Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/jOogD5hnWf62-v44ibUvw3c1T-4.roa
File: jOogD5hnWf62-v44ibUvw3c1T-4.roa (raw, json)
Hash identifier: W0jpaNr5amsYBP+ucwvFRLuiO8f9f8UE366agWIySfc=
Subject key identifier: 8C:EA:20:0F:98:67:59:FE:B6:FA:FE:38:89:B5:2F:C3:77:35:4F:EE
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 0A9124E7
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/jOogD5hnWf62-v44ibUvw3c1T-4.roa
Signing time: Mon 25 Apr 2022 16:54:40 +0000
ROA not before: Mon 25 Apr 2022 16:54:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7480
IP address blocks: 2a0e:aa02::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177284327 (0xa9124e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Apr 25 16:54:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8cea200f986759feb6fafe3889b52fc377354fee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:82:7e:bc:68:34:77:ec:10:f4:a4:74:e1:59:
a3:75:e7:e0:44:77:75:c0:51:ce:a7:fc:88:e2:7d:
81:7d:d6:4a:21:3f:53:08:ca:91:9e:ba:7d:2c:7b:
70:37:1c:20:c6:4d:02:42:65:95:2c:68:b9:3e:75:
15:d6:68:e1:27:c3:f0:31:e7:70:82:c7:55:3c:95:
60:1c:3b:70:6e:7e:1a:ee:10:09:1b:52:dc:d4:66:
c2:a3:99:48:e6:cd:de:44:f1:dc:f4:b0:fc:a5:41:
f0:99:30:2b:25:40:f1:8c:db:0e:de:da:c9:93:67:
b6:74:f1:76:3f:a9:19:ae:ab:66:ee:b0:d5:9b:ed:
30:64:9a:d6:c1:bc:e9:ec:7e:27:80:9f:ff:ee:55:
d9:c1:96:0f:f9:1d:c4:90:07:1a:7f:35:e3:af:81:
b6:8b:76:a3:70:9e:82:1a:ad:bc:f3:e2:d3:dc:fc:
39:bf:61:c6:44:0f:21:ef:db:ee:b2:4d:f5:a5:e6:
a5:5f:c3:a5:55:75:3b:69:ce:26:ed:d5:c5:22:04:
9c:dd:b9:57:d2:73:b8:e1:5c:23:0c:88:52:c0:da:
ec:26:73:f7:8a:68:8a:be:9c:c2:28:13:cf:a1:02:
1f:57:3a:63:7a:7b:2d:61:b7:00:94:32:58:ac:17:
6b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:EA:20:0F:98:67:59:FE:B6:FA:FE:38:89:B5:2F:C3:77:35:4F:EE
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/jOogD5hnWf62-v44ibUvw3c1T-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa02::/32
Signature Algorithm: sha256WithRSAEncryption
16:cb:fd:d2:e6:db:5c:ed:33:d7:f3:94:21:8a:6f:df:c1:df:
c0:67:22:20:3c:d3:01:02:72:b7:32:b8:21:23:1d:b0:cc:11:
8b:02:76:2f:70:d2:1c:aa:23:0d:83:60:04:a8:63:80:55:c2:
7c:eb:5a:a3:5f:ec:cc:2b:c5:65:35:6c:d9:a9:34:20:2d:3a:
9a:83:84:64:34:b1:b9:21:d0:45:ba:98:df:90:29:20:2c:02:
5d:0c:2a:c1:c5:fb:6b:9c:fa:ad:89:ff:0d:23:d7:4c:9e:9c:
49:cc:e8:78:da:12:31:76:c1:16:e0:11:7b:1c:ee:9c:d1:62:
40:0a:f0:7c:19:2d:87:d9:37:89:81:92:e6:37:9a:91:be:5f:
d1:ff:58:bb:d3:4a:0e:a2:aa:0a:d7:28:a6:a8:07:00:39:a4:
b9:18:69:0a:59:18:89:83:96:ce:bc:cc:1c:a8:47:3c:6d:ec:
41:de:46:1e:58:5d:db:d8:59:ab:1e:3b:a1:ef:53:83:52:30:
45:3d:d7:9a:b2:e1:a6:5e:51:f8:c2:84:23:28:44:41:8a:a5:
9c:d2:cb:0e:9f:e3:d4:cd:4a:c4:fa:19:10:12:43:a8:3c:6c:
67:91:3c:62:c7:a7:8d:77:8f:9c:9f:97:e6:69:d5:9f:ea:9a:
07:d8:40:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:11 2024 by rpki-client on console-ams.rpki-client.org