Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/k9An6w5-v4TaynxRrfTlm2mJ6Lo.roa
File: k9An6w5-v4TaynxRrfTlm2mJ6Lo.roa (raw, json)
Hash identifier: qSnFjfqRYHV3CdbecxOTffVWrAblCi9Kn6TkKacS1OM=
Subject key identifier: 93:D0:27:EB:0E:7E:BF:84:DA:CA:7C:51:AD:F4:E5:9B:69:89:E8:BA
Certificate issuer: /CN=89056fa9625b6c87404267c6dc219924ac160045
Certificate serial: 0183141B0604FC3784A7094C883CA3B157CA
Authority key identifier: 89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/k9An6w5-v4TaynxRrfTlm2mJ6Lo.roa
Signing time: Tue 06 Sep 2022 18:40:58 +0000
ROA not before: Tue 06 Sep 2022 18:40:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 55720
IP address blocks: 2a11:840:26::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:14:1b:06:04:fc:37:84:a7:09:4c:88:3c:a3:b1:57:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89056fa9625b6c87404267c6dc219924ac160045
Validity
Not Before: Sep 6 18:40:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93d027eb0e7ebf84daca7c51adf4e59b6989e8ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:41:c1:98:af:49:6c:a8:72:75:f4:36:3e:5c:
40:2c:80:de:85:78:ec:54:3a:f0:23:4f:b7:37:4f:
6a:58:eb:ad:67:2a:39:37:22:e6:ab:80:e1:79:0d:
10:44:93:33:28:f3:2a:90:62:05:39:0b:1a:3f:28:
6e:50:5e:11:54:6c:32:df:de:39:32:19:04:e4:88:
24:86:41:f8:fc:f7:af:e8:e5:7f:55:bd:a0:1f:41:
5d:56:c4:cb:0a:c7:85:1f:2d:3c:58:03:be:96:ec:
59:46:5e:70:08:37:fc:d4:42:5a:52:5a:bd:51:9f:
be:bf:4c:33:18:8f:51:21:f9:f6:6a:36:9c:56:44:
7e:f5:a4:35:0f:db:b4:b6:73:60:5f:d3:dc:37:ea:
18:a8:18:8d:74:1c:d1:6d:0a:4b:ef:28:81:a5:60:
81:e8:1c:25:5a:1d:7f:2b:c1:87:97:b0:32:86:0d:
c9:60:22:d5:2c:fb:d3:dc:fb:4c:d5:85:de:29:9f:
97:0d:8a:0d:14:98:d5:7b:c1:d2:68:10:c5:b3:a2:
b7:e0:8b:60:f6:a7:c5:90:c2:5e:e9:18:76:67:f9:
df:69:98:2d:30:63:4f:ab:95:e4:89:5b:2c:e3:a7:
33:c3:02:06:ac:44:77:b9:66:35:dc:ec:4d:ef:32:
03:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:D0:27:EB:0E:7E:BF:84:DA:CA:7C:51:AD:F4:E5:9B:69:89:E8:BA
X509v3 Authority Key Identifier:
keyid:89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/k9An6w5-v4TaynxRrfTlm2mJ6Lo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:840:26::/48
Signature Algorithm: sha256WithRSAEncryption
93:cb:56:96:eb:c7:3d:cd:09:6c:e6:26:85:dc:ea:dd:3d:e5:
cc:0c:48:d1:f0:ba:03:2c:28:cf:a7:1c:89:61:b5:34:b7:4b:
f4:2c:5b:a9:ab:03:d6:f3:29:fe:4a:5d:ca:e7:f6:83:32:72:
5c:d7:46:de:0a:be:32:13:3d:ac:9c:80:3c:ca:73:eb:c1:b3:
96:90:a3:6b:a0:93:d6:b3:c4:10:c4:01:ea:72:f2:6b:b5:3b:
55:08:05:65:d3:b7:60:6a:e8:37:9b:cf:31:64:fa:24:06:1a:
ae:d1:3f:80:84:96:04:27:4d:51:d0:c6:bf:28:3d:4f:4d:9b:
83:e9:d2:cc:29:f0:ee:92:03:7b:65:e8:8c:6b:13:23:b1:7c:
50:1b:51:b9:df:9c:03:4e:92:6e:e7:93:ad:03:1c:3b:ae:ca:
35:a4:6e:ac:a7:72:83:e4:71:f0:81:ba:79:54:39:91:57:a9:
66:f3:6c:f3:f2:46:ac:cd:5a:be:e0:49:e0:03:b5:c2:5d:4e:
62:6f:d9:f7:b9:07:6b:41:9d:56:fc:b9:8b:86:b2:5e:8e:7d:
45:05:8a:c6:ca:d3:62:05:f3:7b:0f:32:86:51:74:78:bd:e6:
f7:74:aa:b7:d8:b0:52:ec:d0:c6:af:0d:ed:59:cb:6c:4b:63:
d5:60:65:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:20 2024 by rpki-client on console-fra.rpki-client.org