Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/RbhRBSF1tGr8tqicpUM5L2qyEkU.roa
File: RbhRBSF1tGr8tqicpUM5L2qyEkU.roa (raw, json)
Hash identifier: wFM3A+BBNHQ0ZcN1g1augkgtE5KhJ/OtPUV/UmLVPOI=
Subject key identifier: 45:B8:51:05:21:75:B4:6A:FC:B6:A8:9C:A5:43:39:2F:6A:B2:12:45
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 083A2CD2
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/RbhRBSF1tGr8tqicpUM5L2qyEkU.roa
Signing time: Mon 10 Jan 2022 12:30:11 +0000
ROA not before: Mon 10 Jan 2022 12:30:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56876
IP address blocks: 2a0f:5707:aab1::/48 maxlen: 48
2a0f:5707:aab0::/44 maxlen: 44
2a0f:5707:aab0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138030290 (0x83a2cd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 10 12:30:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=45b851052175b46afcb6a89ca543392f6ab21245
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a6:2a:a0:e4:c4:1f:04:f2:18:9e:89:8e:35:
78:21:20:44:18:cb:03:72:27:05:b1:41:7c:bd:b1:
c1:67:25:e6:dc:8d:e2:fb:0a:ec:0d:25:4e:1e:34:
38:da:66:b2:de:1b:91:da:28:d3:84:fa:73:da:0b:
b5:34:b3:59:0c:b0:8b:a1:42:79:b1:3c:15:73:17:
81:be:22:54:8c:f8:c0:db:62:74:2e:ed:82:cc:97:
ae:14:58:d8:cd:f6:4d:e5:cf:ce:c2:31:b3:44:86:
25:f0:73:fa:b1:fc:f6:81:4f:32:ae:e7:bb:e1:00:
6a:46:80:7f:98:69:a8:4d:7d:f6:f3:87:42:a6:dd:
31:53:2c:8a:b9:75:e4:a0:0a:7f:1f:72:61:b1:d9:
a8:89:7f:48:2c:38:53:2b:23:e3:5a:2c:93:e7:6e:
ff:72:6b:15:dc:43:d3:16:e7:41:a6:a7:c2:fe:29:
d0:e0:c6:38:e5:cb:a4:89:7d:96:8b:64:81:41:ef:
c5:6b:76:be:a8:ec:0c:03:3b:fb:8c:b9:9e:ad:75:
b8:c8:9e:2d:33:f9:23:5e:73:c6:7e:12:5a:9d:ca:
20:00:65:16:07:60:e0:ca:08:0f:75:ec:9b:2d:5d:
ea:c3:e1:3f:c4:b6:d2:2e:93:e0:36:39:c1:4a:64:
3a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:B8:51:05:21:75:B4:6A:FC:B6:A8:9C:A5:43:39:2F:6A:B2:12:45
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/RbhRBSF1tGr8tqicpUM5L2qyEkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:aab0::/44
Signature Algorithm: sha256WithRSAEncryption
7e:dc:d7:9c:0c:1d:3e:83:ea:d7:8b:5c:f5:44:53:bc:25:52:
b3:1e:b6:90:48:18:e1:08:60:18:10:a6:b4:47:5e:df:00:08:
ad:79:91:43:4c:0f:e5:ec:8a:5f:63:5d:dd:c5:68:11:09:6d:
aa:f7:03:0e:2a:0d:ed:d6:dd:ec:26:61:d1:41:16:d1:9a:eb:
77:49:8f:bf:7b:97:24:46:39:43:ca:a2:80:19:a0:4c:53:db:
ff:35:e4:3c:32:b9:7a:54:51:95:b2:8d:fe:cc:7e:85:b3:80:
fe:5b:70:a8:6e:a8:57:30:a7:5b:ba:b3:a2:ca:56:86:44:78:
6c:2e:84:0b:e0:e1:af:d3:7f:06:e1:b7:7c:96:bc:71:14:49:
0b:5c:48:7e:88:bd:37:83:f9:5e:8e:f4:4d:e3:72:2b:00:5a:
1c:ac:e9:7e:65:eb:0e:73:f6:46:5c:d7:b8:5e:2b:b4:dc:f4:
76:59:98:1d:5c:ac:be:f4:e7:8e:4f:3f:c9:38:96:59:2a:2d:
c2:8f:54:40:e8:6f:5d:95:dd:07:ca:27:70:0f:a3:0a:c6:f1:
80:72:82:81:ff:0b:6d:76:df:83:fc:c3:d0:7b:9a:ae:2b:5b:
9c:d4:ca:fc:e3:da:0d:10:fb:5b:4c:e9:79:4b:0d:64:45:46:
e1:c5:7f:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:22 2024 by rpki-client on console-ams.rpki-client.org