Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/iIPSVTrAO37qA4rzwI1lgwc9Glk.roa
File: iIPSVTrAO37qA4rzwI1lgwc9Glk.roa (raw, json)
Hash identifier: S4wfXRCPrhqDRfJ6QtET6QQ3I0F43gQQrIO0OQ5jnUI=
Subject key identifier: 88:83:D2:55:3A:C0:3B:7E:EA:03:8A:F3:C0:8D:65:83:07:3D:1A:59
Certificate issuer: /CN=835bc9bb547e27788d221bc8bbd5fb02e024480f
Certificate serial: 10A88316
Authority key identifier: 83:5B:C9:BB:54:7E:27:78:8D:22:1B:C8:BB:D5:FB:02:E0:24:48:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/iIPSVTrAO37qA4rzwI1lgwc9Glk.roa
Signing time: Sat 01 Jan 2022 13:59:28 +0000
ROA not before: Sat 01 Jan 2022 13:59:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208249
IP address blocks: 2a0b:6b83::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 279479062 (0x10a88316)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=835bc9bb547e27788d221bc8bbd5fb02e024480f
Validity
Not Before: Jan 1 13:59:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8883d2553ac03b7eea038af3c08d6583073d1a59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:88:58:68:5a:c5:7d:44:fc:3b:e4:6c:50:b5:
31:ad:59:aa:2d:71:5d:d1:b2:b4:a2:f9:36:3d:a0:
32:ba:fd:44:d6:e8:5d:cd:45:ca:4b:bf:59:2e:34:
fb:5f:0d:31:38:0f:04:9c:24:21:e9:f1:dd:f3:9d:
06:90:23:65:3a:03:4d:5a:96:0b:a6:e2:dd:f5:a3:
84:ca:32:36:71:97:cc:5f:92:9b:22:af:a9:c3:e4:
56:2a:38:0d:8c:01:ad:3b:cf:cf:90:3d:97:c1:d4:
b6:db:89:db:74:f6:78:86:37:29:8d:3b:60:14:47:
49:62:ac:2d:9f:d6:45:63:c4:32:8c:f7:5f:55:38:
ff:31:b4:c9:fb:b8:ac:03:83:f9:9a:d5:ac:e4:69:
b0:a9:0a:c6:25:9e:73:c6:42:77:db:97:0a:a7:2f:
fb:cf:1b:f7:f3:5f:0b:65:ff:a5:f7:a8:95:a8:b6:
a2:cf:f2:3f:17:c0:aa:97:6b:12:13:1e:15:48:9c:
a8:b5:b9:7e:f6:99:d9:cc:02:b7:ff:35:f0:f0:f1:
b3:79:6b:85:19:b7:09:7c:99:91:ae:2c:9b:65:5e:
d6:f4:7d:c8:c6:e2:4d:cb:3e:64:ba:81:ae:6b:e7:
3c:0f:a1:54:5a:fc:18:ab:62:f4:db:bc:f7:ca:ed:
7c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:83:D2:55:3A:C0:3B:7E:EA:03:8A:F3:C0:8D:65:83:07:3D:1A:59
X509v3 Authority Key Identifier:
keyid:83:5B:C9:BB:54:7E:27:78:8D:22:1B:C8:BB:D5:FB:02:E0:24:48:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/iIPSVTrAO37qA4rzwI1lgwc9Glk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/g1vJu1R-J3iNIhvIu9X7AuAkSA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:6b83::/32
Signature Algorithm: sha256WithRSAEncryption
28:bd:0e:3b:20:cb:90:be:8d:ae:f3:ef:3d:66:f7:d3:9e:29:
90:31:04:89:66:11:94:4b:69:22:f3:35:9c:42:29:af:b5:6b:
3d:dd:54:d4:4c:b3:ee:32:7e:58:b6:ad:bc:a9:bf:d0:88:df:
78:85:0e:a9:2f:a7:67:19:c9:9c:ad:f9:23:bf:cd:94:6e:d3:
06:a3:9b:c8:17:4c:0c:d9:bd:a3:d2:4a:b4:5d:24:6a:48:63:
d4:a4:c3:42:0f:d7:dc:bd:02:ca:55:06:fe:28:4c:09:02:dd:
b8:33:5a:23:3a:07:bb:26:31:de:3a:76:fe:64:06:14:a5:4f:
fa:e3:57:9c:ac:c6:b4:ac:5c:ed:fc:27:61:c9:b2:13:46:ee:
e6:bc:e3:cf:9f:42:92:0e:d9:be:93:d7:97:8f:26:9a:5b:e0:
53:68:07:8d:d7:0d:55:78:cf:f4:fd:0c:72:99:fb:ef:7e:8a:
c6:a9:95:93:79:23:79:f9:17:07:b1:d3:4e:f0:b4:1f:f8:f1:
50:15:e3:c2:69:76:6c:72:b1:5d:1a:a3:b5:18:5c:07:82:54:
9f:91:df:a4:1f:d3:09:b7:ae:be:48:5e:3c:45:fe:f9:1e:1c:
b4:43:33:0d:10:e1:80:0a:72:ed:39:24:10:06:29:b2:81:bb:
4c:43:1d:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:24 2024 by rpki-client on console-fra.rpki-client.org