Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/bp45Xf0L7F3TQZYAjZLXbsftaIA.roa
File: bp45Xf0L7F3TQZYAjZLXbsftaIA.roa (raw, json)
Hash identifier: 3AyCQcsYqKEhQLgFtOO6CTAAeqr8QulVNdHQUWR+VZs=
Subject key identifier: 6E:9E:39:5D:FD:0B:EC:5D:D3:41:96:00:8D:92:D7:6E:C7:ED:68:80
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 0980BE0A
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/bp45Xf0L7F3TQZYAjZLXbsftaIA.roa
Signing time: Sat 01 Jan 2022 09:04:08 +0000
ROA not before: Sat 01 Jan 2022 09:04:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211162
IP address blocks: 2a0e:aa07:e01f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159432202 (0x980be0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 09:04:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e9e395dfd0bec5dd34196008d92d76ec7ed6880
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:37:e7:f1:94:13:6f:96:47:da:24:36:64:3a:
8e:75:22:9a:10:aa:d6:19:1f:f0:34:02:18:b4:de:
b0:56:95:6d:86:0d:d6:26:04:2a:3b:93:d9:10:cd:
00:42:97:d7:a5:68:80:8e:7b:b9:c4:c8:4e:ae:65:
56:1a:ec:4c:59:df:08:82:56:cf:44:85:0c:b8:46:
57:07:d0:aa:ef:cd:3d:ff:09:61:85:89:e8:5c:0a:
0d:6d:b4:94:15:ff:e0:ae:f3:2c:38:63:a1:57:d3:
b0:68:bf:b6:33:12:73:19:4f:f8:a9:71:de:aa:be:
28:95:41:9b:74:3b:3a:8a:76:5e:c1:26:9b:6f:86:
92:1e:88:c0:77:cb:b1:0a:95:59:43:b7:a4:0b:8e:
51:97:20:d3:0b:86:57:18:5d:1d:6a:5b:44:72:73:
e6:29:5d:2f:72:b6:fa:cb:bc:c0:e2:bb:b3:5f:96:
e0:74:10:cd:e0:04:3b:c2:43:6e:ec:47:b5:b6:26:
87:03:00:3c:9e:9e:f2:91:82:2b:a3:e1:08:63:08:
99:fa:ed:da:37:5a:37:92:99:cf:33:26:9e:3b:e0:
c7:cb:38:2c:3e:6c:ee:15:6a:6b:d6:a2:26:7c:e5:
89:14:d8:fa:5a:34:32:41:6b:6c:85:1e:ae:78:20:
6c:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:9E:39:5D:FD:0B:EC:5D:D3:41:96:00:8D:92:D7:6E:C7:ED:68:80
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/bp45Xf0L7F3TQZYAjZLXbsftaIA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e01f::/48
Signature Algorithm: sha256WithRSAEncryption
a6:fe:ff:6a:cc:84:9a:f7:57:2b:76:61:37:87:07:21:81:77:
ee:62:03:43:12:14:d8:79:a5:b8:02:eb:0b:c2:f2:a0:e4:ef:
9c:22:ae:e2:ab:d5:b6:d0:0c:94:a3:41:39:7b:f3:20:01:a8:
ee:9c:39:64:b3:44:3e:19:db:3a:f7:05:e7:d4:71:33:24:19:
0a:03:ef:31:12:7c:e1:f6:35:7e:7b:69:42:df:36:8c:a9:57:
eb:33:f9:98:ea:be:3f:1b:02:73:72:6e:b2:40:a9:35:20:cf:
c1:32:e8:bf:1f:cb:23:5c:b7:34:d2:4a:80:9b:a7:a9:7a:ab:
49:07:58:5a:c8:b3:27:43:07:fc:99:cd:48:98:03:73:bd:45:
51:cf:b9:0c:10:ab:ac:4d:1f:bb:62:31:da:6c:41:fa:e4:ac:
56:95:89:1f:8a:ec:a6:f2:7e:80:d6:e5:67:4d:cc:db:68:da:
85:4b:88:cb:b8:61:98:50:68:a8:97:52:0b:a8:ef:71:eb:84:
41:2a:18:df:b5:6b:62:83:40:cf:85:ab:fe:e3:e4:a3:69:05:
32:8d:bd:0c:98:e5:29:40:e8:88:9b:60:70:1a:12:98:c3:0a:
07:0a:d5:6b:0e:c6:77:a3:e3:91:ae:fe:ad:33:be:58:a9:02:
ae:99:e1:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org