Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/ebyaZdcdfP-3w74mv-4Uq3IwM9E.roa
File: ebyaZdcdfP-3w74mv-4Uq3IwM9E.roa (raw, json)
Hash identifier: uoG03z1IrFMK3OAY8eZ/nWGxaZyHeftZI+8Hu7wUuRc=
Subject key identifier: 79:BC:9A:65:D7:1D:7C:FF:B7:C3:BE:26:BF:EE:14:AB:72:30:33:D1
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 0983819B
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/ebyaZdcdfP-3w74mv-4Uq3IwM9E.roa
Signing time: Sat 01 Jan 2022 09:04:11 +0000
ROA not before: Sat 01 Jan 2022 09:04:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212690
IP address blocks: 2a0e:aa07:e022::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159613339 (0x983819b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 09:04:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79bc9a65d71d7cffb7c3be26bfee14ab723033d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:11:8b:48:3e:6a:fa:8d:08:bd:fd:3d:ef:08:
bf:ab:4a:38:31:20:c5:fd:7a:70:56:da:bb:ba:6f:
a7:b9:72:38:08:6f:c0:91:3c:5d:be:e0:41:37:e8:
65:83:94:dd:3c:68:38:10:3f:ba:81:97:23:22:7c:
83:73:a6:32:82:57:ff:b3:de:2b:ff:6a:7c:76:90:
25:a5:f9:ad:43:58:4a:dd:52:2f:44:42:33:5f:0c:
61:92:6b:82:12:6b:d5:a3:df:02:b7:80:a8:1d:cb:
36:fe:b4:56:7d:bd:fc:f6:32:2e:90:c6:df:38:97:
26:c7:81:a5:1a:0a:7f:ad:ce:e0:62:de:30:8b:52:
54:bb:cf:fa:1f:66:8b:0b:73:fe:31:79:61:fb:5c:
7d:ec:b8:9f:67:13:14:c4:96:ca:0c:38:ca:fd:48:
a4:70:09:15:4d:4b:22:24:44:30:81:e8:f3:38:64:
0e:2f:45:0f:1e:68:ca:38:5c:30:ab:a4:39:b6:38:
6d:6c:d4:9f:55:1c:c5:91:80:48:65:01:21:d9:14:
c5:be:25:7d:c4:32:5d:2c:2e:38:36:51:a9:df:0f:
7c:33:00:8c:d2:33:27:0a:0d:af:b6:6d:0c:71:b7:
d2:a6:15:c3:e8:5f:de:a6:46:9a:bf:e6:57:42:d3:
98:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:BC:9A:65:D7:1D:7C:FF:B7:C3:BE:26:BF:EE:14:AB:72:30:33:D1
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/ebyaZdcdfP-3w74mv-4Uq3IwM9E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e022::/48
Signature Algorithm: sha256WithRSAEncryption
26:6e:38:d9:17:1e:a6:b8:db:1c:83:ad:d3:42:de:50:5e:9c:
7f:3a:a5:e0:ce:38:65:f9:9d:2d:be:f9:85:01:4e:b4:20:78:
ba:4c:be:2c:63:36:75:53:8a:4d:42:e8:85:81:a9:b9:71:0c:
97:a7:11:2f:56:4b:19:a8:2e:04:9a:a2:0c:55:1d:4a:8b:76:
e1:cb:3f:38:b1:7f:32:ed:1d:b0:c7:f1:36:85:e2:4b:71:4a:
0c:fe:3d:0d:9d:3b:10:d9:b8:82:c5:2d:a1:0e:39:a4:71:fe:
ba:51:4a:b3:66:93:a9:c2:03:2b:0e:b6:f8:37:e9:41:8e:29:
ba:61:ef:74:4c:07:59:5b:4f:c4:c7:42:3a:41:3e:e1:95:81:
a0:da:9a:52:94:8d:66:38:1c:38:51:26:d6:3c:b6:f5:42:0e:
ec:ef:17:bb:da:9b:35:b6:c7:f1:67:13:41:4b:50:e4:d6:67:
bb:46:f5:37:4d:70:bf:87:45:bf:04:9f:0b:35:42:ac:92:c3:
4e:01:86:d2:ca:4f:39:23:4d:c6:d5:e9:da:37:48:8b:59:ed:
fd:84:43:77:7a:99:14:42:b4:c6:25:fc:b8:b5:42:05:70:57:
62:53:61:5f:82:5f:b9:72:c1:d2:40:60:a1:40:aa:b1:fa:89:
8a:a8:0e:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:31 2023 by rpki-client on console-fra.rpki-client.org