Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/8aIpFhiN-DmcBkR_Sf7qQ0AQHdU.roa
File: 8aIpFhiN-DmcBkR_Sf7qQ0AQHdU.roa (raw, json)
Hash identifier: CCjDOz+pIg7PMXT5OQjB882Z0iPpojXJoe0ot3ZaKVE=
Subject key identifier: F1:A2:29:16:18:8D:F8:39:9C:06:44:7F:49:FE:EA:43:40:10:1D:D5
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 0FF11EDA
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/8aIpFhiN-DmcBkR_Sf7qQ0AQHdU.roa
Signing time: Sat 01 Jan 2022 14:59:50 +0000
ROA not before: Sat 01 Jan 2022 14:59:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209859
IP address blocks: 2a06:e881:5300::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 267460314 (0xff11eda)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 1 14:59:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f1a22916188df8399c06447f49feea4340101dd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:be:33:ad:58:37:c4:5b:94:09:9d:1e:33:89:
a7:d5:2b:2f:fc:d4:16:93:12:b7:da:ee:b2:81:ac:
e5:e5:de:e8:83:57:68:af:83:8c:f0:83:1a:0c:1c:
40:59:95:bf:6e:73:d0:a2:44:fe:03:cc:ba:f4:74:
01:eb:39:09:ed:11:5e:46:67:f1:ad:e8:0c:8c:df:
79:64:44:a7:93:f9:03:82:04:18:c6:d8:cf:c1:36:
12:2f:4a:2a:05:de:07:bb:49:10:8f:b2:57:66:f8:
b2:29:e1:a8:e8:5a:a1:ed:08:21:5d:a6:68:c2:dc:
bd:39:55:a6:3d:fa:b7:41:ec:36:d7:1f:e4:29:80:
d3:12:c7:5b:0a:dc:74:da:de:3f:a2:56:c8:91:35:
08:e6:f7:c6:e8:5d:97:9b:82:e7:6c:94:45:35:f7:
59:30:5b:69:5f:50:00:91:1f:f6:7c:b9:3d:a3:f8:
6e:10:2a:62:6d:60:94:1e:94:bb:4e:24:ad:68:ed:
dd:04:3a:57:60:6b:e6:3f:fa:ac:8d:52:2f:4a:5b:
39:b6:85:58:12:40:e2:d8:b9:52:4a:e2:13:42:b0:
d9:5f:8a:1f:2c:d0:4f:d5:f3:2b:fc:12:72:d8:37:
00:c0:2e:ca:d0:0d:99:dc:e8:b0:a1:06:98:81:08:
5d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:A2:29:16:18:8D:F8:39:9C:06:44:7F:49:FE:EA:43:40:10:1D:D5
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/8aIpFhiN-DmcBkR_Sf7qQ0AQHdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:5300::/40
Signature Algorithm: sha256WithRSAEncryption
bb:01:32:7a:9e:77:0d:63:75:cd:bd:53:fe:f6:c4:cb:4a:4f:
20:01:65:67:19:48:ee:b4:88:5d:de:b8:d2:b3:e5:8f:9c:30:
4f:ce:f1:19:5e:dd:50:5e:76:15:11:cc:71:40:a1:4b:b7:09:
77:d3:d5:f6:38:04:e4:af:17:d5:aa:44:d6:83:03:76:26:f4:
99:41:26:cf:3a:f0:59:dc:13:fc:06:0d:5b:df:25:44:02:e6:
3c:91:76:9b:a6:e1:d9:63:9d:43:7f:9a:e6:c1:91:fc:b0:a1:
54:25:8f:d7:df:26:bf:fc:48:07:f4:56:c5:d5:72:b1:38:82:
9e:31:2e:c5:7b:0e:0f:7b:f1:a3:61:d7:25:a3:91:08:8c:79:
f6:d5:57:f4:4e:99:83:d4:21:08:d7:03:43:85:50:4d:d6:60:
c6:97:c4:ad:24:45:8c:96:3e:e1:91:b5:2c:82:4a:07:dd:c5:
c2:db:74:d4:1b:93:0e:d8:22:67:aa:03:65:0e:b0:e4:d4:6d:
9c:9b:d6:f5:62:eb:b9:ff:5e:a6:a7:ad:78:60:db:dd:d4:08:
19:b3:6d:74:3b:0e:39:22:c8:bd:01:53:4a:76:d3:32:32:d1:
9f:3b:ae:e7:77:4f:1f:80:0c:5b:27:0d:a3:52:19:57:bd:d8:
1e:92:3f:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:40 2024 by rpki-client on console-ams.rpki-client.org