Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/yi7ihmpjdcP87dIw_zjx10B8QfI.roa
File: yi7ihmpjdcP87dIw_zjx10B8QfI.roa (raw, json)
Hash identifier: jIyd1ROCnJyFpnrM5pQCN4XHotkAj9d739LT7G0xC1c=
Subject key identifier: CA:2E:E2:86:6A:63:75:C3:FC:ED:D2:30:FF:38:F1:D7:40:7C:41:F2
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 0ABE43DC
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/yi7ihmpjdcP87dIw_zjx10B8QfI.roa
Signing time: Fri 13 May 2022 06:27:41 +0000
ROA not before: Fri 13 May 2022 06:27:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209837
IP address blocks: 2a0e:aa07:e03e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180241372 (0xabe43dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: May 13 06:27:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca2ee2866a6375c3fcedd230ff38f1d7407c41f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:69:82:6e:fa:8d:99:8a:05:ef:81:e5:11:7a:
d8:38:3d:b0:ec:89:be:99:6c:75:93:78:6c:93:20:
b2:e0:45:7c:7a:67:c1:5a:02:24:f9:0b:33:b8:0f:
60:3f:4a:67:9a:bb:85:87:7d:fc:8f:97:ce:45:7b:
b7:a3:59:31:3e:fb:66:0a:d6:c5:fe:b7:f7:ee:9a:
f0:5b:33:70:5d:cc:18:e1:ee:8f:c4:c1:0a:cc:94:
96:94:3d:69:31:67:bc:fa:10:78:c1:00:b5:48:10:
ea:1e:5f:44:4c:ce:94:8f:9f:84:3b:37:88:09:3a:
ec:0a:2e:e2:35:b6:4c:85:1e:9a:f6:e0:c9:97:1c:
55:9d:57:d9:01:9c:17:2e:f9:c8:9c:4e:da:f7:8d:
ca:3d:a1:dd:f4:a3:6b:2a:1e:38:6a:96:f3:82:01:
68:21:f8:d3:a0:44:92:55:31:e2:98:58:57:71:7c:
bb:fb:f8:24:e7:65:60:7c:d9:33:f5:b0:a6:6f:8a:
0a:17:02:c7:de:55:67:7d:51:e4:27:40:76:7d:bb:
31:8b:1a:57:ac:ef:a0:4a:86:39:5d:af:28:04:a6:
c5:cc:b7:eb:20:03:b4:cf:3b:6a:71:00:be:eb:15:
28:6c:84:4e:b8:c2:ff:8a:d6:ad:5c:53:e4:b7:3e:
3a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:2E:E2:86:6A:63:75:C3:FC:ED:D2:30:FF:38:F1:D7:40:7C:41:F2
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/yi7ihmpjdcP87dIw_zjx10B8QfI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e03e::/48
Signature Algorithm: sha256WithRSAEncryption
a5:9e:58:15:78:35:e8:c6:99:0d:4e:66:34:8d:55:8a:a1:7e:
2d:87:fe:e1:2d:ee:d6:4f:ae:86:83:95:d2:57:56:30:68:b5:
d0:08:b7:3d:f0:e6:d2:68:2e:74:86:63:38:6f:18:5a:78:87:
43:05:ae:b4:3e:c6:9b:0d:31:b1:0d:d2:f5:9c:af:93:c0:b6:
30:26:04:4d:39:df:52:dc:30:72:b8:1b:dc:fe:64:ce:6a:ec:
5a:ad:7c:03:a8:df:11:80:fc:31:ed:da:f4:36:5e:90:37:5a:
bd:bd:0c:89:df:bf:43:66:54:90:85:4c:6c:9b:c0:a2:ff:99:
35:b0:6f:a1:7a:20:f8:98:5c:46:01:aa:13:7b:c6:3a:95:c3:
f2:7c:2c:c9:b2:cc:a1:ed:38:d8:3a:07:d5:e9:a2:96:cf:bc:
26:f6:4f:9a:87:68:79:9e:99:91:c2:e4:2a:ab:a9:c5:89:5f:
9d:30:4a:d1:8b:da:68:b6:fa:a3:44:c9:f8:47:37:f5:bb:b4:
7e:b3:62:1c:6c:48:f8:d9:b8:ab:54:b4:f5:eb:c2:a9:82:48:
92:fe:25:f0:98:ef:59:bb:4d:56:f3:9b:64:ab:b4:8f:27:46:
90:51:99:17:58:08:21:1d:ca:41:c3:cf:a1:55:49:6c:29:f3:
48:c3:94:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org