Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/_4s2iyVO2RXnsCN0vy2UNpfjXSU.roa
File: _4s2iyVO2RXnsCN0vy2UNpfjXSU.roa (raw, json)
Hash identifier: hBMZwLMPY++qgp5RPZriY1zZWkhE6v0Uoa1p8advTzc=
Subject key identifier: FF:8B:36:8B:25:4E:D9:15:E7:B0:23:74:BF:2D:94:36:97:E3:5D:25
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 0A722C43
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/_4s2iyVO2RXnsCN0vy2UNpfjXSU.roa
Signing time: Fri 15 Apr 2022 02:15:46 +0000
ROA not before: Fri 15 Apr 2022 02:15:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205825
IP address blocks: 2a0e:aa07:e039::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175254595 (0xa722c43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Apr 15 02:15:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff8b368b254ed915e7b02374bf2d943697e35d25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:3e:63:0a:97:e2:58:55:9b:4a:7d:cc:e6:50:
d3:f0:52:15:d6:cd:5f:c3:b5:5a:2b:d3:a3:73:3a:
b1:df:bc:da:49:50:ba:f3:17:1d:5e:f4:8b:68:ca:
e2:48:05:2e:ab:3e:a5:c3:c0:7d:0e:79:8e:d8:2c:
48:cc:d8:8f:e1:21:96:48:58:23:46:2a:43:ed:97:
cd:c1:2e:69:66:ff:cd:72:5a:4d:8b:6d:46:05:54:
69:21:29:2a:0e:99:1c:6a:7d:95:0a:e3:b8:18:ab:
21:a5:c8:4d:03:2a:c3:46:bf:04:90:4d:da:10:12:
53:f8:d6:1c:3c:7e:cb:b4:24:b0:f7:0a:73:20:8d:
2e:a3:87:80:56:f9:e0:bc:29:51:19:7c:c9:a1:39:
2e:85:84:f9:92:88:62:64:2a:c2:24:0a:ef:31:b1:
12:a9:d5:d5:60:17:0d:8c:6d:57:f9:98:b1:23:32:
50:a4:1c:66:cb:ee:08:36:74:e1:0e:81:4a:58:43:
2c:a6:3b:37:a5:08:b3:bb:ef:9a:b0:68:87:5f:80:
5e:90:5c:ef:89:a5:78:08:52:91:b8:12:ce:2d:05:
c2:31:a7:83:bc:7a:a4:a4:81:6b:ae:e4:39:40:7d:
76:4e:0f:52:3a:9f:f7:40:e9:08:b6:d6:b3:c7:fe:
51:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:8B:36:8B:25:4E:D9:15:E7:B0:23:74:BF:2D:94:36:97:E3:5D:25
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/_4s2iyVO2RXnsCN0vy2UNpfjXSU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e039::/48
Signature Algorithm: sha256WithRSAEncryption
4a:a7:ce:ab:c1:14:b2:4d:43:cd:8c:84:24:b2:6d:47:92:55:
a9:60:41:bc:b4:3e:51:8a:52:33:6e:b2:95:9c:5c:67:6d:57:
1e:c8:e2:44:70:4d:af:26:4b:04:c6:74:d6:3c:7d:29:c6:ec:
76:91:4e:c4:89:b2:28:b0:98:07:6c:46:75:aa:22:c5:96:82:
eb:6e:5d:89:b2:fb:d0:48:25:2a:fd:d0:85:db:d2:de:99:0d:
08:1a:eb:96:96:6c:c2:78:9c:c3:50:1c:8b:ad:c2:68:ed:14:
de:13:11:f5:53:1b:1f:d5:26:ab:21:c6:49:fa:65:a5:93:d0:
54:96:bb:eb:fb:f3:b0:5f:fe:89:c0:ed:cc:77:8b:4f:4b:97:
1e:f8:54:02:fd:fb:39:4b:dd:b1:2b:0d:99:7a:04:fb:5e:5d:
e0:dc:76:4e:50:1e:bc:71:19:5d:e6:09:1f:40:64:09:d5:2e:
29:2d:b4:f6:a6:97:6f:ca:13:32:88:d2:c1:b3:75:78:f7:17:
d1:c6:60:d4:5e:57:bf:b1:55:3c:30:c8:cf:c6:3b:af:75:6d:
24:f4:d0:e0:0a:c6:07:29:13:a3:ab:42:8b:46:42:2b:a8:e4:
37:5e:d2:f8:bc:70:b1:88:42:4e:37:aa:29:f3:78:6f:7d:6b:
a5:d5:3a:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org