Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/cd0b2c-29e2-4737-9eb7-8cd55b03d22d/1/IJJfgFX2o7XeaZxLrgs6ae-W0iM.roa
File: IJJfgFX2o7XeaZxLrgs6ae-W0iM.roa (raw, json)
Hash identifier: HMX0n9lmoBCYt6oRI8Ssd7EQShbWJHkfeMRiuJqr+04=
Subject key identifier: 20:92:5F:80:55:F6:A3:B5:DE:69:9C:4B:AE:0B:3A:69:EF:96:D2:23
Certificate issuer: /CN=cfc7ef2b766594892d78928cbe781779fdce67d0
Certificate serial: 37EA02F9
Authority key identifier: CF:C7:EF:2B:76:65:94:89:2D:78:92:8C:BE:78:17:79:FD:CE:67:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z8fvK3ZllIkteJKMvngXef3OZ9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd0b2c-29e2-4737-9eb7-8cd55b03d22d/1/IJJfgFX2o7XeaZxLrgs6ae-W0iM.roa
Signing time: Sat 01 Jan 2022 06:05:19 +0000
ROA not before: Sat 01 Jan 2022 06:05:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3097
IP address blocks: 2a02:6a0:ffe::/48 maxlen: 48
2a02:6a0:fff::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 938083065 (0x37ea02f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfc7ef2b766594892d78928cbe781779fdce67d0
Validity
Not Before: Jan 1 06:05:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=20925f8055f6a3b5de699c4bae0b3a69ef96d223
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:cf:5f:4d:78:d0:64:cc:e6:d9:f6:41:d1:71:
31:0c:8e:21:2a:13:05:f1:8f:f6:45:0d:a6:9c:be:
f0:06:9e:36:f5:d7:db:39:18:af:cf:da:3b:b0:e5:
2f:09:b6:f5:50:ff:1d:9f:2a:f2:d3:12:9b:08:98:
6b:1f:03:0a:0d:f1:d7:6f:43:28:06:03:d2:7a:80:
4e:00:c8:03:44:9d:8d:e4:ce:22:f5:c3:de:4c:18:
03:e0:d4:b6:68:74:e9:1b:41:18:52:8a:d6:b1:51:
26:0f:c7:91:94:57:4e:40:02:ab:38:15:54:09:67:
27:c2:a2:ee:2e:c2:be:13:7a:c7:f9:64:0f:ff:28:
df:32:f9:4d:88:76:a8:45:bd:29:8d:66:92:6b:b1:
5e:f0:c9:45:46:a8:e2:c2:1e:81:94:de:7c:0f:ff:
bd:1b:00:59:a6:5b:b3:57:41:aa:fc:d8:cc:04:4b:
9a:67:93:9c:b9:79:e8:d3:c2:cd:e6:25:db:d3:ce:
91:6f:f8:7c:e2:dd:50:5b:9e:29:18:b5:5d:c3:9d:
30:86:50:b7:45:59:cd:a1:3b:ba:8c:f8:c6:55:a5:
e3:75:02:f4:69:2e:85:8e:52:0c:f6:f9:97:1a:30:
91:8d:f4:f1:d1:2f:c8:5f:95:16:61:83:bf:31:ee:
d3:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:92:5F:80:55:F6:A3:B5:DE:69:9C:4B:AE:0B:3A:69:EF:96:D2:23
X509v3 Authority Key Identifier:
keyid:CF:C7:EF:2B:76:65:94:89:2D:78:92:8C:BE:78:17:79:FD:CE:67:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z8fvK3ZllIkteJKMvngXef3OZ9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd0b2c-29e2-4737-9eb7-8cd55b03d22d/1/IJJfgFX2o7XeaZxLrgs6ae-W0iM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd0b2c-29e2-4737-9eb7-8cd55b03d22d/1/z8fvK3ZllIkteJKMvngXef3OZ9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:6a0:ffe::/47
Signature Algorithm: sha256WithRSAEncryption
13:05:6a:8c:6c:66:d1:0c:e4:ca:b3:a6:fb:90:21:65:fa:49:
0c:0c:e0:a1:11:e5:5c:2a:b1:68:12:9d:02:d9:32:6b:30:92:
5b:24:61:73:b4:a9:b9:f5:16:a1:32:1b:4b:6c:63:c3:c9:49:
5c:51:fe:e5:97:d6:da:a1:5a:3b:80:ed:ed:d7:8c:0a:12:68:
46:4f:a3:ac:b5:c1:ab:26:03:7c:cd:44:45:ee:d7:d1:0d:c4:
0e:c4:60:59:7e:b1:d2:7b:92:e1:8f:14:06:91:9b:fb:69:f3:
f6:38:6a:4d:7c:8c:d8:2d:5b:3d:20:c5:8c:9c:d4:0e:d8:a8:
ba:85:47:2e:bf:6c:cc:e4:c0:6c:57:45:13:9d:3b:f0:44:0f:
fc:b7:ab:0e:8a:f6:9a:f0:f3:61:51:15:cc:97:bb:0c:a9:53:
c4:f9:77:ba:43:f3:07:98:78:31:24:36:cd:fb:ae:4d:aa:7e:
9b:53:1f:c6:bf:74:f0:44:23:1a:a8:57:68:36:e6:c2:3c:4d:
94:21:1d:69:a0:19:68:fb:7a:ec:d1:66:64:ad:ae:90:cf:7e:
f3:7d:d7:1a:f3:6c:14:a4:8c:57:ac:ee:e6:e2:8e:97:f5:46:
95:88:35:b8:b4:f7:79:9c:52:d7:0e:87:dd:44:b0:93:2a:4e:
22:4e:bb:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:35 2024 by rpki-client on console-fra.rpki-client.org