Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/bbgG7yR4OTdARB408sNpv8xhfDc.roa
File: bbgG7yR4OTdARB408sNpv8xhfDc.roa (raw, json)
Hash identifier: DBrpT7HfyfWtB+zwbnE2K8L/O0Qr/fGKwIV2JWHxMHA=
Subject key identifier: 6D:B8:06:EF:24:78:39:37:40:44:1E:34:F2:C3:69:BF:CC:61:7C:37
Certificate issuer: /CN=8133d89c06a8a1cc9dbc362201f7ec559d7fdd48
Certificate serial: 076BEE92
Authority key identifier: 81:33:D8:9C:06:A8:A1:CC:9D:BC:36:22:01:F7:EC:55:9D:7F:DD:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gTPYnAaoocydvDYiAffsVZ1_3Ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/bbgG7yR4OTdARB408sNpv8xhfDc.roa
Signing time: Sat 01 Jan 2022 00:52:08 +0000
ROA not before: Sat 01 Jan 2022 00:52:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213204
IP address blocks: 2a0f:3784:100::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124513938 (0x76bee92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8133d89c06a8a1cc9dbc362201f7ec559d7fdd48
Validity
Not Before: Jan 1 00:52:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6db806ef2478393740441e34f2c369bfcc617c37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ad:22:5a:72:9c:60:de:a5:3f:9c:39:8b:6a:
09:7b:89:38:7a:79:0a:ce:7a:50:0d:d7:1a:77:03:
33:f1:18:f1:44:f8:64:81:9f:ae:65:58:10:b8:e1:
8c:c5:c9:f7:6b:b0:a9:0e:24:ac:00:ec:15:45:09:
76:83:d1:6a:59:0d:96:22:11:6f:bc:6a:61:f6:74:
61:e1:b8:a7:53:97:12:cf:ce:88:5d:45:96:60:2b:
ad:d1:23:02:35:92:6e:c4:d5:4c:58:52:90:a4:7c:
29:e3:b8:de:ab:77:03:8c:38:a5:00:8a:62:57:35:
f8:4d:51:d3:42:95:48:32:12:04:69:d4:13:e1:0b:
1e:df:e3:f5:95:9f:6c:19:d2:b9:5b:4a:95:9a:89:
83:f0:98:91:e2:a9:3b:c9:05:56:0d:d7:96:e3:22:
38:6e:11:fc:08:8e:12:67:d9:6d:a4:4c:fb:97:35:
73:ad:5f:de:b9:98:13:65:e0:fa:2d:b8:bd:d8:cd:
44:d0:7b:42:6f:db:35:18:f4:3a:08:7d:c1:1c:32:
e2:6f:27:92:b0:df:71:2f:39:0f:46:6c:33:7b:38:
9f:0d:04:55:d1:7d:35:10:3e:c6:86:9b:98:9e:38:
b1:ca:6b:96:54:b0:06:df:77:7a:49:ff:18:d7:fc:
ad:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:B8:06:EF:24:78:39:37:40:44:1E:34:F2:C3:69:BF:CC:61:7C:37
X509v3 Authority Key Identifier:
keyid:81:33:D8:9C:06:A8:A1:CC:9D:BC:36:22:01:F7:EC:55:9D:7F:DD:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gTPYnAaoocydvDYiAffsVZ1_3Ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/bbgG7yR4OTdARB408sNpv8xhfDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/gTPYnAaoocydvDYiAffsVZ1_3Ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:3784:100::/40
Signature Algorithm: sha256WithRSAEncryption
5e:ef:b4:c7:ed:43:2c:43:4c:be:b7:06:e4:65:18:1f:3e:72:
14:61:02:27:8d:34:80:1f:c8:3e:52:82:d1:bd:61:22:49:66:
c4:64:e5:c7:0a:07:d2:b9:25:6d:65:20:82:ea:8e:e0:c5:34:
d5:de:85:02:05:9e:f2:9c:9a:b4:3e:17:8e:8d:af:24:6a:5b:
ce:ff:4d:74:87:94:96:10:aa:25:08:9d:5e:40:ca:4c:75:80:
3c:64:49:0b:d0:98:10:d8:40:a7:6f:f1:7c:2a:dd:c1:26:09:
72:d8:f8:c6:35:ac:93:76:b0:3d:39:8b:cf:a8:dd:55:9c:8d:
77:af:9e:54:0c:93:43:41:b1:5f:69:7d:43:4e:9e:7f:c1:2c:
11:28:2c:ae:59:00:0e:50:cc:d5:27:86:49:ba:a8:ec:2b:f5:
e8:de:f8:0c:7e:2a:2b:61:dc:1f:57:0a:7e:c6:98:62:e6:aa:
73:b4:3c:ae:de:73:43:4a:a3:d7:96:83:11:f1:66:c5:9f:8b:
52:8f:3f:5a:83:9e:6e:b1:0e:47:23:da:89:33:f7:7b:21:9c:
c0:db:82:cf:49:5a:eb:67:11:bb:8c:b1:a8:16:4e:c9:62:93:
af:85:a7:e7:e6:95:2e:10:f1:ed:c5:bb:71:ee:dc:af:51:7c:
f0:88:5d:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:48 2023 by rpki-client on console-fra.rpki-client.org