Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/1-_AJ8lp_5ZXQn7B5-cZpsHdLAp8.roa
File: 1-_AJ8lp_5ZXQn7B5-cZpsHdLAp8.roa (raw, json)
Hash identifier: 26dC+Cyt3dJifDmJJQ7WpM4Exv3drdgZf9G01xGgJ7Q=
Subject key identifier: FB:F0:09:F2:5A:7F:E5:95:D0:9F:B0:79:F9:C6:69:B0:77:4B:02:9F
Certificate issuer: /CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Certificate serial: 0143F9C6
Authority key identifier: 0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/1-_AJ8lp_5ZXQn7B5-cZpsHdLAp8.roa
Signing time: Sat 01 Jan 2022 13:05:38 +0000
ROA not before: Sat 01 Jan 2022 13:05:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210542
IP address blocks: 2a0e:da40:10::/44 maxlen: 128
2a0e:da40:1::/48 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21232070 (0x143f9c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Validity
Not Before: Jan 1 13:05:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fbf009f25a7fe595d09fb079f9c669b0774b029f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:3e:54:73:67:1a:1a:08:ac:c7:e5:4d:94:66:
a6:97:b8:7e:99:a4:c9:c4:ca:58:ff:23:97:cc:3d:
12:b9:78:4d:29:58:d5:05:c4:d6:4a:79:f2:7a:18:
cd:a0:6c:78:94:46:38:79:16:74:ae:54:26:84:66:
16:39:d8:00:02:ee:d2:23:d0:e9:d2:f3:53:1d:9f:
4f:8a:fb:0d:d1:7d:ab:e1:81:8d:b1:d7:55:1d:5a:
e0:f0:84:f5:fa:98:85:bc:6c:bc:ba:bf:25:e7:18:
3d:48:3c:9e:7a:2c:22:60:86:7f:64:df:dd:2f:4f:
2a:a8:fe:d9:e9:df:48:50:a9:e3:1c:6c:5a:12:b0:
f6:bd:66:34:ff:c1:46:ac:b1:4a:c5:ec:77:92:65:
69:d7:98:43:4f:9d:77:2e:9c:ef:4a:fa:64:b6:9d:
db:b2:42:fb:87:1e:3a:e5:f0:ad:b4:d7:26:ce:35:
c7:2a:4a:96:5b:11:d8:0c:50:94:6c:b4:39:80:dd:
99:22:d3:86:90:3c:ee:ad:bc:6e:fa:94:09:56:f3:
ad:5e:2a:57:b0:28:cb:a1:7d:c8:7b:a7:91:03:89:
bf:ac:6c:56:dc:9f:f2:54:b0:f6:44:69:5f:64:2b:
1a:02:77:a9:4d:15:dd:61:19:2a:c8:bf:d4:c1:4f:
f2:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:F0:09:F2:5A:7F:E5:95:D0:9F:B0:79:F9:C6:69:B0:77:4B:02:9F
X509v3 Authority Key Identifier:
keyid:0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/1-_AJ8lp_5ZXQn7B5-cZpsHdLAp8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/DbZ8XH-n_iSS7sN89CdkK3HUJbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:da40:1::/48
2a0e:da40:10::/44
Signature Algorithm: sha256WithRSAEncryption
ac:3f:7d:e7:22:60:50:b4:37:ea:3d:f2:0b:2b:61:04:44:03:
49:94:dd:a9:97:a3:4e:ce:c0:03:df:4c:83:63:96:80:70:f3:
f9:a7:74:bc:63:60:f2:93:9a:65:56:10:e5:1c:e9:6a:48:aa:
91:81:18:1b:ed:e4:94:6f:43:56:8c:00:a9:08:c0:12:d4:ec:
4a:d7:99:28:b2:2e:69:00:f4:c8:22:d4:e2:95:88:64:c4:e8:
f0:b4:49:79:99:30:fb:28:9e:99:87:03:25:85:de:44:48:8f:
23:4b:e8:6f:af:ac:80:24:c1:68:13:cd:5a:b8:54:a2:5f:ea:
d2:dd:4a:33:44:8b:f4:60:62:c7:23:01:f2:17:84:0c:2c:0f:
3d:7e:b0:cc:84:df:95:87:29:1b:b0:c0:9c:40:79:7d:52:8c:
d0:3c:f1:af:66:cd:37:23:57:21:2b:b9:0d:d6:6d:29:00:48:
93:cc:20:f8:c3:70:46:8a:cd:1c:c1:39:d2:79:28:c1:fc:2a:
49:ef:89:48:46:9a:a9:e6:64:6b:ce:70:84:88:c6:70:04:29:
b3:c5:40:4b:44:29:50:27:99:2e:6d:e8:5b:95:d0:c3:1a:a7:
f0:08:4e:48:39:64:73:3f:10:75:6c:44:03:0e:87:4d:2f:4a:
04:06:6e:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:55 2023 by rpki-client on console-fra.rpki-client.org