Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/_Vp5SSzdo-UgT66WwdR5TVCu2bE.roa
File: _Vp5SSzdo-UgT66WwdR5TVCu2bE.roa (raw, json)
Hash identifier: yQ1ZFkC9zNt0wHLCbaDWHfuyuAICXRPPghIEEfAAUzs=
Subject key identifier: FD:5A:79:49:2C:DD:A3:E5:20:4F:AE:96:C1:D4:79:4D:50:AE:D9:B1
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 114D267D
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/_Vp5SSzdo-UgT66WwdR5TVCu2bE.roa
Signing time: Sat 21 May 2022 14:54:30 +0000
ROA not before: Sat 21 May 2022 14:54:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208958
IP address blocks: 2a06:e881:6500::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 290268797 (0x114d267d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: May 21 14:54:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd5a79492cdda3e5204fae96c1d4794d50aed9b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5a:a2:f5:e0:9b:6b:bd:9b:56:a2:47:f6:32:
4c:42:8a:b3:87:ee:d0:91:8b:f7:7f:98:64:36:6f:
52:eb:d3:fe:b7:e7:b2:39:de:5f:58:4e:78:64:2c:
aa:13:ca:2f:b4:bb:bb:0f:e4:3b:b0:c2:35:59:f6:
2a:86:49:10:75:69:97:ac:7a:b0:97:b9:1f:19:b1:
f1:33:91:c5:66:91:8c:dc:40:56:d5:fe:75:7d:ed:
7e:39:1f:dd:ab:e4:13:ff:a3:1c:46:94:82:9c:09:
8f:62:9a:80:e2:1c:ad:09:b2:32:91:b9:ee:05:59:
82:92:e6:6d:76:36:af:08:0e:97:1d:48:89:c8:79:
af:20:49:21:19:e2:a9:e3:cb:ae:3e:34:35:5a:99:
6a:bf:58:ad:76:49:c3:36:dc:fb:14:c6:8d:0c:f6:
bc:53:a6:b9:17:cf:78:84:e8:fb:0b:f4:95:40:29:
0f:f5:5c:10:ee:f9:bb:71:2d:00:9b:db:9e:e3:93:
82:dc:bf:e6:6c:8e:1a:7c:c5:3e:80:8f:e0:7f:98:
ac:7a:ef:bd:36:02:d6:b6:51:65:92:05:ca:68:19:
cc:4b:5a:eb:cd:85:9d:85:b3:00:c3:8b:62:b6:30:
8e:98:4b:17:50:5f:ed:92:92:f6:6c:9f:e1:18:ba:
86:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:5A:79:49:2C:DD:A3:E5:20:4F:AE:96:C1:D4:79:4D:50:AE:D9:B1
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/_Vp5SSzdo-UgT66WwdR5TVCu2bE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:6500::/44
Signature Algorithm: sha256WithRSAEncryption
15:40:ad:c9:f8:61:39:03:b2:f7:57:3b:4a:aa:00:7c:fd:56:
e1:fa:c2:21:56:f8:b7:9f:91:51:56:43:47:9c:c7:c5:17:c2:
3a:2c:8d:bb:d1:33:9e:3a:0a:66:e1:d4:0e:a7:1d:4c:e9:26:
69:4b:3d:b6:95:4f:25:ef:34:b6:14:ea:f9:e6:3a:ed:34:bc:
1d:bf:e1:76:c1:91:eb:3c:cf:cc:dd:4d:43:50:44:87:af:fa:
9a:b8:17:79:01:8d:cd:34:9b:0e:d7:a7:cc:09:77:83:d5:6b:
6f:b5:69:84:76:1b:ed:d3:0d:ac:04:76:e7:10:31:60:bb:9c:
12:d1:8b:be:68:74:c7:cd:22:9e:95:9e:ad:b7:34:eb:05:c3:
e4:6e:4c:25:9e:7a:3e:51:f6:c7:3c:01:9e:43:a5:9b:bc:2b:
1c:9c:d4:34:b7:82:0c:9d:96:31:27:58:ec:1c:23:15:79:01:
e6:bf:cf:0c:02:27:2f:54:09:ef:d0:ff:67:c2:44:33:9e:04:
4e:f7:bd:91:d8:cf:62:c9:66:ae:74:75:40:23:f9:7f:8d:75:
08:9f:04:59:89:54:da:c7:90:b7:a4:59:4e:29:11:47:62:44:
5f:1d:b2:9f:55:bc:7c:3f:29:84:e5:f3:10:a2:30:40:da:27:
bc:99:d8:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:55 2023 by rpki-client on console-fra.rpki-client.org