Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/8f3b6f-e86f-467d-aa90-18b1a937a567/1/2PUjMpQF2fjpnBfqBGMS7Og3tCg.roa
File: 2PUjMpQF2fjpnBfqBGMS7Og3tCg.roa (raw, json)
Hash identifier: HQbx+UXDEuRKmGkuhu4Z0AnVcMLVhD/e+rDKOZ9k53g=
Subject key identifier: D8:F5:23:32:94:05:D9:F8:E9:9C:17:EA:04:63:12:EC:E8:37:B4:28
Certificate issuer: /CN=8bfca7c96e804505a48b99603d9b2124f1dd3702
Certificate serial: 37E0FC98
Authority key identifier: 8B:FC:A7:C9:6E:80:45:05:A4:8B:99:60:3D:9B:21:24:F1:DD:37:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i_ynyW6ARQWki5lgPZshJPHdNwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/8f3b6f-e86f-467d-aa90-18b1a937a567/1/2PUjMpQF2fjpnBfqBGMS7Og3tCg.roa
Signing time: Sat 01 Jan 2022 14:58:54 +0000
ROA not before: Sat 01 Jan 2022 14:58:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48047
IP address blocks: 2a02:2978:ffff::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 937491608 (0x37e0fc98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bfca7c96e804505a48b99603d9b2124f1dd3702
Validity
Not Before: Jan 1 14:58:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d8f523329405d9f8e99c17ea046312ece837b428
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:50:79:f8:9f:6c:c3:a2:80:60:a8:01:27:c4:
3d:25:da:03:2d:4f:e3:c4:67:e8:6a:07:19:1b:89:
45:a3:77:a1:1e:74:a4:6f:31:97:a6:11:75:06:3d:
e3:d4:b5:12:67:21:ef:37:5e:58:43:f2:f1:42:82:
ea:2b:fe:43:9f:c1:a9:e8:b4:01:69:77:21:a3:95:
3d:6e:70:4c:cf:60:4e:01:5e:38:6f:69:bb:e8:6a:
ec:b2:fc:1f:f7:cc:fb:41:c5:c0:74:51:e6:fc:93:
1a:dd:33:42:40:c2:21:68:ad:fe:1e:ac:4d:f1:5c:
33:15:bf:81:49:57:e7:7e:ae:cf:1c:e5:ad:15:49:
dd:ec:6e:58:95:f9:df:94:0f:f3:97:44:28:11:62:
78:72:6e:84:26:79:20:74:36:eb:61:bf:b7:81:71:
16:3a:fe:b8:eb:2c:c8:21:02:4f:7d:d0:a5:83:88:
f8:43:90:10:34:da:62:b4:e8:6d:ac:19:1a:b8:6c:
e5:72:9b:7b:38:0c:fa:e2:26:be:c0:c1:4c:0b:7a:
19:35:89:e2:5e:1f:2d:15:db:35:d4:15:31:6b:a5:
80:9a:e3:0e:5f:44:84:97:a2:eb:38:90:f5:d8:44:
82:ba:19:45:06:fe:a4:4b:ed:ca:52:ea:d7:b2:2f:
ca:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:F5:23:32:94:05:D9:F8:E9:9C:17:EA:04:63:12:EC:E8:37:B4:28
X509v3 Authority Key Identifier:
keyid:8B:FC:A7:C9:6E:80:45:05:A4:8B:99:60:3D:9B:21:24:F1:DD:37:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i_ynyW6ARQWki5lgPZshJPHdNwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/8f3b6f-e86f-467d-aa90-18b1a937a567/1/2PUjMpQF2fjpnBfqBGMS7Og3tCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/8f3b6f-e86f-467d-aa90-18b1a937a567/1/i_ynyW6ARQWki5lgPZshJPHdNwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:2978:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
59:f2:7a:47:1b:2f:0f:88:d5:f6:4c:9b:86:db:f7:6d:e7:13:
d8:f3:26:99:dd:11:a2:38:52:a2:c7:85:68:aa:88:18:50:b6:
1f:ee:24:ec:0b:da:48:8e:ed:6c:3d:74:68:a6:a9:5e:bd:99:
1d:ac:e7:a6:cb:46:d0:b0:2c:c0:a5:0c:59:72:d2:ba:d3:1e:
6c:7d:00:46:81:b6:31:d5:0f:16:fe:74:f7:db:be:d6:07:28:
22:b0:e2:5f:2e:5c:b8:e6:ce:64:61:5b:77:fe:b2:a5:ea:e8:
91:00:58:2e:38:11:1e:53:bd:e5:28:d0:38:8d:d3:91:c5:e1:
79:1c:2e:17:bb:46:3d:1a:47:e7:86:cd:3e:cc:93:6c:a3:00:
24:97:aa:62:9f:0d:53:c1:d5:6c:e7:0f:68:77:3a:6f:03:9e:
32:fb:06:06:b8:7d:2f:94:e1:72:ee:97:a7:15:60:2e:be:f5:
3b:81:6c:a4:b2:30:84:8e:fb:a4:8d:94:9c:ee:9c:9b:8e:89:
a3:db:11:c8:b5:82:67:51:76:c3:51:98:0d:77:1e:d6:32:76:
9a:67:20:8b:44:59:80:df:6d:20:08:7c:61:c6:63:14:cb:3d:
2b:96:47:ee:6f:12:ed:15:4f:21:eb:9c:8d:20:44:61:38:4a:
dd:4b:80:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:12 2024 by rpki-client on console-fra.rpki-client.org