Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/sY2tToyeTUZYgn1mR2Q1FbEV3dk.roa
File: sY2tToyeTUZYgn1mR2Q1FbEV3dk.roa (raw, json)
Hash identifier: bTBtIZR84JxTgZwQ1U71Lj+71Je2oIXdKctd4IDRvaQ=
Subject key identifier: B1:8D:AD:4E:8C:9E:4D:46:58:82:7D:66:47:64:35:15:B1:15:DD:D9
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 09C11FCB
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/sY2tToyeTUZYgn1mR2Q1FbEV3dk.roa
Signing time: Fri 28 Jan 2022 16:37:54 +0000
ROA not before: Fri 28 Jan 2022 16:37:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209290
IP address blocks: 2a0e:aa07:e032::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163651531 (0x9c11fcb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 28 16:37:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b18dad4e8c9e4d4658827d6647643515b115ddd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:4d:44:eb:29:07:9e:4b:10:42:64:42:c8:40:
3a:71:0a:13:47:50:d9:ff:ea:21:48:17:c3:0f:ea:
79:44:55:9b:f2:f7:ff:6a:1c:7b:3c:08:d6:c5:84:
7d:43:9f:27:d5:25:09:41:d2:af:7c:1e:9e:f1:49:
e5:be:4d:29:04:b1:02:f0:85:68:5c:1a:0d:3c:30:
78:40:14:fe:e9:f8:f3:d8:4c:e5:71:fe:f6:77:ef:
3a:57:e1:2b:3a:6a:27:13:12:a1:b5:a5:48:21:20:
02:c0:df:fd:6e:58:e1:78:fd:5b:8e:af:34:18:c9:
a4:64:77:2a:38:92:1c:6a:78:0b:0b:83:9b:94:d1:
9e:fe:0d:1b:68:ab:3f:90:dd:d8:d3:33:e0:5e:e2:
b9:c8:2a:c5:c0:54:15:99:ad:0e:cc:d0:5b:10:3a:
0f:8c:55:6d:5d:c9:d9:7e:89:b6:f0:73:c0:19:55:
c7:f6:60:86:ea:08:40:5a:44:b7:3e:08:53:ed:54:
a4:98:81:32:90:52:af:08:0e:e7:bd:52:56:54:69:
93:8a:d6:e4:3b:91:02:f9:8d:4c:b5:02:dc:89:93:
b7:e4:08:71:97:f0:95:85:eb:b8:55:39:4a:c1:92:
e6:24:25:5b:a8:e4:7b:48:74:e5:d5:5b:bc:f9:01:
62:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:8D:AD:4E:8C:9E:4D:46:58:82:7D:66:47:64:35:15:B1:15:DD:D9
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/sY2tToyeTUZYgn1mR2Q1FbEV3dk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e032::/48
Signature Algorithm: sha256WithRSAEncryption
30:70:b4:a2:45:0a:2f:8e:b7:60:fc:13:ce:dd:8d:88:47:f8:
e7:d9:4b:35:6a:c7:48:6f:15:e6:5d:ee:0d:c5:8d:9d:61:94:
76:b6:2e:1e:23:84:ce:dc:71:28:6b:b7:f3:b1:0b:64:90:e3:
91:47:4e:21:9d:3e:93:2e:aa:f7:3c:70:e1:83:b2:f7:b7:7c:
78:a1:39:f0:3d:b4:76:58:08:06:e8:c9:8c:7f:97:fb:c3:18:
07:4d:74:78:65:82:a6:94:b1:e0:d2:c3:00:d5:6e:ff:20:e3:
ae:2a:b6:13:d5:01:d0:44:2f:04:9a:2d:52:33:c9:20:8d:68:
f0:9e:16:00:4e:d3:4e:9e:e6:7d:de:5f:5b:42:4c:1a:f3:8f:
80:51:7b:34:e6:fb:77:76:de:54:2b:80:01:16:c7:f6:02:dc:
96:01:b0:a2:d1:3e:07:16:b7:1c:95:d3:48:c4:fb:40:22:6a:
6a:0b:41:ac:8b:10:cf:a6:c0:73:19:4b:de:63:40:57:41:e8:
c1:53:1f:c7:25:c2:f0:d5:c2:a5:d4:1f:18:47:c4:3e:4c:20:
5b:55:82:a4:b2:f1:ee:ce:8c:c6:bd:69:68:ec:3e:6e:6c:11:
b5:61:40:ef:56:ea:c4:da:25:33:e8:c7:df:92:b1:43:8d:94:
9b:cc:bc:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:31 2023 by rpki-client on console-fra.rpki-client.org