Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/1LbljlG9poIbgiRCuRkm-yZ7a1s.roa
File: 1LbljlG9poIbgiRCuRkm-yZ7a1s.roa (raw, json)
Hash identifier: rVSiUs+P4RqLm4ejEfZXfGhBhCFiWM5iqCFUDndkasY=
Subject key identifier: D4:B6:E5:8E:51:BD:A6:82:1B:82:24:42:B9:19:26:FB:26:7B:6B:5B
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 080B5354
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/1LbljlG9poIbgiRCuRkm-yZ7a1s.roa
Signing time: Sat 01 Jan 2022 06:55:51 +0000
ROA not before: Sat 01 Jan 2022 06:55:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207401
IP address blocks: 2a0f:5707:fff4::/48 maxlen: 48
2a0f:5707:fff5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134959956 (0x80b5354)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 1 06:55:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d4b6e58e51bda6821b822442b91926fb267b6b5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:1d:57:c0:1c:81:9e:b1:90:ec:85:dd:07:92:
8a:57:72:50:5e:83:19:15:59:aa:17:4b:df:e3:ee:
28:29:cf:3e:d7:bc:f6:23:e6:33:e9:53:2c:1e:33:
b5:b3:33:f2:95:22:e8:bf:6a:10:ea:01:94:18:cf:
cb:cf:2e:6d:38:a0:84:41:15:01:d4:a8:ac:14:1f:
0f:c3:5c:f7:56:77:45:6d:dd:29:cf:49:28:b2:9e:
eb:80:92:4b:48:4a:95:36:12:58:f9:6e:ef:8d:48:
24:03:09:0f:fb:70:ac:40:64:57:3f:4b:33:33:14:
af:36:60:83:41:9b:ef:6b:3f:42:a3:1a:14:7e:8f:
f3:64:22:50:d6:f4:f4:7b:ae:fb:d2:ad:d7:c1:ce:
64:a7:7a:25:88:bf:f0:2d:26:7f:0f:89:a8:67:8e:
a8:26:72:37:de:81:24:cd:c2:28:f2:09:46:a7:e0:
81:30:a4:96:75:9f:ed:88:e7:9b:53:75:56:4f:91:
9c:2e:5d:a1:05:03:50:5c:d1:ed:11:77:00:bd:f5:
e1:61:85:ee:e9:65:96:e3:86:0f:6f:c8:41:4b:2f:
21:a7:64:53:3c:fb:1b:bb:c1:0a:70:f4:85:11:8c:
6d:bf:a2:f1:81:f6:45:30:6a:f7:b6:b5:d5:12:69:
b1:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:B6:E5:8E:51:BD:A6:82:1B:82:24:42:B9:19:26:FB:26:7B:6B:5B
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/1LbljlG9poIbgiRCuRkm-yZ7a1s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:fff4::/47
Signature Algorithm: sha256WithRSAEncryption
42:c8:dd:47:fb:f1:2f:f4:1e:81:89:27:67:78:da:28:c3:cf:
92:9e:85:ff:6e:ff:1e:78:0e:92:7c:be:1e:e8:b4:06:6f:27:
e4:3a:ea:7a:d7:50:b2:48:ce:52:71:4d:4b:67:a5:47:fc:91:
9f:9e:c1:60:f7:5e:47:7f:92:11:1b:bd:4e:b1:23:60:7c:d2:
65:ae:5a:db:ef:ee:03:59:30:c4:de:ff:24:fe:5c:23:16:e1:
6a:b6:90:4c:83:98:fa:42:11:c7:f0:1c:f3:40:ba:d2:5d:4b:
fe:66:31:5e:fc:15:e2:10:64:ca:3d:d3:b5:30:f0:4f:79:a7:
92:e1:e2:73:58:c2:ad:5b:17:e4:1d:4d:3e:2a:f4:04:3b:30:
71:21:ba:04:82:98:38:0e:4d:de:86:2f:d6:79:9a:73:9b:57:
e2:3b:ac:be:77:52:40:23:6f:fc:f5:28:2b:7f:1a:06:ca:1d:
78:1b:26:74:d1:c0:39:db:c5:4b:40:80:ae:30:7e:7b:e4:b4:
37:31:86:38:42:67:4b:8f:d4:b4:3f:a2:d4:b1:30:20:79:98:
2a:85:ed:94:fa:8d:e4:d1:59:99:fe:26:f2:e6:e4:46:5e:ce:
2c:80:4a:75:c4:63:3d:82:76:40:19:92:1c:d3:44:fa:55:4e:
c0:69:7a:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:22 2024 by rpki-client on console-ams.rpki-client.org