Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/R7tKfgDhlAchQphU0Ni-AdBb2qA.roa
File: R7tKfgDhlAchQphU0Ni-AdBb2qA.roa (raw, json)
Hash identifier: 4ItZhFkMYpXR+rHM0YapvTXeUoPhYZOd3m9f+owvt34=
Subject key identifier: 47:BB:4A:7E:00:E1:94:07:21:42:98:54:D0:D8:BE:01:D0:5B:DA:A0
Certificate issuer: /CN=2631166de785a3531bdc8361f1190a8369a7ed6a
Certificate serial: 380CF0A0
Authority key identifier: 26:31:16:6D:E7:85:A3:53:1B:DC:83:61:F1:19:0A:83:69:A7:ED:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/R7tKfgDhlAchQphU0Ni-AdBb2qA.roa
Signing time: Sat 01 Jan 2022 04:04:08 +0000
ROA not before: Sat 01 Jan 2022 04:04:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211623
IP address blocks: 2a00:1ca8:56::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 940372128 (0x380cf0a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2631166de785a3531bdc8361f1190a8369a7ed6a
Validity
Not Before: Jan 1 04:04:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=47bb4a7e00e1940721429854d0d8be01d05bdaa0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:aa:44:ff:fb:9d:1e:fc:85:7d:17:9a:c4:be:
86:4b:a4:ee:56:fd:16:04:ab:4e:f3:0f:7f:8a:1a:
7d:ac:5f:60:16:42:c8:56:8c:c7:fd:59:5e:fa:a9:
a4:a6:11:42:81:3f:c3:c1:00:55:3f:c5:c4:ae:21:
3f:5a:2f:8e:e7:95:65:06:6d:59:20:1e:5b:4c:bd:
f5:ec:42:6b:97:01:fc:0a:ec:4a:06:20:ad:34:50:
27:23:ab:42:ff:d2:5b:2d:c2:dc:bf:ee:bb:f6:05:
1e:56:09:33:c9:be:a6:fd:49:1d:bd:31:85:45:fe:
25:82:a5:f6:02:76:b3:f6:dd:c5:bf:a7:ec:a3:a9:
1f:c5:4c:eb:30:2c:c1:eb:a2:85:7e:6d:26:a6:43:
e7:53:3a:db:00:72:26:96:3f:24:6f:29:9a:8f:a5:
d0:1f:f8:4b:04:8f:a3:f9:54:ac:1c:93:f6:c8:29:
bc:3a:01:f5:c6:22:69:2e:78:f8:05:4a:f4:90:ba:
3b:e6:99:c6:c8:35:d2:b1:c6:7a:1f:d6:a2:33:78:
d5:cf:c9:6f:5e:7d:47:5c:3b:52:30:88:0f:6d:40:
18:3f:d4:e0:38:24:3b:98:f9:38:29:a9:62:03:42:
4f:4e:c8:2b:7a:ec:cb:6e:d3:64:2c:3b:76:02:54:
6d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:BB:4A:7E:00:E1:94:07:21:42:98:54:D0:D8:BE:01:D0:5B:DA:A0
X509v3 Authority Key Identifier:
keyid:26:31:16:6D:E7:85:A3:53:1B:DC:83:61:F1:19:0A:83:69:A7:ED:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/R7tKfgDhlAchQphU0Ni-AdBb2qA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1ca8:56::/48
Signature Algorithm: sha256WithRSAEncryption
13:04:d6:68:d6:0a:10:27:9c:a2:be:c2:7b:57:8d:32:38:90:
e5:ee:50:0f:75:0d:e0:e5:b8:42:92:c0:7c:8d:59:b2:2a:d9:
2b:81:b2:c9:69:04:93:29:c1:46:bf:2f:0c:3f:66:10:6f:b0:
21:91:50:9d:bc:22:a1:25:5a:4d:c5:5b:ee:91:db:d4:2c:ad:
44:e3:96:dd:84:ee:45:e5:e7:5e:ca:cc:ea:ab:7a:c3:4e:f9:
01:50:e3:88:c0:dd:45:99:6a:fe:39:a7:24:c9:a1:30:f6:f3:
f1:26:ed:7a:f0:24:39:a9:97:1e:0b:65:fb:0c:ac:4b:93:68:
bf:88:af:ed:fd:86:83:72:a0:ea:41:97:5b:1b:04:27:bd:55:
61:14:99:88:43:dc:0c:d7:34:28:fb:27:b0:7f:00:b2:ea:a6:
89:02:44:8d:50:fa:29:bc:03:cd:b0:e4:1d:fd:2a:57:48:02:
bc:84:6f:8b:f0:d3:f4:bf:92:29:bc:6e:56:92:ac:c6:70:b6:
10:46:a9:b1:b1:e3:68:46:f3:7a:fb:eb:e8:9e:af:a0:25:08:
20:b9:3f:70:d1:7b:a3:ee:65:8e:b1:a8:9d:ae:6d:90:60:ed:
21:ad:a7:0a:0b:c9:59:70:08:46:eb:af:d7:68:49:23:e7:29:
a3:a3:5d:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:26 2024 by rpki-client on console-ams.rpki-client.org