Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/fZYp1IJNEXLvf6Pn_R61u4suneo.roa
File: fZYp1IJNEXLvf6Pn_R61u4suneo.roa (raw, json)
Hash identifier: Aon42Ne3AHq7+5+pFyhHpt+vAGpBuOqkBLKPHo7lSII=
Subject key identifier: 7D:96:29:D4:82:4D:11:72:EF:7F:A3:E7:FD:1E:B5:BB:8B:2E:9D:EA
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 1817A4FA
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/fZYp1IJNEXLvf6Pn_R61u4suneo.roa
Signing time: Sat 01 Jan 2022 04:00:44 +0000
ROA not before: Sat 01 Jan 2022 04:00:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211526
IP address blocks: 2a01:5a8:8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 404202746 (0x1817a4fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 04:00:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d9629d4824d1172ef7fa3e7fd1eb5bb8b2e9dea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:77:85:5c:d3:87:7a:78:3c:b8:d8:f7:46:ea:
96:88:16:95:c9:39:2a:a0:93:6b:97:05:14:dc:42:
d7:c6:c8:eb:96:bc:7d:a1:82:87:3b:9e:7e:23:3f:
57:03:a2:94:53:13:70:5d:84:68:88:cf:0f:d2:49:
b5:4e:2f:97:55:60:7c:2e:83:bd:3a:2d:0c:9f:93:
36:44:95:a9:87:23:fb:bd:4b:69:07:4d:fe:3a:8e:
bb:71:2f:7a:dd:19:2b:21:b3:dd:b6:42:cd:f6:92:
2e:45:f2:e5:48:2d:62:29:c1:21:ce:cb:5e:9c:2a:
11:e5:de:f8:fd:7b:b6:3c:1e:c6:49:91:51:ed:ea:
91:74:e8:ee:6b:4d:72:de:4f:0c:9a:69:81:0c:1e:
74:14:d7:d7:7c:32:05:75:cd:14:c4:d5:05:b6:ee:
4a:22:e5:78:64:04:af:4a:86:fc:f7:57:67:0c:44:
c6:c1:a7:41:71:31:7a:26:be:c1:04:42:4b:12:b8:
fd:dd:8a:e6:b9:18:84:31:5f:f4:6f:f1:65:f5:b5:
3a:ba:85:fd:b7:6c:30:56:7c:57:8f:3b:d0:18:af:
c3:4f:50:0e:29:2b:95:11:d7:af:54:a7:13:d4:dd:
9c:e1:19:cf:0f:ae:6b:69:08:d8:56:bb:73:5f:f6:
37:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:96:29:D4:82:4D:11:72:EF:7F:A3:E7:FD:1E:B5:BB:8B:2E:9D:EA
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/fZYp1IJNEXLvf6Pn_R61u4suneo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:5a8:8::/48
Signature Algorithm: sha256WithRSAEncryption
19:d7:f0:4b:4b:2b:41:47:3e:f0:93:7d:23:a0:92:ba:3f:56:
48:a2:a6:25:28:e4:98:8a:df:09:5d:92:c5:bf:1d:2c:3e:63:
66:cb:54:ab:e4:4a:75:17:11:4e:10:10:d8:54:22:9d:ad:e2:
be:53:f2:e9:d3:e2:4d:96:bb:56:6c:5f:ed:3a:80:1c:68:83:
b7:bf:61:9c:82:43:bc:75:10:1b:f1:31:0b:2d:37:a8:81:a5:
e4:a8:d7:90:80:8c:84:01:ec:c2:62:04:53:45:17:5d:e3:05:
aa:0b:a5:b3:16:3b:cb:02:b3:bd:d4:a6:35:25:f8:45:46:c0:
1c:d2:1a:88:4f:32:5e:7a:25:36:72:09:74:fa:ca:3b:0b:0b:
5c:05:83:23:4b:e7:5e:ee:64:7a:fe:3f:8a:90:33:ef:5a:11:
84:44:35:69:da:a5:16:b6:5d:0f:ad:34:32:6b:ca:fd:71:0d:
8f:ba:f5:13:ba:d3:ca:9f:bf:07:f6:b2:d2:93:65:77:50:e2:
7a:59:19:85:98:81:fa:8c:12:f6:43:40:83:b5:c3:72:00:cd:
2e:d7:7f:30:52:b2:0e:a6:7a:f6:c8:29:7f:59:4e:4b:bf:8e:
60:b4:bc:84:5c:58:25:ab:55:58:57:a9:53:2d:ed:98:9d:ca:
12:11:5d:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org