4b:1a:1b:65:b2:04:1a:d1:98:aa:3b:6b:c6:09:af:
be:1d:61:30:76:b3:66:3e:c9:49:55:7a:75:79:93:
10:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:C7:EE:C0:58:02:34:D8:53:6E:6D:4F:46:0F:A5:B4:20:32:40:B8
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/B8fuwFgCNNhTbm1PRg-ltCAyQLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa02:1::/48
Signature Algorithm: sha256WithRSAEncryption
4f:83:ce:1d:29:50:60:86:fe:14:d5:c7:c3:07:2a:3e:02:61:
5b:f9:9a:40:6a:71:e3:5a:73:26:22:81:98:af:30:d4:9a:0c:
32:47:4e:df:2b:7e:73:bc:52:10:8d:e8:98:5a:1b:7d:93:4d:
08:c0:e4:0b:60:98:c0:8e:81:1e:ed:1b:4b:35:49:59:5f:6b:
9f:b1:25:e0:6e:84:56:a1:75:8e:05:32:21:6a:50:00:43:ca:
dd:73:90:66:f1:30:a6:86:33:1b:d6:a7:36:cb:bf:34:28:7c:
1d:24:b2:bb:c7:7c:7a:b4:99:a6:76:33:5c:c2:8a:c4:7b:50:
52:b7:cc:00:5e:00:3b:bd:e8:c8:97:a2:b8:8d:40:f8:a8:26:
4b:d5:48:68:40:02:cb:18:f2:c5:af:b2:a1:87:33:bd:67:56:
c7:93:55:a4:d3:e8:ac:38:4e:89:31:9d:48:de:d4:cb:23:b8:
b0:ce:59:ad:23:64:c7:36:fd:88:88:42:3f:e1:a1:32:e7:ea:
79:f2:58:26:20:bc:e3:5a:1d:85:e6:d8:54:75:90:f9:23:60:
9b:7e:4d:a2:b6:24:10:8a:91:b0:5a:f7:b4:a4:50:9c:6a:86:
98:fd:b5:91:e6:99:27:b9:05:63:b3:b4:f6:f8:40:43:fa:90:
e6:d8:ac:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:10 2024 by rpki-client on console-ams.rpki-client.org