Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/fl24pkGHpf5xkmFoGX266MNhT80.roa
File: fl24pkGHpf5xkmFoGX266MNhT80.roa (raw, json)
Hash identifier: hHEhQ6gQiB2dKDgGNunzVZx6T5l42sVWrU8FKbzTmQc=
Subject key identifier: 7E:5D:B8:A6:41:87:A5:FE:71:92:61:68:19:7D:BA:E8:C3:61:4F:CD
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 081F25FB
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/fl24pkGHpf5xkmFoGX266MNhT80.roa
Signing time: Sat 01 Jan 2022 06:56:00 +0000
ROA not before: Sat 01 Jan 2022 06:56:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212895
IP address blocks: 2a0f:5707:b000::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136259067 (0x81f25fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 1 06:56:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e5db8a64187a5fe71926168197dbae8c3614fcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:6a:9f:2e:f0:04:23:1c:f8:ff:47:1b:c7:04:
59:be:16:75:63:e4:3b:c8:16:11:75:59:25:b0:cd:
fa:1a:dc:82:0e:ae:e1:3a:6d:01:30:0b:5e:2b:4b:
f0:f6:e6:82:93:60:0d:30:08:73:5b:0d:d6:45:2d:
83:0d:12:6d:bc:bc:f3:88:e7:55:ca:14:78:e1:2e:
b1:8e:df:74:77:54:2f:0d:b3:9b:4f:90:ae:d0:c7:
99:e9:e0:38:53:cd:ed:92:b9:1b:a2:a7:65:1f:02:
5c:ca:36:25:49:7b:3f:77:09:13:05:4c:dc:06:84:
dd:09:d4:b2:12:f6:c5:5f:2e:fc:1c:4b:9b:ed:f3:
9f:3a:99:26:6f:17:e4:90:72:8f:d7:38:02:00:ed:
d4:57:2c:a9:33:fb:7c:73:a1:54:c6:f5:ca:1a:82:
46:da:cb:d0:2c:97:59:b8:9d:d2:5c:45:3c:22:ef:
08:c7:e2:4e:73:5f:ff:ff:7f:be:4c:09:01:32:d5:
8e:2e:b7:10:eb:aa:63:6e:c9:65:53:1a:a4:e2:01:
09:94:cc:e9:e5:02:bc:d7:67:29:65:51:31:5c:2e:
8d:82:32:a4:a1:2d:6f:c2:a7:b8:87:24:82:fa:26:
79:50:34:88:2b:18:3c:ae:1b:cb:27:4a:cf:f2:e4:
d9:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:5D:B8:A6:41:87:A5:FE:71:92:61:68:19:7D:BA:E8:C3:61:4F:CD
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/fl24pkGHpf5xkmFoGX266MNhT80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:b000::/40
Signature Algorithm: sha256WithRSAEncryption
14:a8:bb:40:c1:90:dc:dd:90:16:fc:b1:cc:bf:26:b2:0b:d6:
0b:68:29:13:72:53:4f:d0:cd:89:4a:cb:f9:30:ee:09:1b:31:
47:25:44:e9:ac:90:6a:ba:3b:9f:31:a4:ef:ca:9d:6f:43:a1:
23:a2:fb:7b:95:9e:56:29:80:77:cf:ef:b6:89:8b:69:27:dd:
8b:64:43:48:15:15:95:b2:63:40:fd:a5:41:f4:08:c0:ca:a5:
3a:04:ab:94:be:1f:27:5a:a7:f0:19:64:64:57:0a:a2:a4:44:
e4:f7:2e:b6:c5:0f:bc:7e:54:2e:dc:9e:6e:8d:f9:e1:c8:53:
94:f3:58:47:e7:c8:09:ea:07:da:68:93:7a:7c:1d:c0:4e:a6:
15:70:bc:2b:06:ed:0d:d1:aa:86:96:8f:6c:be:c9:c6:91:fa:
eb:18:73:fb:b4:52:d8:0c:37:9d:8d:4d:79:45:81:5e:51:b7:
a2:41:8f:fb:e6:f6:1b:c2:f2:61:e2:c5:48:67:c6:3f:a0:64:
99:cb:8f:00:25:72:a7:ec:ee:f0:d6:76:b3:64:47:e0:ec:2c:
0a:d4:07:0b:ef:5e:81:d3:75:d7:b5:96:96:30:bb:5e:7d:7c:
46:23:dc:0d:16:02:31:9e:11:18:18:44:7d:44:5c:90:ba:3f:
a0:71:75:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:22 2024 by rpki-client on console-ams.rpki-client.org