Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/SxS36m6hhzlrzMn_fy8BFL3a9WY.roa
File: SxS36m6hhzlrzMn_fy8BFL3a9WY.roa (raw, json)
Hash identifier: L0H6Lt8k9KNokjvJP2T39D+IKj/eNvLBVuhQ96ieJ1k=
Subject key identifier: 4B:14:B7:EA:6E:A1:87:39:6B:CC:C9:FF:7F:2F:01:14:BD:DA:F5:66
Certificate issuer: /CN=27d7304c1b59dc22731bb53eff5a84ed9a30614c
Certificate serial: 01841936B3111A8933614EC46B2CEC52433E
Authority key identifier: 27:D7:30:4C:1B:59:DC:22:73:1B:B5:3E:FF:5A:84:ED:9A:30:61:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J9cwTBtZ3CJzG7U-_1qE7ZowYUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/SxS36m6hhzlrzMn_fy8BFL3a9WY.roa
Signing time: Thu 27 Oct 2022 11:32:05 +0000
ROA not before: Thu 27 Oct 2022 11:32:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38930
IP address blocks: 2001:1af8:4410::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:19:36:b3:11:1a:89:33:61:4e:c4:6b:2c:ec:52:43:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27d7304c1b59dc22731bb53eff5a84ed9a30614c
Validity
Not Before: Oct 27 11:32:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4b14b7ea6ea187396bccc9ff7f2f0114bddaf566
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:d0:9c:b3:29:13:c8:da:29:b6:6e:73:59:4b:
bb:8f:b9:fd:70:4c:d9:41:0b:9e:12:6c:fe:3f:a1:
a4:a1:7a:4a:a4:bd:00:0c:08:4d:90:04:fd:fb:5c:
50:5e:40:04:6e:ac:59:27:fb:d1:4e:1c:f5:1a:c3:
a1:eb:12:82:07:c4:d9:ea:9a:86:be:e5:de:22:5a:
f7:f9:6a:c8:86:07:d2:59:64:1a:4a:42:51:91:44:
27:6c:48:a5:d7:ad:b9:84:a1:bd:d1:93:55:62:af:
77:86:0e:e6:0b:0e:b9:c9:b0:e1:59:f0:19:b2:84:
5a:8f:7c:e4:6c:ec:9a:50:27:bb:02:b3:d1:5d:d5:
c5:21:b5:f1:ed:74:23:ce:f0:81:19:a5:b6:6b:d5:
e0:13:10:14:e6:ca:9c:de:2c:eb:db:28:00:cb:6c:
55:6f:15:4c:e8:0c:b9:27:1a:a4:2f:db:48:0a:c7:
dd:bd:e1:66:d7:4e:df:8b:81:77:ba:24:39:af:c0:
44:ab:9f:b8:24:59:85:5c:ad:92:66:ff:ef:35:c0:
2d:06:ce:85:2b:8b:fc:61:a5:a1:f8:51:5c:90:c7:
d8:7f:24:d1:e5:34:54:76:a3:3b:64:43:20:a8:85:
ee:32:ce:64:cd:a0:b2:a0:ad:6d:77:1c:dd:f4:fb:
71:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:14:B7:EA:6E:A1:87:39:6B:CC:C9:FF:7F:2F:01:14:BD:DA:F5:66
X509v3 Authority Key Identifier:
keyid:27:D7:30:4C:1B:59:DC:22:73:1B:B5:3E:FF:5A:84:ED:9A:30:61:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J9cwTBtZ3CJzG7U-_1qE7ZowYUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/SxS36m6hhzlrzMn_fy8BFL3a9WY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/J9cwTBtZ3CJzG7U-_1qE7ZowYUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:1af8:4410::/48
Signature Algorithm: sha256WithRSAEncryption
36:1a:e4:13:14:73:ce:8d:9e:6c:85:e7:30:f1:8c:60:b0:7b:
d5:c2:21:f6:ba:2e:94:0f:23:62:5e:c0:f1:a6:9a:98:77:d8:
95:59:fe:18:e3:83:fc:48:68:40:87:76:ca:34:55:e8:63:7d:
0d:36:43:f4:5a:b4:6e:3e:34:f2:9f:07:80:16:f1:f9:79:bc:
d0:fc:9d:02:ee:49:0c:ae:85:8f:43:bc:1a:77:92:25:7c:f3:
f9:54:cb:de:d8:07:ca:45:d8:a0:00:50:58:4f:33:b0:f6:09:
7a:3a:a5:b9:12:98:1d:9c:4a:da:a7:8a:10:b6:74:24:40:e6:
3d:c9:1f:ce:96:51:af:b7:ed:1b:2e:8c:e0:ed:63:dd:a3:d4:
91:fe:27:4f:de:ac:94:2a:c2:ca:25:09:05:4d:fc:2f:73:37:
55:33:07:4e:2f:4b:2e:fa:98:30:5e:37:31:a3:de:a8:53:80:
e2:44:2f:9b:3a:4c:56:36:16:f2:37:85:eb:e3:ed:e8:54:00:
14:1a:19:f7:05:25:2c:13:82:1e:7c:ad:20:30:8e:48:f3:ab:
a9:fd:3e:c6:30:41:e0:a1:aa:60:cb:9d:d9:37:f4:b4:53:51:
97:93:26:b3:6b:13:88:cf:df:dd:90:72:d4:c9:12:ec:6e:a2:
15:59:e6:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:51 2024 by rpki-client on console-fra.rpki-client.org