Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/bHkUZ7m1hAjQ5OII1jhAfneXkDc.roa
File: bHkUZ7m1hAjQ5OII1jhAfneXkDc.roa (raw, json)
Hash identifier: PtA3mPENqFXGtezOkcpX9Bs/DRd000jNjz9D3G3MBlA=
Subject key identifier: 6C:79:14:67:B9:B5:84:08:D0:E4:E2:08:D6:38:40:7E:77:97:90:37
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 09845161
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/bHkUZ7m1hAjQ5OII1jhAfneXkDc.roa
Signing time: Sat 01 Jan 2022 09:04:12 +0000
ROA not before: Sat 01 Jan 2022 09:04:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212733
IP address blocks: 2a0e:aa07:e029::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159666529 (0x9845161)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 09:04:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c791467b9b58408d0e4e208d638407e77979037
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:d9:9a:9d:0f:9d:dd:92:3c:fe:c6:aa:d1:01:
46:9c:2b:3a:e5:fd:8a:87:c8:12:33:b9:e6:28:c7:
03:87:ab:c5:f0:b0:ae:ef:d6:48:af:ee:a4:83:90:
bd:b0:28:97:e6:4c:cb:a7:04:14:5e:e7:bf:35:53:
3b:2c:65:e0:92:4d:88:c7:70:85:0b:c2:c5:4f:6e:
3c:02:90:a7:1d:0d:c3:98:2b:d2:12:56:a9:df:5e:
89:67:99:f0:8a:54:63:ee:16:c3:38:03:9c:ae:e4:
1a:c0:c8:a5:48:a3:36:09:89:91:1b:86:7c:9f:83:
b0:c7:42:30:bd:50:d8:86:9a:d4:49:77:1c:c8:c3:
28:08:45:9d:40:1e:18:b0:0b:ea:d6:4d:ca:fb:d5:
df:f5:24:af:bb:dc:b5:f2:a9:50:9d:12:b0:c6:ee:
57:7d:58:07:2b:4b:c5:8c:98:74:c6:d0:a3:59:ef:
cd:1f:0f:5b:f0:ad:c8:7e:05:9b:62:a4:48:92:13:
93:56:7f:de:69:24:00:10:34:1c:bb:18:03:d8:78:
e1:f8:c4:3d:30:83:ed:eb:95:0f:23:1e:1c:ec:2c:
df:aa:88:db:ad:14:de:b8:ef:5f:8f:0c:59:45:57:
c2:9b:a2:ce:cd:bc:ab:fc:b3:21:fb:51:f4:c8:f4:
56:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:79:14:67:B9:B5:84:08:D0:E4:E2:08:D6:38:40:7E:77:97:90:37
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/bHkUZ7m1hAjQ5OII1jhAfneXkDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e029::/48
Signature Algorithm: sha256WithRSAEncryption
75:2c:6c:97:c4:ae:3b:7e:74:d2:f8:5f:d3:8d:82:e8:3b:eb:
55:e5:5c:76:ed:46:43:6c:4c:cc:ad:64:3b:37:ab:90:f5:23:
c9:3e:63:eb:d1:20:d8:98:92:ed:3b:23:25:0b:33:fe:69:f4:
93:cc:a6:9f:4e:31:f8:29:0d:89:aa:c9:83:e2:5c:41:ba:01:
88:31:34:89:25:d1:e3:56:c3:84:47:4f:27:ad:87:73:70:29:
8a:d4:74:24:d4:48:60:80:d5:cc:9e:6e:94:19:f2:80:b4:a3:
73:e1:af:67:31:ad:54:5b:71:88:a3:59:dc:f9:10:a8:78:6f:
f2:e0:7d:3c:6e:3d:26:b3:b5:25:21:f1:54:34:b1:b7:78:90:
1e:c3:7f:cb:46:bc:aa:c6:e5:ae:55:6e:23:e3:3e:55:b2:96:
37:63:f5:0a:13:49:69:00:00:9c:0d:cc:56:fd:da:a5:04:84:
ac:73:b9:27:3d:9b:c9:87:d4:5b:c2:9a:41:dc:61:6b:05:a2:
ba:04:8d:ce:8d:16:04:af:07:23:c3:a6:2d:86:82:a2:19:50:
f6:9b:84:f5:8c:d3:72:31:02:16:48:f6:2b:ab:f2:c7:92:b6:
ed:ed:67:e3:52:3b:65:ba:6f:99:3e:be:52:3c:69:06:30:65:
42:c1:a4:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org