Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/nP7wTg8BBeGtN63K7uoIjai_PpA.roa
File: nP7wTg8BBeGtN63K7uoIjai_PpA.roa (raw, json)
Hash identifier: d8hlqVvKn4RkMcrLACm2jCMUjGBlyiit9QS2K2uq9To=
Subject key identifier: 9C:FE:F0:4E:0F:01:05:E1:AD:37:AD:CA:EE:EA:08:8D:A8:BF:3E:90
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 09799727
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/nP7wTg8BBeGtN63K7uoIjai_PpA.roa
Signing time: Sat 01 Jan 2022 09:04:05 +0000
ROA not before: Sat 01 Jan 2022 09:04:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210384
IP address blocks: 2a0e:aa07:e02b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158963495 (0x9799727)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 09:04:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9cfef04e0f0105e1ad37adcaeeea088da8bf3e90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d4:f9:ae:d0:be:95:dc:75:c9:fd:46:03:8f:
56:cb:4b:99:c8:e8:71:b8:07:2a:df:02:89:bb:3c:
23:22:49:8f:4f:0d:15:2e:68:9b:19:c2:b4:94:9f:
7d:4c:a4:f4:cf:32:e3:38:9c:95:2a:8e:2f:ce:e8:
cb:a2:35:82:aa:d6:69:54:79:0a:6c:b8:44:43:fe:
27:f6:d0:0f:26:1a:2d:bc:20:21:71:41:f1:20:3d:
d4:9a:dc:71:d1:50:87:a2:f0:12:d6:ef:e4:f8:66:
67:d0:a1:77:77:87:fd:d9:3a:53:a4:47:fc:99:92:
54:93:0d:cf:72:92:79:00:d7:26:1c:7a:56:38:30:
1e:83:1f:9d:93:22:59:49:d7:a5:24:42:f2:fd:16:
00:44:0a:ca:2b:7f:44:08:71:16:3b:ec:ae:33:91:
4f:51:78:f0:59:7b:da:0b:43:33:8d:54:60:15:a0:
52:61:29:5e:de:e8:2e:ea:04:3f:0e:c4:f6:0a:03:
6d:96:8f:3a:6c:86:4c:c5:a6:a1:9b:e3:19:e7:ce:
fc:0c:44:b9:b5:00:17:b5:56:ff:5a:af:6d:35:51:
91:ec:0a:2b:c4:42:45:b8:e1:7c:69:a6:29:6b:de:
2f:53:a4:8f:de:af:9c:b3:d2:65:5c:d5:62:3d:48:
7a:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:FE:F0:4E:0F:01:05:E1:AD:37:AD:CA:EE:EA:08:8D:A8:BF:3E:90
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/nP7wTg8BBeGtN63K7uoIjai_PpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e02b::/48
Signature Algorithm: sha256WithRSAEncryption
66:30:a9:a4:19:08:21:be:69:6d:82:30:b0:66:53:14:6f:f4:
71:43:27:31:26:45:4e:66:e7:63:0a:1b:fe:59:2f:eb:2b:c5:
b0:bc:74:fa:a4:fe:79:f0:dc:03:91:f3:09:6c:ef:e1:b3:c4:
92:1a:ba:18:42:28:c7:41:3a:0c:c1:98:f7:f3:5a:75:e1:97:
13:2b:c6:10:3e:71:c4:59:a4:f4:27:e0:05:d6:33:bb:aa:43:
fb:fc:20:9b:72:f5:2f:57:4c:85:ef:6c:81:a0:34:52:6b:18:
9e:51:b5:6f:25:4c:5c:a9:6b:ed:a4:75:42:5c:e0:2c:db:d3:
89:05:2c:2c:b0:0b:63:de:2b:4a:aa:e3:59:64:98:cf:ad:54:
2a:22:6e:df:19:b0:ba:41:a8:c9:f4:d2:2d:b6:42:2e:6c:09:
48:90:ed:9e:a1:27:e9:85:09:eb:26:30:dd:c2:21:40:89:a8:
28:9e:78:83:70:c6:89:1d:0a:4d:d3:c1:c6:32:16:93:2d:49:
61:13:c5:b0:5b:ce:c3:48:45:9c:eb:70:d2:29:c4:10:bc:63:
63:65:83:bc:71:01:9b:95:a1:0a:1b:a0:7d:77:24:80:cd:62:
68:db:d3:14:08:cf:99:0a:06:a2:a7:44:90:60:93:4b:02:ba:
14:9b:b6:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org