Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/vl2fIpNIbUOxqZXirVs9ISYZKQA.roa
File: vl2fIpNIbUOxqZXirVs9ISYZKQA.roa (raw, json)
Hash identifier: no5tEO+F2P5oxWvHD7L9Q0NEYIyf4p2ADkImOpIv+I4=
Subject key identifier: BE:5D:9F:22:93:48:6D:43:B1:A9:95:E2:AD:5B:3D:21:26:19:29:00
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 0816CDDC
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/vl2fIpNIbUOxqZXirVs9ISYZKQA.roa
Signing time: Sat 01 Jan 2022 06:55:56 +0000
ROA not before: Sat 01 Jan 2022 06:55:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211620
IP address blocks: 2a0f:5707:abb0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135712220 (0x816cddc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 1 06:55:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be5d9f2293486d43b1a995e2ad5b3d2126192900
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:35:8c:c5:b0:f7:3b:67:7d:73:4d:ed:e2:49:
8e:38:96:76:9c:1f:09:68:b3:1f:4c:35:28:44:2f:
e1:e2:99:9b:a6:1c:2d:9f:c0:11:ef:7e:c0:58:f0:
94:5b:71:5b:69:be:5b:e1:89:48:6e:d3:b0:f3:03:
a5:49:66:ae:0e:0e:20:07:ba:68:ca:b9:bf:bf:af:
5f:38:68:a3:a2:72:79:ee:07:51:e7:b9:d9:c5:ad:
97:c5:ab:90:33:f6:be:6b:d1:d4:4d:e8:61:7a:fd:
64:65:7b:45:97:5a:90:ef:24:da:32:ae:60:4e:42:
1b:52:58:b0:35:fb:7c:4d:a2:d4:a3:79:3c:e8:82:
db:01:86:c4:b3:ce:96:4c:56:c9:9b:46:8a:dc:f5:
5f:29:43:0e:bc:1e:38:3d:8b:10:9b:b5:1e:3c:b3:
eb:ca:fd:a3:4b:c2:68:d1:b0:bf:1f:e3:be:de:61:
50:9c:c9:f0:dc:aa:1c:13:58:89:bf:fc:07:56:21:
4f:14:30:64:29:b8:5f:4c:07:15:6f:7e:ec:c5:c4:
a1:7a:1a:ad:20:81:56:a2:e6:94:41:67:f4:0c:05:
24:81:fd:b8:d7:e9:94:66:e8:bd:b9:c3:c3:e9:70:
36:4f:ea:bf:21:78:0e:36:88:fc:6e:ce:61:74:ad:
00:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:5D:9F:22:93:48:6D:43:B1:A9:95:E2:AD:5B:3D:21:26:19:29:00
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/vl2fIpNIbUOxqZXirVs9ISYZKQA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:abb0::/44
Signature Algorithm: sha256WithRSAEncryption
03:9b:35:e3:ae:95:2b:76:ab:c6:cc:fe:11:5d:e4:22:50:44:
15:6e:37:23:91:f1:cb:d0:30:9e:23:3d:33:a1:73:19:a4:3c:
de:84:23:15:1a:10:f8:d1:bf:1b:8e:14:02:ec:95:3b:e0:77:
5b:60:ff:a2:95:a0:5d:b0:09:dc:ea:19:92:0c:dd:45:17:90:
26:a1:f4:e3:de:68:a7:74:89:d0:1e:0c:6b:8f:02:e5:61:78:
7d:b6:42:f6:d0:d1:58:cb:3c:94:80:48:7e:15:2c:ab:42:38:
7b:6f:9d:7f:58:79:e2:ce:0f:76:21:41:da:9e:08:23:20:a8:
bb:83:72:1c:de:3b:21:bc:77:d0:91:c5:5b:cf:2a:a5:aa:fe:
63:16:44:e0:98:e3:db:87:b7:82:23:a5:54:d6:ec:4c:35:fb:
e0:fa:05:14:9b:83:aa:10:d7:10:d9:c7:fa:b5:d9:c0:92:32:
d5:33:19:dc:a0:d3:22:48:75:9f:e4:48:d5:43:b3:86:05:6d:
0c:22:c5:9e:ac:d5:b0:33:99:9f:67:a3:28:96:2f:b5:86:51:
e9:b8:d1:a4:a5:c5:a4:89:bc:6d:28:4b:e1:b7:d9:3f:05:0e:
ac:ba:2f:f6:89:7f:c2:25:d5:fe:23:bb:10:c2:1a:04:39:7c:
13:e4:89:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:59 2024 by rpki-client on console-fra.rpki-client.org