Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/AgXtf3lV6AGT_cO9El0Rni84saU.roa
File: AgXtf3lV6AGT_cO9El0Rni84saU.roa (raw, json)
Hash identifier: PCZc6lEDr1CNOfm/cN0qO6KdrVtrQahHVbEFE1LTQv4=
Subject key identifier: 02:05:ED:7F:79:55:E8:01:93:FD:C3:BD:12:5D:11:9E:2F:38:B1:A5
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 080F29B6
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/AgXtf3lV6AGT_cO9El0Rni84saU.roa
Signing time: Sat 01 Jan 2022 06:55:52 +0000
ROA not before: Sat 01 Jan 2022 06:55:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208127
IP address blocks: 2a0f:5707:ac00::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135211446 (0x80f29b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 1 06:55:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0205ed7f7955e80193fdc3bd125d119e2f38b1a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:7a:0f:8f:f0:da:3a:4b:87:49:cc:b9:af:5a:
21:7b:cc:63:bd:00:20:dd:b4:6a:29:05:0b:8a:5c:
99:ed:14:c0:f6:e1:a5:cc:88:6e:05:79:3a:9b:99:
78:d4:1f:ae:98:74:e8:2c:01:e9:fc:dd:82:1b:48:
29:ce:90:51:36:b2:53:0a:aa:4c:95:7e:a2:da:97:
cc:0c:7a:47:6e:03:41:28:c6:f0:87:2a:b0:3c:16:
58:9c:8a:7e:0b:c6:cb:8a:e2:d6:f7:56:bd:76:53:
3b:cc:75:0a:46:c0:1d:ad:ec:38:1e:f4:fd:0a:e2:
04:f3:33:9a:6b:39:54:89:bd:83:33:c8:ef:8a:a5:
b9:8c:5e:ee:5b:15:af:c9:cf:73:d9:0d:20:11:08:
21:72:33:9b:6c:c3:30:40:41:0f:64:dd:96:93:51:
f6:e2:60:fb:82:a4:10:80:74:4b:5f:73:5f:8b:3a:
a9:d1:cf:44:28:bb:17:1c:1f:60:51:56:1b:bd:01:
cb:e9:a7:ab:e6:62:b5:94:a3:68:89:3d:8f:53:cb:
3b:89:d0:0a:e0:71:cf:3b:ce:da:df:cf:c3:7d:01:
e2:44:a5:34:d2:22:22:18:ae:5c:c6:00:ca:06:33:
d6:93:a1:03:16:6b:46:ab:16:29:15:4e:b4:6e:09:
19:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:05:ED:7F:79:55:E8:01:93:FD:C3:BD:12:5D:11:9E:2F:38:B1:A5
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/AgXtf3lV6AGT_cO9El0Rni84saU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:ac00::/44
Signature Algorithm: sha256WithRSAEncryption
a5:bf:10:f7:54:7c:fa:3c:3e:20:e9:dd:ff:f3:65:c3:fe:e4:
ad:d2:bd:72:31:7a:9c:9e:c6:8a:01:db:a2:1d:4c:e3:e6:31:
ec:90:b3:d7:85:cf:21:8d:d4:ce:18:81:2f:21:f8:8a:7f:8f:
5a:6b:d1:4d:82:a3:96:65:bd:05:a4:17:85:a7:70:21:2f:09:
c9:2a:e0:24:fa:c1:92:52:2c:b7:e0:f8:04:21:c9:31:58:f8:
39:b2:80:54:ad:b4:93:51:ec:9a:bd:6b:9e:99:e9:11:a5:bf:
33:9c:64:58:be:e7:c9:16:f8:d0:7f:a2:8c:4f:af:f4:58:76:
f0:d5:58:d9:e5:6f:3b:54:c0:6f:ac:2e:d2:0e:76:e0:f2:9b:
c0:ab:f6:31:62:61:49:89:ef:1f:cc:e8:20:51:af:7c:40:0a:
6a:7c:cc:86:d5:6d:1e:49:28:8e:cd:20:e7:7e:27:14:d9:9f:
85:e4:57:16:28:c1:9e:47:ea:2e:9a:1a:92:e3:5c:44:4a:76:
93:de:2c:12:ce:79:32:db:d4:51:c4:0b:48:87:e3:63:81:26:
47:1d:47:3d:bc:27:82:dd:5e:0c:68:71:7a:c4:12:70:02:b2:
0e:42:29:78:99:c8:9f:01:b5:b7:58:c6:36:52:e3:82:3f:e7:
8e:f0:ab:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:59 2024 by rpki-client on console-fra.rpki-client.org