Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/sD2U9XIPNIqypSg-Qh2NmKKEGi8.roa
File: sD2U9XIPNIqypSg-Qh2NmKKEGi8.roa (raw, json)
Hash identifier: tEj8+6JMf9rwEINnRGfB8Az04TBEpqebrkYGAE5jQNQ=
Subject key identifier: B0:3D:94:F5:72:0F:34:8A:B2:A5:28:3E:42:1D:8D:98:A2:84:1A:2F
Certificate issuer: /CN=89056fa9625b6c87404267c6dc219924ac160045
Certificate serial: 0181D8DBA9C744BCDEAAC0A266FCA996DE9A
Authority key identifier: 89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/sD2U9XIPNIqypSg-Qh2NmKKEGi8.roa
Signing time: Thu 07 Jul 2022 13:31:23 +0000
ROA not before: Thu 07 Jul 2022 13:31:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 2a11:840:24::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d8:db:a9:c7:44:bc:de:aa:c0:a2:66:fc:a9:96:de:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89056fa9625b6c87404267c6dc219924ac160045
Validity
Not Before: Jul 7 13:31:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b03d94f5720f348ab2a5283e421d8d98a2841a2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:1b:10:7c:85:ac:1a:cd:e3:40:32:8c:f9:ad:
55:a7:66:33:09:fe:7d:04:5b:da:02:13:ee:41:71:
54:23:e9:49:15:2f:fd:69:64:74:88:9d:95:ad:c0:
47:09:60:38:b5:36:39:4c:7c:5c:78:86:fe:17:b5:
fb:c0:39:ed:c3:0f:ae:db:0d:ba:fe:8c:19:af:ad:
a7:da:b3:4a:08:85:ae:a8:0c:45:d6:aa:0c:71:fc:
cf:29:f3:85:92:1d:79:cb:2b:a2:05:3d:1e:1f:1d:
88:94:f5:34:8f:6d:87:29:a6:ff:17:26:a0:83:38:
43:4c:d7:d9:bc:d3:7d:2f:7f:a5:2d:90:a0:e5:7c:
00:1e:81:80:68:71:d4:cc:84:53:f6:37:61:3b:38:
52:86:34:60:3b:c8:df:34:51:e6:91:09:e8:86:ba:
9b:67:0f:41:f8:6d:d4:78:8b:ab:5e:3c:64:4d:91:
4d:1c:00:fb:3e:c7:d4:19:2a:d9:d6:fc:11:2d:b9:
77:db:4f:f6:30:65:d9:2d:76:df:f4:92:3f:36:60:
ee:ec:c7:1f:3b:52:69:8b:35:b2:8d:46:e6:9b:5f:
ea:08:22:96:49:65:0f:1c:26:39:aa:66:11:ff:5d:
66:26:80:2f:36:d6:5c:01:db:19:39:8c:72:7a:46:
52:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:3D:94:F5:72:0F:34:8A:B2:A5:28:3E:42:1D:8D:98:A2:84:1A:2F
X509v3 Authority Key Identifier:
keyid:89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/sD2U9XIPNIqypSg-Qh2NmKKEGi8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:840:24::/48
Signature Algorithm: sha256WithRSAEncryption
21:1f:a2:15:f1:e5:b6:10:70:46:8f:29:f1:36:54:fd:d0:5e:
fe:2e:91:62:11:eb:c9:43:d2:0c:11:b1:21:47:61:06:29:51:
1f:90:e4:05:83:fe:e4:e3:de:49:99:a8:90:55:42:c5:b7:12:
f1:6f:ba:59:5e:bd:61:af:9f:64:2e:10:b5:47:85:f6:db:54:
3b:7f:04:6e:7c:c2:d1:40:00:93:64:07:45:33:71:f8:09:66:
b8:a1:70:f9:d5:2f:52:c5:04:c0:1e:a1:be:8f:6d:ad:77:19:
b4:a1:45:f5:0b:ec:fb:22:49:dc:61:d9:ba:9a:c7:4f:c1:48:
07:db:e3:8e:2e:4e:00:4c:08:47:53:85:82:b2:de:cc:f8:e0:
db:6e:d9:d6:b9:10:1d:37:54:65:d4:45:bf:f2:f1:13:fb:d8:
69:47:00:f3:21:b8:7c:fe:8c:d7:36:ba:2b:f1:38:e9:f0:49:
65:34:47:6c:88:7f:fc:ae:b8:be:bf:4f:69:21:50:55:49:63:
cd:21:65:cb:2f:1d:f9:90:16:93:f7:10:da:28:66:7c:8e:ff:
fd:9a:e6:bd:eb:7d:c8:0c:a8:bb:f4:5a:ce:72:f9:2e:e2:3b:
24:e9:ff:3b:ad:c5:0d:28:81:93:30:1e:7e:d3:1c:06:31:ad:
9c:8a:c5:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:20 2024 by rpki-client on console-fra.rpki-client.org