Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/fuh2U1_7Yf1150M9NEKlePRQOGs.roa
File: fuh2U1_7Yf1150M9NEKlePRQOGs.roa (raw, json)
Hash identifier: XM4x/BNeb56O2G0i9fIb66CwQJzgYRjjh0wTrHDkYc4=
Subject key identifier: 7E:E8:76:53:5F:FB:61:FD:75:E7:43:3D:34:42:A5:78:F4:50:38:6B
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 0ADE8918
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/fuh2U1_7Yf1150M9NEKlePRQOGs.roa
Signing time: Wed 25 May 2022 19:27:58 +0000
ROA not before: Wed 25 May 2022 19:27:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 2a0e:aa02::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 182356248 (0xade8918)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: May 25 19:27:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ee876535ffb61fd75e7433d3442a578f450386b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:6f:64:b0:97:20:6d:4d:be:fb:27:1c:6f:22:
42:f7:6e:02:90:da:73:4c:e2:80:ed:12:7b:15:61:
9c:c6:51:4f:94:1e:11:16:d8:55:2f:67:83:96:05:
94:c7:7f:a7:60:90:d3:b6:48:87:f8:8d:5d:51:8a:
72:56:b5:cd:3d:0b:e3:3f:83:d5:f1:3b:68:c4:3e:
d2:2a:56:70:6b:5a:5e:c8:dc:99:ff:8a:24:2e:73:
8b:2b:9c:57:ef:65:2c:0d:e0:d3:f7:28:1f:07:77:
ed:78:73:f5:9f:7c:64:18:42:5d:80:de:f8:96:0d:
51:fd:c4:81:98:b2:b8:d4:e0:bf:79:e2:6e:7a:d7:
ec:80:b0:44:57:32:29:31:5f:63:16:f5:db:29:cb:
a5:aa:00:7f:86:60:26:85:f4:2f:7e:cc:a8:db:9b:
ed:1e:be:73:5b:d0:a8:e3:a1:cd:db:23:38:4e:71:
ac:b3:9e:61:74:72:d6:5a:c2:d1:6b:82:f4:e6:82:
5c:4a:4d:28:28:bc:56:da:8b:57:01:cc:dd:26:3e:
5b:da:56:78:40:ef:d7:26:31:d7:57:e1:04:90:dd:
fe:d6:cd:14:3e:0d:c2:e5:2f:47:34:2e:c3:5b:b9:
6c:6b:b9:f5:fd:6c:03:6c:fe:47:71:ac:30:90:1b:
22:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:E8:76:53:5F:FB:61:FD:75:E7:43:3D:34:42:A5:78:F4:50:38:6B
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/fuh2U1_7Yf1150M9NEKlePRQOGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa02::/40
Signature Algorithm: sha256WithRSAEncryption
ab:7f:58:99:ae:87:9a:78:f9:79:6b:cb:64:bf:e3:63:be:6c:
7c:67:4e:28:3b:74:51:0f:86:a1:d2:24:f7:90:47:5d:69:ad:
25:7d:0e:79:09:d2:06:cb:84:c3:b0:45:79:da:19:79:0e:0e:
42:46:f1:7a:a2:1d:81:58:08:ce:51:f5:f4:cd:50:88:f5:98:
74:91:ce:69:a4:39:35:c4:d1:a7:3c:62:81:2f:e2:83:4b:f7:
4c:bc:de:3b:05:a0:ef:4c:88:37:84:84:4b:21:dc:c8:c2:4b:
73:85:16:a5:4f:10:31:05:74:87:93:1f:ac:cb:c6:a8:f3:89:
8d:bc:8a:72:c5:17:b9:d6:76:bc:68:d1:33:6e:00:d4:cd:2c:
31:e3:7f:91:44:76:3e:96:30:9d:15:2f:90:13:d6:ab:52:00:
0d:ca:df:19:d9:3d:d3:34:d7:30:73:13:63:eb:73:cd:93:e2:
eb:af:8d:7d:84:9e:b5:ca:62:9c:51:1a:0f:c3:12:25:39:50:
eb:b2:d4:95:c4:2c:52:2a:ae:4e:1c:15:fb:df:28:3c:d7:c1:
f8:ba:6b:18:d0:24:7c:30:ae:d2:6e:af:56:14:c9:2d:ce:c5:
fa:e4:7a:71:6c:22:72:7a:18:85:16:3c:9d:d4:b4:4b:db:a4:
0c:fa:ca:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:11 2024 by rpki-client on console-ams.rpki-client.org