Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/Xn1G8CqmWgrH82BLO8yn_rI8C0Q.roa
File: Xn1G8CqmWgrH82BLO8yn_rI8C0Q.roa (raw, json)
Hash identifier: tkOo2kwbTx1dwg8mQahbyO1qbz6HL6CFMi25fSLsVJg=
Subject key identifier: 5E:7D:46:F0:2A:A6:5A:0A:C7:F3:60:4B:3B:CC:A7:FE:B2:3C:0B:44
Certificate issuer: /CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Certificate serial: 0802B775
Authority key identifier: BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/Xn1G8CqmWgrH82BLO8yn_rI8C0Q.roa
Signing time: Sat 01 Jan 2022 06:58:25 +0000
ROA not before: Sat 01 Jan 2022 06:58:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52000
IP address blocks: 2a09:7c41::/32 maxlen: 32
2a09:7c42::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134395765 (0x802b775)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Validity
Not Before: Jan 1 06:58:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e7d46f02aa65a0ac7f3604b3bcca7feb23c0b44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:65:9e:9a:cd:8f:0f:b0:a2:39:7d:eb:b9:9c:
37:9c:79:23:07:af:29:2a:49:e5:e9:0d:da:4f:e8:
01:0d:4a:d8:1f:29:4d:56:cc:40:f2:b5:4e:44:23:
be:cc:47:6c:09:8e:53:99:a3:24:82:5c:5c:97:67:
f8:df:91:24:1c:4c:54:c5:39:8b:b0:8b:3c:f9:cd:
fd:07:48:e0:77:25:50:4a:ef:72:36:5e:ae:e2:29:
93:2c:43:b6:19:00:7b:44:ae:ba:e9:35:c9:af:57:
e7:f5:72:04:b8:9b:87:94:e0:b4:b2:2a:3c:0f:7a:
8b:8f:70:05:23:35:2c:58:d7:31:d5:f7:e8:bf:34:
a7:a8:f3:c3:07:ad:01:0e:98:7a:f4:51:ec:7a:93:
d1:42:25:69:31:74:94:28:10:8b:51:0a:cd:2d:da:
4f:b5:85:b8:d5:c3:0d:51:d9:68:04:0f:63:6e:29:
99:93:19:53:30:46:b3:88:03:c9:a9:08:45:62:99:
62:05:49:7f:e1:07:1d:78:70:ca:f4:69:52:a0:28:
3b:24:ed:9c:43:4b:96:74:bf:88:06:e3:b3:bc:31:
64:39:ce:05:9f:53:96:de:2c:06:3a:d2:da:71:dd:
1b:ae:7b:1f:ba:1c:f7:c4:9d:8d:08:fc:29:2d:88:
40:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:7D:46:F0:2A:A6:5A:0A:C7:F3:60:4B:3B:CC:A7:FE:B2:3C:0B:44
X509v3 Authority Key Identifier:
keyid:BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/Xn1G8CqmWgrH82BLO8yn_rI8C0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:7c41::-2a09:7c42:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
1e:a5:b3:f9:7e:a3:b3:67:36:c2:89:84:c9:41:f8:49:00:7f:
66:42:b4:ea:74:e5:26:69:5c:9d:17:b3:27:0e:7a:7f:3a:89:
19:53:ea:8f:e8:a7:e4:75:08:07:59:a6:df:86:01:77:9f:fd:
08:cd:7f:db:e2:3f:18:38:82:10:b7:5a:c2:4b:3c:e9:d6:a5:
e5:98:75:1e:f0:98:15:9b:ad:5f:b6:6c:37:02:af:ad:55:88:
a7:1e:38:28:42:d8:d4:08:24:f8:b2:41:37:f7:cd:df:38:0c:
1f:62:e5:5d:f1:4a:8d:40:db:fc:a3:0c:be:fb:bc:3b:99:47:
d8:c8:bb:92:ca:93:02:93:6e:13:9b:c1:50:f2:fb:3b:f9:b5:
12:66:ba:97:7d:b7:a1:7b:a9:e4:2d:94:3a:ae:49:44:f9:4e:
6b:49:4e:5e:87:5c:c8:ad:3f:9e:39:ee:a1:f1:91:48:a5:43:
ca:f1:cf:d8:bb:b6:9e:d9:f5:e0:73:b8:19:97:d5:ce:bf:28:
ed:5f:52:96:0f:a6:84:8b:3c:cd:51:8e:bf:80:1a:ff:94:f6:
78:26:4e:db:18:80:76:be:0e:16:1d:82:d3:df:d3:a4:5d:fc:
00:8b:5b:9f:49:26:de:ad:bf:24:db:ae:17:01:3a:d8:40:93:
b8:ef:01:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:06 2024 by rpki-client on console-fra.rpki-client.org