Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/DkSvFJf2IwWXI5cKXCwUHa5VC5U.roa
File: DkSvFJf2IwWXI5cKXCwUHa5VC5U.roa (raw, json)
Hash identifier: tKPwf7raXW4Q7w2Axgby5zcyLbDtwNsSWxfGyfNugkM=
Subject key identifier: 0E:44:AF:14:97:F6:23:05:97:23:97:0A:5C:2C:14:1D:AE:55:0B:95
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 09909B09
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/DkSvFJf2IwWXI5cKXCwUHa5VC5U.roa
Signing time: Thu 06 Jan 2022 09:33:22 +0000
ROA not before: Thu 06 Jan 2022 09:33:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210110
IP address blocks: 2a0e:aa07:e02f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160471817 (0x9909b09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 6 09:33:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e44af1497f623059723970a5c2c141dae550b95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:97:ae:93:ae:80:3e:86:9c:f3:34:28:37:c8:
94:10:bc:b9:8c:2d:9f:d2:b8:2b:2c:74:ed:32:63:
ab:58:3b:c4:40:e2:fd:31:69:f1:6b:7a:15:51:c1:
63:fb:1c:1c:7c:49:ee:76:a7:e2:b8:89:5a:34:f6:
fd:bb:ad:94:60:8e:52:4b:e4:3d:0e:42:fb:62:63:
64:0f:0f:80:f9:3c:22:74:e0:53:39:ac:20:21:c5:
fa:0f:91:93:dd:d4:cd:ca:a8:5a:3e:cb:fc:fb:3b:
2b:f2:fe:b0:d3:63:ef:7b:ae:f6:f1:b6:76:95:89:
e4:70:2d:d6:76:73:8c:14:ad:1a:ba:d7:79:e0:ce:
6b:89:f8:1f:66:e2:f2:66:27:e4:8b:4e:11:f8:36:
b5:f7:2a:e3:29:d2:1c:4a:11:42:61:ad:5d:68:33:
f4:cc:6b:7a:27:94:76:b7:c0:00:86:98:42:21:7b:
1b:48:d2:73:77:25:8b:42:93:ca:5e:78:0a:a8:cb:
23:28:2d:b6:7e:e6:77:69:d5:77:8f:ba:1a:bf:55:
ed:29:9b:cc:ab:ff:3e:8f:c3:f8:b7:8d:2b:45:8e:
e3:3c:e7:95:ed:68:2d:5e:6b:a5:43:6b:c2:24:8c:
58:6e:b0:20:4b:a3:46:3e:80:56:26:ae:dc:27:57:
a1:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:44:AF:14:97:F6:23:05:97:23:97:0A:5C:2C:14:1D:AE:55:0B:95
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/DkSvFJf2IwWXI5cKXCwUHa5VC5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e02f::/48
Signature Algorithm: sha256WithRSAEncryption
bc:19:8b:d7:d8:29:5d:dd:38:8e:1e:a5:5c:cb:2b:55:33:42:
0d:8c:31:0e:20:ea:9f:e2:a8:34:9c:25:6c:c9:cd:74:f9:bf:
ea:71:ba:1d:4d:38:e3:fc:77:d0:e4:b5:8f:9d:83:f2:7e:02:
6a:5d:c6:97:92:03:83:5b:ae:a4:ba:0a:54:1d:48:20:c3:36:
0c:1f:fc:04:88:c3:7b:f7:52:c3:68:64:9e:89:11:eb:71:1f:
07:a7:50:24:0c:08:ba:40:ae:93:a9:0d:42:da:a7:03:6d:c1:
46:83:d1:b0:70:f0:b9:df:89:34:5a:8d:24:bf:6b:40:8a:0b:
e8:fc:6c:64:93:6d:1f:ca:d6:ad:7c:c5:f0:47:b2:bf:d0:75:
9c:e7:bd:e8:ec:27:07:66:b2:4b:de:ae:84:82:e6:1d:d7:eb:
15:86:1d:f4:79:2b:ff:ff:56:8f:7f:ef:12:34:8b:76:8b:e3:
b1:1d:e0:c1:b5:c2:84:7c:99:7b:fc:6f:55:69:6e:8f:13:be:
6f:36:bc:8c:05:80:39:9d:2b:16:aa:70:82:e2:6a:ed:cc:59:
4c:d6:94:12:4e:a8:6c:d6:3b:5f:93:bc:0a:b0:3f:ba:a9:98:
7b:22:83:24:58:1b:42:de:7d:75:c6:41:5d:60:98:62:6d:33:
10:a9:15:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org