Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/_e49pZpoJz3oDC8z8nu13dgPp9w.roa
File: _e49pZpoJz3oDC8z8nu13dgPp9w.roa (raw, json)
Hash identifier: Ff77OfPJzvDXEba5GpHdOr5E+0p/NWkHB1JGPQO6bAA=
Subject key identifier: FD:EE:3D:A5:9A:68:27:3D:E8:0C:2F:33:F2:7B:B5:DD:D8:0F:A7:DC
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 0809A4F2
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/_e49pZpoJz3oDC8z8nu13dgPp9w.roa
Signing time: Sat 01 Jan 2022 06:55:49 +0000
ROA not before: Sat 01 Jan 2022 06:55:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206215
IP address blocks: 2a0f:5707:aa50::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134849778 (0x809a4f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 1 06:55:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fdee3da59a68273de80c2f33f27bb5ddd80fa7dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:01:e6:f8:b0:ae:5d:61:25:97:a0:eb:2f:00:
89:70:da:a5:80:e5:0c:c8:2d:51:3f:d7:20:cf:7f:
d3:91:ce:84:aa:62:89:58:1b:81:8d:74:63:7b:aa:
b1:70:63:2c:58:88:bb:4e:d7:c5:c3:eb:f2:fb:9b:
32:19:c8:e4:f9:b2:9e:87:3f:83:48:d4:81:23:d6:
52:ba:46:75:7c:b9:66:86:ff:1c:01:a9:da:b8:04:
39:da:07:1d:43:1a:53:a7:c8:cc:2d:b9:98:63:bf:
17:95:da:fe:82:41:16:07:11:a7:ed:c1:c0:8b:f9:
5f:b4:f9:a3:e2:48:09:d2:70:fd:22:44:03:76:7c:
5d:04:28:1f:54:f9:15:8f:4c:f2:64:00:a1:de:a6:
ab:07:74:7f:15:c7:64:d6:e5:33:d7:c8:07:5e:85:
43:72:40:02:13:ec:ac:8f:c2:9a:61:fa:d0:38:5f:
2d:a8:c1:c0:17:46:ea:d1:ce:27:b9:65:a9:b8:1a:
76:82:b1:f3:d1:98:2b:a7:a6:22:d6:76:92:9f:09:
82:fe:a0:61:e0:e8:f1:1e:4b:6d:e8:df:e6:2a:0b:
71:09:00:e7:2b:4f:de:5b:ff:a4:78:9e:9a:32:22:
89:60:55:d0:b1:64:e9:82:a0:f2:c7:59:c3:39:27:
96:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:EE:3D:A5:9A:68:27:3D:E8:0C:2F:33:F2:7B:B5:DD:D8:0F:A7:DC
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/_e49pZpoJz3oDC8z8nu13dgPp9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:aa50::/44
Signature Algorithm: sha256WithRSAEncryption
6a:61:ac:32:c5:5d:64:ed:0a:03:e5:3e:0e:91:84:06:c6:3d:
ca:04:3c:9f:f6:34:64:05:a5:5f:76:de:08:fb:d8:e3:f7:15:
c3:f0:a7:97:58:c4:9b:72:ac:3b:d9:52:0d:06:50:b8:dc:47:
ca:ac:52:51:9c:f7:2a:cd:e9:98:3e:0d:f3:1c:50:de:c9:3d:
82:50:b6:20:1d:07:c4:ff:ef:a0:bb:24:80:66:d6:cb:6d:66:
79:d4:80:aa:b7:1b:32:e4:e2:a3:59:38:c1:cc:b6:14:90:0e:
e6:2f:31:4f:77:b0:99:3a:aa:06:a5:be:7e:62:49:29:b0:d2:
9d:eb:7e:ce:cf:09:e7:53:a2:0a:68:87:77:48:b7:ee:c1:95:
58:40:70:8a:69:30:e9:40:0b:6e:89:57:7c:e4:60:6d:65:b8:
1c:8b:76:34:a0:18:4b:c4:49:0b:f2:5a:27:17:fe:57:5c:df:
f1:5c:2a:6f:93:68:ba:74:41:69:2c:af:65:28:48:33:2d:ba:
4d:56:d9:7e:f4:d1:48:00:db:12:29:f7:c0:7f:4c:f9:5c:de:
ac:1c:be:ea:cb:b3:fa:7b:aa:43:15:9f:20:4c:41:38:31:90:
28:d1:e0:af:56:4f:31:86:59:26:92:b1:c4:64:e7:b8:dd:37:
56:8b:e1:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:59 2024 by rpki-client on console-fra.rpki-client.org