Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/PPdBGP7ttsbmRa0nWn5MRlmBs1I.roa
File: PPdBGP7ttsbmRa0nWn5MRlmBs1I.roa (raw, json)
Hash identifier: jO4nAHEtgzFMC6mL04c8r+r3km+73LJQVmWNtpfmhTY=
Subject key identifier: 3C:F7:41:18:FE:ED:B6:C6:E6:45:AD:27:5A:7E:4C:46:59:81:B3:52
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 09C216C6
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/PPdBGP7ttsbmRa0nWn5MRlmBs1I.roa
Signing time: Fri 28 Jan 2022 16:37:55 +0000
ROA not before: Fri 28 Jan 2022 16:37:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209391
IP address blocks: 2a0e:aa07:e031::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163714758 (0x9c216c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 28 16:37:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3cf74118feedb6c6e645ad275a7e4c465981b352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:6d:b4:bc:65:28:d9:2f:fb:6f:ea:8c:b5:60:
38:c2:9d:9b:ea:89:b8:23:c3:57:24:6b:9d:67:8e:
9a:86:b2:0d:1c:6a:f1:b5:35:3c:c3:b0:ed:d9:49:
c1:55:22:ab:f7:46:4a:3a:b5:5e:e2:d0:4b:b4:1d:
91:6d:30:18:15:38:52:9a:3f:3a:f2:7f:54:dc:82:
52:10:76:86:a6:1f:a8:b4:9f:13:fd:78:75:a9:92:
d8:dc:b5:76:1d:76:03:c9:95:56:e2:6f:b7:70:cb:
1c:9e:e2:7f:43:85:3d:57:a2:b8:5a:80:64:85:20:
16:4d:85:b1:e8:71:44:fb:5b:50:b0:64:c4:de:05:
36:b5:ce:cc:8f:ce:f0:52:8f:aa:06:d5:5a:88:e4:
3e:bf:38:c0:b7:d4:e9:b8:cb:03:7c:ea:09:d6:83:
a0:b7:24:5c:d8:26:da:33:c5:e8:0b:c7:ba:81:6c:
f0:c4:af:90:42:70:b7:94:35:61:a4:98:dc:c2:20:
83:f4:16:5c:0b:67:56:3d:f6:8e:e1:d9:2d:ca:cf:
71:62:b9:da:ba:04:bf:6d:b4:a5:12:8e:13:a0:d8:
68:11:d0:f7:a5:f4:a1:d1:79:c0:6c:b3:ba:3a:90:
4b:51:7c:e5:4b:86:47:d9:2f:ee:90:81:8c:0a:18:
71:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:F7:41:18:FE:ED:B6:C6:E6:45:AD:27:5A:7E:4C:46:59:81:B3:52
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/PPdBGP7ttsbmRa0nWn5MRlmBs1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e031::/48
Signature Algorithm: sha256WithRSAEncryption
c4:80:49:2a:71:82:38:dd:5d:6f:b9:50:8e:83:fc:a6:f2:87:
f6:71:a7:37:e2:94:9a:9e:d3:57:47:51:63:7e:21:28:01:82:
f0:99:5e:96:53:91:e7:29:71:63:fc:00:04:23:22:c8:6a:35:
9c:0b:a6:b2:e1:88:5b:9b:a3:0f:69:5a:93:6f:e8:45:c9:3a:
14:12:05:d1:8c:dd:af:d0:5c:10:de:b0:44:ed:1c:1b:e6:5e:
ee:61:8e:5a:df:19:a5:87:0b:ac:c6:55:c8:18:b0:63:ee:47:
87:d3:37:94:41:22:f5:90:eb:0d:a0:79:97:35:82:36:87:ca:
91:b6:97:7a:eb:65:d4:ce:12:9b:db:d9:67:a1:ba:4b:ba:a9:
e3:c6:6d:10:fb:d9:44:26:3a:04:65:88:a6:e7:3a:46:be:e6:
39:cd:b7:9e:77:89:c6:dd:fa:41:d1:92:05:1c:12:7c:02:a2:
dc:3f:2b:3b:ec:3b:3f:32:97:a8:15:79:24:60:33:38:55:8d:
00:37:51:44:52:e2:25:09:c2:d8:d7:b6:ee:9c:22:8c:20:7f:
91:66:4d:cb:f6:df:c2:8c:7b:60:98:3d:95:54:e2:cd:2e:f1:
b9:6d:d5:3b:bb:3d:72:8b:a1:23:fb:82:48:d1:b2:a4:13:33:
b9:10:f6:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:11 2024 by rpki-client on console-ams.rpki-client.org