Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/R4i_5J7j7Th_a0SygPTD1t7rLMk.roa
File: R4i_5J7j7Th_a0SygPTD1t7rLMk.roa (raw, json)
Hash identifier: aAlFasTJ5RUA3fp7RnsUB11oHick9W1ytuxQ4iTeBxk=
Subject key identifier: 47:88:BF:E4:9E:E3:ED:38:7F:6B:44:B2:80:F4:C3:D6:DE:EB:2C:C9
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 096F532B
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/R4i_5J7j7Th_a0SygPTD1t7rLMk.roa
Signing time: Sat 01 Jan 2022 09:03:59 +0000
ROA not before: Sat 01 Jan 2022 09:03:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208680
IP address blocks: 2a0e:aa07:f0e0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158290731 (0x96f532b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 09:03:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4788bfe49ee3ed387f6b44b280f4c3d6deeb2cc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e5:c3:29:02:18:f9:cb:e0:3c:3c:e9:8f:ab:
e6:ce:42:ab:f5:fd:52:bf:77:4a:96:df:b6:8c:cc:
ed:07:88:c7:b1:7c:d9:7e:9e:49:81:92:82:0d:ec:
20:a8:cf:cd:8d:cb:dd:e7:4b:af:f8:c4:5b:e6:a6:
91:d7:88:9a:a1:17:be:6b:62:73:b3:9d:b5:17:45:
87:2c:8c:ce:90:dc:08:d4:74:33:84:95:eb:51:1a:
a7:c5:09:83:06:6f:b3:32:e7:5b:43:0a:7e:d8:d2:
7f:e1:da:c4:eb:0a:43:72:e6:8d:52:ee:6f:c9:2c:
ab:e3:55:56:01:9e:1e:ca:b0:5c:ff:f4:de:0f:09:
1c:06:f8:7b:a7:c6:bd:24:86:b7:58:b3:d8:c8:4d:
32:b0:ca:24:13:39:15:ef:c0:58:06:36:79:5b:76:
b2:ff:97:76:1c:f0:99:22:3d:ec:96:df:ae:0a:ea:
71:e7:11:f6:2f:eb:b6:4b:0f:0a:ab:03:22:29:3b:
38:96:4b:c1:9d:40:8e:aa:fe:b3:cd:fb:6c:86:9a:
72:36:4b:28:00:0a:65:b0:11:f7:fc:7c:54:e7:e7:
df:a9:d6:79:a4:06:dd:bd:50:b2:0b:f7:ce:ac:46:
1e:ac:85:09:8f:a0:8e:83:49:81:89:f1:f3:25:27:
c0:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:88:BF:E4:9E:E3:ED:38:7F:6B:44:B2:80:F4:C3:D6:DE:EB:2C:C9
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/R4i_5J7j7Th_a0SygPTD1t7rLMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:f0e0::/44
Signature Algorithm: sha256WithRSAEncryption
26:5b:7e:1c:79:a0:0e:45:76:6b:e4:22:d2:ad:72:03:f5:3f:
7e:5d:39:04:76:77:24:00:89:b5:54:14:0d:a5:8b:8f:36:32:
53:75:e4:c9:b6:d1:73:f5:0c:65:8d:d8:b2:e9:61:a0:39:bd:
7b:76:60:cf:6b:eb:e5:f1:a8:19:f1:4c:8a:93:8f:90:7c:d6:
69:09:9c:58:a0:de:47:98:9c:44:c0:63:c7:3a:07:e8:2b:ce:
93:ab:f6:e5:bb:b1:67:68:3f:91:a5:a3:a3:03:de:b3:b0:33:
4c:5d:ce:52:32:0c:24:98:c6:d2:05:cd:7a:97:a7:2c:40:f9:
9c:7d:d5:a8:5e:5f:35:d2:95:32:6f:99:6a:00:e3:79:86:f9:
0f:a7:b9:14:1e:f8:cc:f1:ee:9e:3d:03:49:bc:90:2c:8f:6b:
fd:ce:7b:19:2f:bb:bb:11:a4:7a:12:ac:05:b9:6b:6f:14:ff:
6b:e7:ab:3d:07:7a:c1:a6:a7:bd:5e:85:64:31:4f:1d:ae:9b:
9a:11:3f:4c:9b:99:ea:93:40:76:1f:ad:bd:44:9f:de:0e:c5:
2d:21:97:9a:81:c2:78:95:a9:b9:22:ee:26:60:c8:ee:98:03:
b9:cb:7e:b0:f7:c6:8c:42:7c:71:b2:cb:c4:6e:0a:3d:c0:6e:
c4:18:a6:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:11 2024 by rpki-client on console-ams.rpki-client.org