Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/E30pBm4IkHWo-1D018Yi383CO7U.roa
File: E30pBm4IkHWo-1D018Yi383CO7U.roa (raw, json)
Hash identifier: vwyH8Ov9+w/6/Q8b+TukRtEAJVLsjoUZfsLE54k09kA=
Subject key identifier: 13:7D:29:06:6E:08:90:75:A8:FB:50:F4:D7:C6:22:DF:CD:C2:3B:B5
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 094ADF5F
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/E30pBm4IkHWo-1D018Yi383CO7U.roa
Signing time: Sun 08 May 2022 09:16:07 +0000
ROA not before: Sun 08 May 2022 09:16:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205210
IP address blocks: 2a0f:5707:aa50::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155901791 (0x94adf5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: May 8 09:16:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=137d29066e089075a8fb50f4d7c622dfcdc23bb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:fb:93:e5:70:83:90:b1:07:d2:b8:24:5f:20:
03:33:fe:17:f3:d1:23:a3:64:0b:8d:d1:bf:bb:28:
af:59:38:f1:78:5f:5a:d2:ba:90:a2:ba:f5:3f:9b:
af:2e:46:2a:3f:62:0d:18:2f:fe:d9:fa:90:33:dd:
a5:c2:76:cc:75:75:d8:77:21:36:77:4f:f9:fe:ff:
2c:b2:25:52:63:e2:22:58:cc:96:b6:c8:e4:96:8a:
3b:95:c1:e8:f1:cf:34:2f:39:e2:dd:a1:9c:3d:ad:
0f:f6:aa:5a:40:d0:c9:f8:1d:d8:6d:98:ce:c2:a0:
28:e9:16:f1:55:aa:9e:9e:c7:90:b6:fc:c6:a7:ef:
47:a4:d5:ad:10:75:93:da:64:0d:36:c5:81:a6:03:
bb:19:ae:84:d0:38:36:6a:53:46:e7:b3:5e:cb:fb:
f8:76:89:dd:23:92:83:dd:9b:b0:34:e2:32:de:7f:
56:60:9d:1f:ed:67:b8:c7:ce:5c:7e:9c:e1:e5:5d:
ef:78:e4:05:26:9d:65:cd:b8:f2:f3:12:36:bb:c5:
8c:8c:a9:ed:35:6c:e3:6f:0b:2a:9a:b3:50:64:75:
ef:66:53:5a:2b:1c:e8:ca:58:cb:61:27:63:df:17:
1d:93:07:1e:27:00:95:4e:59:e6:e3:6e:66:5e:33:
e9:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:7D:29:06:6E:08:90:75:A8:FB:50:F4:D7:C6:22:DF:CD:C2:3B:B5
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/E30pBm4IkHWo-1D018Yi383CO7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:aa50::/44
Signature Algorithm: sha256WithRSAEncryption
02:29:0d:59:63:08:28:ca:56:d7:79:8d:a2:ae:cc:c5:4f:5a:
c7:07:83:a4:5b:61:d5:05:70:ee:b2:c3:06:8b:6f:96:4f:4f:
75:fd:ff:ba:13:68:d4:3d:8f:ea:49:7f:84:11:12:d8:5f:18:
10:98:16:27:70:0e:02:fe:5a:7a:ac:ad:10:9d:00:65:14:7e:
89:59:b6:38:ad:7f:7f:ed:1a:58:dd:58:94:39:3b:f8:e8:25:
a4:e3:57:a4:96:17:37:45:33:38:f0:a8:87:f7:20:c4:46:5a:
b7:78:1d:08:b6:c7:34:21:05:a7:2e:d2:8a:ff:a1:ae:f9:27:
da:ee:09:2a:58:c8:91:02:b9:1d:90:45:ca:1d:67:6a:71:4b:
c3:57:94:b0:bd:a7:0c:ec:1c:13:46:6c:e9:ec:81:e4:60:56:
fc:58:93:3f:8e:3b:f3:b1:0d:b4:59:cf:2b:95:ef:7d:40:20:
98:96:e9:a4:bf:ec:2e:69:a3:9a:8f:2a:1f:22:3d:3d:8e:95:
c9:a1:e2:4e:db:b5:12:61:e9:40:a8:93:a0:0f:41:d7:5e:d7:
ac:d4:89:92:73:43:fe:7c:e6:16:17:b5:68:4b:d2:52:6d:04:
95:8c:26:46:1e:02:c5:c2:7b:dd:26:85:fb:cf:4d:f0:e2:23:
73:a2:17:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:59 2024 by rpki-client on console-fra.rpki-client.org