Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/xS4m3mSFBUPctC5TYM1XUpo6Eb0.roa
File: xS4m3mSFBUPctC5TYM1XUpo6Eb0.roa (raw, json)
Hash identifier: N2QI0ay42zH5tT8unPxaVFzyOo3WX3vF+rbqWbEUuOM=
Subject key identifier: C5:2E:26:DE:64:85:05:43:DC:B4:2E:53:60:CD:57:52:9A:3A:11:BD
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 080EB81C
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/xS4m3mSFBUPctC5TYM1XUpo6Eb0.roa
Signing time: Sat 01 Jan 2022 06:55:52 +0000
ROA not before: Sat 01 Jan 2022 06:55:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207963
IP address blocks: 2a0f:5707:ad01::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135182364 (0x80eb81c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 1 06:55:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c52e26de64850543dcb42e5360cd57529a3a11bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:bb:47:d3:11:fd:e9:17:2f:5e:7d:d3:84:ed:
d0:28:3a:f3:61:7a:77:ef:71:98:ac:cd:7a:6e:4b:
df:da:10:c0:36:33:eb:65:0b:b7:d2:c0:d5:b1:0f:
85:2e:02:ab:de:5e:91:74:77:d6:ac:8e:96:47:97:
3f:18:05:5d:14:c7:09:05:c3:77:ff:bf:3e:cc:64:
f4:fb:6c:17:2d:e2:bc:9e:67:6a:c7:b2:0a:79:a2:
08:d1:44:b0:f9:52:89:54:f3:7a:78:ab:cc:f8:cd:
88:65:39:db:4e:47:a5:d2:13:b8:11:e9:24:37:20:
57:a8:58:ee:f9:5b:3c:78:86:01:bd:9a:2e:d4:a9:
6d:22:f2:da:e7:6f:b3:a9:e4:42:fa:4d:59:9d:85:
d0:56:e2:09:2e:88:f0:9f:bd:26:f6:08:0d:d8:4b:
a6:d7:b0:3e:1e:38:bd:d9:40:ce:36:5e:52:6f:78:
a4:5f:33:3f:4e:29:12:7e:f8:1d:62:c1:d5:ff:58:
36:19:1d:cb:b5:f1:0c:89:48:02:90:1a:3b:5a:44:
37:eb:c7:36:6a:55:e2:e4:17:76:c8:57:bf:28:94:
9c:4f:6e:fd:c8:0f:3c:c7:25:5c:cb:a1:95:71:0a:
4a:36:d3:27:2f:2f:6e:7b:f2:6d:b8:c1:18:1d:7d:
d6:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:2E:26:DE:64:85:05:43:DC:B4:2E:53:60:CD:57:52:9A:3A:11:BD
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/xS4m3mSFBUPctC5TYM1XUpo6Eb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:ad01::/48
Signature Algorithm: sha256WithRSAEncryption
86:5d:15:6e:f3:05:b8:06:3b:b5:f8:36:0e:bd:47:0d:53:8b:
91:83:93:97:2b:f8:04:af:64:25:ef:61:29:17:bf:05:38:b6:
75:2c:f5:ca:c3:69:45:5f:26:90:d1:d4:7b:ef:b7:7e:ef:4b:
d9:98:e5:51:52:50:80:05:8b:0f:63:68:fd:c0:6c:99:c7:dc:
5b:b9:8c:01:65:a4:0a:af:54:11:0e:22:55:c7:94:29:43:19:
76:ba:b1:c4:58:b3:0c:5c:4b:49:64:be:4e:9e:60:a9:43:68:
f9:99:ee:ae:67:d3:29:7b:fa:84:95:e9:d3:aa:a3:25:f0:43:
3f:3b:df:20:a9:27:14:e2:e2:f9:00:a0:20:61:de:e1:1a:97:
1b:5a:14:11:51:7a:95:72:1d:da:cb:89:4a:d9:4c:f7:d3:08:
ca:19:4b:07:18:ed:69:ab:ac:39:13:f2:5f:23:e3:96:b0:bc:
4c:a9:34:56:15:7c:ec:71:20:fc:3e:81:6e:6b:7d:d3:50:d2:
1d:a5:db:24:14:f5:fd:18:da:76:62:ec:1f:0f:c9:7c:ea:fc:
5d:38:c5:c3:ce:30:c2:9f:9a:59:80:e2:75:17:31:01:3f:9f:
87:2b:59:c9:78:70:92:7d:35:76:4f:96:66:28:7e:12:42:2b:
ea:a9:cc:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:59 2024 by rpki-client on console-fra.rpki-client.org