Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/vJp6YWfUwhJblYkZYZPYoAsIXno.roa
File: vJp6YWfUwhJblYkZYZPYoAsIXno.roa (raw, json)
Hash identifier: cQXHK3fNhGKzJnUOgST/HN4zYQlu5GCklnaU5rr20lE=
Subject key identifier: BC:9A:7A:61:67:D4:C2:12:5B:95:89:19:61:93:D8:A0:0B:08:5E:7A
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 0975A99D
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/vJp6YWfUwhJblYkZYZPYoAsIXno.roa
Signing time: Sat 01 Jan 2022 09:04:03 +0000
ROA not before: Sat 01 Jan 2022 09:04:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210311
IP address blocks: 2a0e:aa01:aa00::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158706077 (0x975a99d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 09:04:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc9a7a6167d4c2125b9589196193d8a00b085e7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c1:db:02:86:c9:8f:c5:23:31:8f:bf:53:dd:
c3:2d:bc:a7:f6:57:4f:f4:d3:74:c9:fe:08:a3:20:
42:21:bf:24:d3:35:c9:31:a3:e4:1e:d1:d2:22:a1:
77:ac:71:30:74:97:d8:10:c9:cd:b6:f7:1c:6a:a1:
1c:c1:f2:b5:d1:94:10:d5:1b:1f:40:53:2c:b6:51:
c9:e6:27:5b:da:00:ea:37:9b:40:46:f1:64:d6:8e:
7d:39:d5:56:49:22:43:1b:21:05:a2:2d:85:94:9f:
c0:bf:32:99:64:31:f4:ce:72:05:5a:f3:dd:6a:e3:
cb:64:53:08:55:73:83:8d:a7:70:3a:50:91:46:d9:
84:02:22:f0:37:9a:cd:79:d7:fa:15:44:15:43:bc:
f5:9d:f9:9a:2b:4d:7f:d6:1e:88:37:c6:88:eb:57:
41:04:e1:72:b1:b4:5e:10:0a:a3:cb:c8:20:b1:9e:
38:e2:5d:df:ec:ff:eb:6b:7f:8d:1f:2c:91:98:d9:
26:d2:0e:14:17:f6:16:8c:34:de:c5:2b:e3:b8:e2:
07:89:ee:c1:37:c2:b7:34:93:7c:75:a8:24:cd:b2:
1b:c4:f6:bb:62:67:c6:7b:0b:3d:f0:18:0c:64:37:
9b:a8:6e:2a:59:87:dd:db:c4:3e:ec:dd:d0:bf:c8:
9b:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:9A:7A:61:67:D4:C2:12:5B:95:89:19:61:93:D8:A0:0B:08:5E:7A
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/vJp6YWfUwhJblYkZYZPYoAsIXno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa01:aa00::/40
Signature Algorithm: sha256WithRSAEncryption
bc:fe:d6:f2:ab:9e:2d:b9:23:3f:d7:cb:b1:74:1d:48:0b:0c:
b7:5d:cf:ac:3f:ec:84:e3:7e:ff:7e:25:82:af:38:9c:95:b1:
45:e1:52:ae:ea:4b:53:6f:5d:af:1f:76:14:95:2a:14:39:b2:
d7:05:71:5c:c2:f1:e8:10:cf:c2:7e:06:73:11:0f:2c:e8:19:
a7:2b:98:26:3d:97:bd:7b:c9:cd:95:3a:60:25:17:42:24:43:
92:77:fb:f4:bd:d4:73:30:af:7d:4b:0a:f2:e9:e3:07:04:8e:
bd:5b:a2:bd:23:3c:d9:6b:39:ac:54:34:04:b4:07:28:ae:0f:
5a:35:03:a6:10:24:a7:8d:c0:0e:ad:0a:96:76:46:14:22:6b:
c1:3a:f1:f6:3e:ae:16:91:de:10:31:ac:1b:5b:a4:d5:14:3e:
df:a5:d5:41:35:0b:35:6a:d8:cc:0c:a9:89:35:e3:2d:e8:3e:
67:57:d3:ff:3a:3b:d8:7c:3e:37:a0:19:f8:ae:49:0e:5e:70:
43:7a:c2:1c:0c:1f:8a:39:32:d6:b9:9b:9f:dd:78:a8:41:33:
d5:71:0a:1b:bf:7a:bb:cd:f4:e1:ce:1f:8d:33:91:33:93:7a:
bd:f4:32:c4:80:50:e6:23:2b:1b:a0:13:87:85:34:74:56:d6:
61:ef:9f:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org