Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/f6fdc3-9cfc-47fd-bba8-79cbf395d726/1/j3w1DgPjMktngen8xb2vWGpATWI.roa
File: j3w1DgPjMktngen8xb2vWGpATWI.roa (raw, json)
Hash identifier: zmZTk8ejNxDYXlK8XZa3pNehN7LkCxCRveXpKZ2zyzA=
Subject key identifier: 8F:7C:35:0E:03:E3:32:4B:67:81:E9:FC:C5:BD:AF:58:6A:40:4D:62
Certificate issuer: /CN=6f5762cd53a03e32242046a01a8e1ccac946b6dd
Certificate serial: 0A233490
Authority key identifier: 6F:57:62:CD:53:A0:3E:32:24:20:46:A0:1A:8E:1C:CA:C9:46:B6:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b1dizVOgPjIkIEagGo4cyslGtt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/f6fdc3-9cfc-47fd-bba8-79cbf395d726/1/j3w1DgPjMktngen8xb2vWGpATWI.roa
Signing time: Sat 01 Jan 2022 15:05:51 +0000
ROA not before: Sat 01 Jan 2022 15:05:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205055
IP address blocks: 2a07:9443::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170079376 (0xa233490)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f5762cd53a03e32242046a01a8e1ccac946b6dd
Validity
Not Before: Jan 1 15:05:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f7c350e03e3324b6781e9fcc5bdaf586a404d62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:f2:60:44:82:5a:a7:eb:94:90:77:cb:73:30:
05:07:7f:85:3b:69:1c:70:ce:6b:96:be:53:a5:f5:
53:70:68:e4:17:d6:67:88:0f:30:17:ba:a9:c0:a0:
87:86:e8:f5:4f:1a:4f:8f:22:27:be:17:0d:c7:ad:
9b:90:9f:8f:ce:a8:a1:a4:d8:22:21:31:39:3b:e9:
07:06:98:8c:f9:65:f0:6c:d9:4c:1f:f1:8d:bf:62:
54:b9:c4:af:fa:3c:fd:88:2d:80:18:89:5b:2e:c0:
f6:af:72:46:68:52:e2:cd:5e:b8:03:60:30:4d:c3:
87:f8:d7:e2:e7:90:ca:ca:e1:7c:9c:d0:3b:d6:8d:
98:2c:ae:2e:6b:4b:f1:c3:41:1c:de:f0:04:c2:a6:
23:d7:ad:94:75:73:aa:39:df:15:10:0c:70:34:f3:
c6:bf:dc:b4:d6:55:d2:3b:63:21:6e:fb:8e:1f:00:
d2:e1:2b:34:4f:12:9f:9e:aa:79:53:9b:f4:2e:bb:
a4:88:85:07:34:3b:66:ba:80:a8:ff:f6:80:08:d2:
07:c0:1d:40:63:63:7e:01:8b:41:71:8b:3e:1f:21:
60:13:94:7a:2a:21:6e:fb:5a:ff:17:5b:d1:66:3f:
cc:c8:f4:21:18:51:2a:3a:bf:e2:9a:93:aa:ff:f0:
76:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:7C:35:0E:03:E3:32:4B:67:81:E9:FC:C5:BD:AF:58:6A:40:4D:62
X509v3 Authority Key Identifier:
keyid:6F:57:62:CD:53:A0:3E:32:24:20:46:A0:1A:8E:1C:CA:C9:46:B6:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1dizVOgPjIkIEagGo4cyslGtt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f6fdc3-9cfc-47fd-bba8-79cbf395d726/1/j3w1DgPjMktngen8xb2vWGpATWI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f6fdc3-9cfc-47fd-bba8-79cbf395d726/1/b1dizVOgPjIkIEagGo4cyslGtt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:9443::/32
Signature Algorithm: sha256WithRSAEncryption
d0:48:72:6c:2c:6a:30:b2:40:d8:66:4e:2a:6b:7f:0e:9b:26:
dc:c6:c9:9b:95:f2:73:78:9b:27:e7:0b:d4:2c:fc:df:ac:9f:
87:67:5f:39:54:ff:78:21:06:b8:60:28:06:65:29:a1:c7:4b:
93:ab:20:fd:cc:ac:20:af:73:b3:e4:7c:26:61:a6:bd:88:97:
98:28:23:cd:c4:70:16:51:19:94:29:54:2e:90:60:ad:5f:a2:
ab:79:eb:e8:1b:0b:60:30:39:38:ad:71:f6:e3:e6:9b:af:99:
e7:e2:55:29:58:1f:9a:96:32:fb:f3:e6:27:aa:1a:88:5c:f1:
35:f2:fe:09:8b:af:d3:30:31:6e:52:89:19:78:bf:bf:a4:a6:
7d:30:6c:ed:61:41:8d:70:1e:41:ba:8b:b9:ef:1d:8b:23:84:
e1:91:62:e0:16:24:9c:6f:31:f9:cf:16:5e:7d:1b:6e:61:16:
1e:09:15:9d:a0:02:a6:62:f6:60:96:fc:9b:f3:07:8b:ca:33:
d5:63:e2:aa:14:ed:9a:ad:32:49:9c:24:50:96:6d:38:78:28:
8c:b1:2e:d6:21:a9:c9:a9:dd:c5:48:0f:a7:15:86:74:f4:02:
b3:82:3d:13:b2:4c:93:bf:00:1d:c2:2d:9d:97:0b:9f:c4:de:
02:3b:f9:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:23 2024 by rpki-client on console-fra.rpki-client.org