Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/d1E-yqxD5tnlz60P3XtP6Yg23aA.roa
File: d1E-yqxD5tnlz60P3XtP6Yg23aA.roa (raw, json)
Hash identifier: FkqKlIuGW6WGHBXLZ6q5cOrWgaanhQkbdxyShMm24iw=
Subject key identifier: 77:51:3E:CA:AC:43:E6:D9:E5:CF:AD:0F:DD:7B:4F:E9:88:36:DD:A0
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 0A9A4A46
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/d1E-yqxD5tnlz60P3XtP6Yg23aA.roa
Signing time: Thu 28 Apr 2022 16:38:39 +0000
ROA not before: Thu 28 Apr 2022 16:38:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208577
IP address blocks: 2a0e:aa07:e03c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177883718 (0xa9a4a46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Apr 28 16:38:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77513ecaac43e6d9e5cfad0fdd7b4fe98836dda0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:82:13:30:cb:62:a2:be:73:04:a9:9f:78:3c:
cf:39:3b:a0:af:bb:c3:fb:9d:c3:f0:b7:c8:f0:d2:
f2:b8:40:c3:56:f4:e1:a7:f1:04:64:56:1a:cf:8d:
e6:b6:83:6b:a5:ad:ef:61:b4:92:02:f9:fa:81:70:
98:58:d6:43:59:fe:3c:c2:b4:c8:b4:86:10:ef:a5:
9a:03:bc:d7:ec:4d:b8:50:32:44:24:94:e7:0b:0a:
43:21:46:74:40:f0:d4:b7:8c:64:54:85:52:13:73:
c6:b7:bf:77:73:eb:27:4a:54:17:84:77:25:2c:74:
e0:57:f2:17:a8:dd:71:a1:5d:9d:c2:8d:98:cf:0a:
b2:8c:66:20:89:51:c6:88:8f:8b:bb:46:91:95:27:
16:5a:dc:2f:52:6b:56:dc:02:e9:53:f1:75:a1:ee:
7f:c6:f3:f3:a9:12:23:f4:09:96:68:32:38:03:4d:
4d:aa:7c:9b:49:88:78:dd:13:51:a9:88:a0:44:c9:
a6:d9:28:aa:9c:6b:1f:1e:cf:47:db:82:13:1a:4d:
4e:54:8a:f9:00:88:45:98:5c:87:e0:d4:77:36:56:
cf:e0:67:0e:c0:b5:0e:9f:16:71:aa:5c:d4:56:df:
23:ca:7f:70:5b:1a:27:ed:af:7d:14:ba:ee:02:45:
d6:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:51:3E:CA:AC:43:E6:D9:E5:CF:AD:0F:DD:7B:4F:E9:88:36:DD:A0
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/d1E-yqxD5tnlz60P3XtP6Yg23aA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e03c::/48
Signature Algorithm: sha256WithRSAEncryption
be:65:aa:3b:11:c3:94:d9:76:a2:57:3c:fd:b6:89:af:13:c0:
15:35:44:5e:25:af:18:7d:50:ef:2c:b5:a5:4f:a7:57:01:b6:
0f:5a:6d:32:43:78:d5:69:42:c5:5a:c9:9d:e5:56:e8:34:55:
d7:43:31:41:6f:18:80:50:cd:50:74:6d:c4:30:1c:94:b1:2c:
4a:ed:be:3e:c7:ea:bb:01:ac:ec:d1:2b:11:65:e6:1a:57:0f:
28:dd:77:33:c2:82:9a:f9:79:a8:52:a6:1a:ea:11:29:a3:a0:
2f:7d:dc:33:a9:68:ef:db:a8:14:e9:22:83:60:be:51:db:05:
10:43:a3:e9:5c:dd:e9:db:c3:3a:11:e4:80:d5:41:0d:ea:7f:
09:3f:00:36:f6:d2:99:5c:be:1c:ac:04:35:66:ff:e1:14:a2:
c7:2a:4b:75:d8:d4:98:20:8f:13:9b:ae:45:31:60:36:6c:0e:
a1:8a:45:42:fe:89:84:35:17:fb:4b:b5:bc:df:ab:a6:60:ae:
a0:ca:b1:81:72:f5:e8:7d:ba:f0:e2:c3:25:b6:29:1a:d6:b4:
49:af:ab:12:33:87:82:06:6b:1e:2b:b3:f2:b7:f7:f4:26:87:
dc:92:36:c7:ba:8c:1f:e8:5e:92:ee:59:32:c4:17:8a:c8:93:
e9:77:04:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org