Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/2wiiSXbbxH9DQMcGqpcSfa4Ndo4.roa
File: 2wiiSXbbxH9DQMcGqpcSfa4Ndo4.roa (raw, json)
Hash identifier: XhTXHBo4L11aCAR6TzP8lRWhGWYUqlL9jYkusyDiOxI=
Subject key identifier: DB:08:A2:49:76:DB:C4:7F:43:40:C7:06:AA:97:12:7D:AE:0D:76:8E
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 08062BD6
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/2wiiSXbbxH9DQMcGqpcSfa4Ndo4.roa
Signing time: Sat 01 Jan 2022 06:55:48 +0000
ROA not before: Sat 01 Jan 2022 06:55:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205298
IP address blocks: 2a0f:5707:aaa0::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134622166 (0x8062bd6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 1 06:55:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db08a24976dbc47f4340c706aa97127dae0d768e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:91:45:3f:8f:13:ee:51:19:f2:01:d0:f3:93:
3c:13:e8:a2:9d:de:c6:e6:96:37:90:2e:df:75:d2:
aa:2d:26:d4:c6:42:53:27:79:89:3c:40:b4:07:b2:
2e:9f:11:e4:08:42:ae:4a:5a:f8:c2:c5:05:02:9f:
6c:05:54:c6:54:77:b0:8f:6a:a7:6e:73:04:9e:ba:
96:48:c1:b4:3d:df:42:e5:28:8a:fb:62:33:0d:50:
2d:6a:5f:af:1a:e2:b9:d8:04:f2:8d:97:65:6b:6c:
d6:d3:ad:1d:57:f1:be:86:07:39:20:96:71:cc:01:
ce:74:94:e1:34:d4:2c:38:f4:72:92:91:a7:93:c8:
e8:29:e7:5b:2b:5a:c4:8f:0b:e8:e8:ee:14:63:19:
71:cf:1a:c0:65:2f:45:df:52:08:42:3c:94:6a:40:
bb:b4:b7:42:bc:e3:99:11:53:f7:c0:dc:1c:c3:ef:
b3:67:6c:e1:33:de:af:22:83:e2:7f:4d:0d:44:7a:
c6:de:d6:32:70:59:c3:3c:29:f5:ab:49:1b:74:12:
a0:67:21:91:bc:d0:f7:18:cf:2d:4f:3e:1e:ee:ab:
6c:a4:b2:60:1f:26:0a:8b:a6:39:4e:6d:6f:fa:3e:
f1:c5:ca:b1:66:da:5c:32:5b:54:16:d5:15:4e:46:
50:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:08:A2:49:76:DB:C4:7F:43:40:C7:06:AA:97:12:7D:AE:0D:76:8E
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/2wiiSXbbxH9DQMcGqpcSfa4Ndo4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:aaa0::/44
Signature Algorithm: sha256WithRSAEncryption
bd:45:ad:2d:ab:df:cc:d3:06:0e:d0:9f:f5:04:5d:66:be:02:
1e:27:44:c5:80:9b:c2:f2:74:c2:fd:c1:80:dc:3d:a0:f0:f6:
47:63:49:b9:33:5f:d3:2e:2e:74:bc:8e:62:28:0e:40:6a:72:
d8:1e:b2:ba:a3:0a:a3:c1:fa:dd:9c:de:f9:fa:ce:a7:82:cc:
02:66:5c:1b:61:4f:7a:c5:09:0b:73:32:3f:35:35:49:21:c8:
d2:a8:9f:74:9b:ee:97:c3:2c:6a:6a:15:61:0d:20:98:fb:22:
ee:08:bd:c9:b2:d6:e4:38:63:63:9e:b6:12:00:7d:8f:97:5d:
6a:01:cd:a5:09:04:3b:6f:82:85:1c:81:8e:a7:14:64:1a:66:
a5:7f:83:b2:af:ee:07:b5:8f:6d:20:d8:e3:b0:9e:67:49:78:
9e:65:ec:be:a8:5b:64:38:ed:98:3d:7a:ce:45:a0:6c:ee:29:
6e:09:19:66:a1:46:f1:6e:e2:83:3f:6d:32:5c:1d:43:e3:89:
8f:48:26:fb:f8:57:21:b2:f8:3b:02:20:78:63:2d:17:81:91:
b5:ea:b7:49:16:ad:7f:fe:47:27:17:20:c4:01:b6:37:18:d3:
78:a9:cb:c7:18:cf:ed:98:54:81:14:42:9c:b9:c7:fc:e9:3a:
6c:76:e1:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:59 2024 by rpki-client on console-fra.rpki-client.org