Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/uDaDZouvT4AxbQ56nwaPh-xq70A.roa
File: uDaDZouvT4AxbQ56nwaPh-xq70A.roa (raw, json)
Hash identifier: p+KoOTvMhfuJWNNQKLOFvNtlsw+PDzwWDwXw1b9Bong=
Subject key identifier: B8:36:83:66:8B:AF:4F:80:31:6D:0E:7A:9F:06:8F:87:EC:6A:EF:40
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 0958F4F2
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/uDaDZouvT4AxbQ56nwaPh-xq70A.roa
Signing time: Sat 01 Jan 2022 09:03:49 +0000
ROA not before: Sat 01 Jan 2022 09:03:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24239
IP address blocks: 2a0e:aa06:490::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156824818 (0x958f4f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 09:03:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b83683668baf4f80316d0e7a9f068f87ec6aef40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:be:64:ba:3d:4c:1f:e8:81:05:64:56:f9:fb:
21:ee:e2:2f:9e:2a:58:52:8d:a6:6b:05:ff:92:29:
02:ec:1d:4f:9d:f4:c4:10:10:e6:ec:3c:5f:9c:43:
d8:7c:29:f0:cd:72:ea:4a:ad:f2:5b:21:4d:27:ba:
7c:94:c6:1f:10:f7:91:85:3f:20:48:86:5d:a8:4b:
b1:04:5b:03:d3:64:df:7e:f8:36:18:a5:35:29:a2:
18:35:88:73:de:61:a4:29:37:19:e6:46:85:16:10:
04:0e:77:1f:08:0d:28:37:a0:a3:be:3f:14:3d:24:
25:be:dd:0b:06:58:0a:b5:08:c5:fc:a8:4c:ae:cd:
29:ec:77:8a:e0:52:15:79:a1:f5:94:3f:64:b1:b6:
2f:55:63:48:df:5e:11:d8:51:32:86:68:50:2d:52:
45:dd:89:ff:6a:32:7e:f1:58:cd:d8:a8:91:e3:fd:
2d:ac:b1:57:30:c6:c9:19:08:4d:70:14:de:35:14:
e7:04:6a:4d:33:3c:65:34:d8:a3:05:84:77:c1:ca:
17:ec:5b:9d:b1:b0:e9:3e:45:b8:57:f1:ab:60:ba:
d1:1f:dd:1c:a9:29:75:fa:87:45:78:c7:65:b1:7f:
23:57:ff:5e:2c:05:e3:4d:e5:c8:c7:00:47:5c:26:
17:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:36:83:66:8B:AF:4F:80:31:6D:0E:7A:9F:06:8F:87:EC:6A:EF:40
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/uDaDZouvT4AxbQ56nwaPh-xq70A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa06:490::/44
Signature Algorithm: sha256WithRSAEncryption
4c:63:e4:72:29:57:9e:3c:39:34:24:4c:b7:02:0e:62:85:cd:
17:f3:1b:66:1e:fa:84:56:92:83:35:26:61:82:1d:ad:05:93:
7a:da:48:41:55:3d:b0:df:f8:75:fd:ce:1a:9c:15:9d:e7:6c:
0f:f6:a3:df:6c:15:72:be:53:9b:14:37:0a:c2:20:ec:2f:af:
40:81:de:75:2e:6f:7d:e9:03:67:27:8c:dc:b5:05:4c:7e:76:
85:79:55:a1:d0:c6:15:92:e0:77:95:15:3c:d8:a8:88:9c:ca:
b7:de:73:10:fa:11:93:e5:d6:30:14:15:d8:33:a0:71:78:e7:
68:21:56:31:31:8f:47:ae:37:1e:bb:b2:6b:a2:0e:42:65:93:
8e:b4:0e:1a:20:bb:4a:26:4c:3a:76:4b:28:1e:2c:7a:75:d8:
3f:66:4e:4f:60:62:f5:b8:41:7c:2d:53:ac:5f:6b:41:1a:f9:
81:21:8e:b4:66:72:96:63:bc:ba:75:aa:17:db:90:db:54:ef:
4d:f0:75:ca:71:9c:6a:75:65:04:45:f8:5b:f3:4c:02:59:17:
70:1e:72:81:86:ca:26:ed:c5:49:64:1c:bd:61:87:35:23:54:
4f:27:1b:4f:12:30:c4:7c:5b:db:7e:96:3c:84:a3:5a:e4:ad:
70:76:b3:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org