Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/ARmYAdnVxsH9uhu32LPhXDnaio8.roa
File: ARmYAdnVxsH9uhu32LPhXDnaio8.roa (raw, json)
Hash identifier: Wh3EGKeOfHa7knOvfDtmI+Xl0YNBAagxuMyxP2vzG1c=
Subject key identifier: 01:19:98:01:D9:D5:C6:C1:FD:BA:1B:B7:D8:B3:E1:5C:39:DA:8A:8F
Certificate issuer: /CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Certificate serial: 0184D3E0
Authority key identifier: EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/ARmYAdnVxsH9uhu32LPhXDnaio8.roa
Signing time: Sat 01 Jan 2022 13:02:10 +0000
ROA not before: Sat 01 Jan 2022 13:02:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 53667
IP address blocks: 2a11:2304::/37 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25482208 (0x184d3e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Validity
Not Before: Jan 1 13:02:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=01199801d9d5c6c1fdba1bb7d8b3e15c39da8a8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:08:61:3a:b9:76:74:53:cb:1c:98:c9:05:5b:
8b:59:2f:0a:45:61:64:71:91:ed:64:fd:db:86:aa:
0a:af:04:a6:d4:55:50:26:f9:32:8c:6b:cf:f7:67:
91:78:26:57:9c:5d:dd:2c:1c:4d:3a:85:b5:d0:70:
73:59:ba:63:76:af:6b:a5:81:68:4b:22:b5:2b:04:
e3:27:e7:e4:6a:70:33:6b:dd:99:d4:49:37:a5:c7:
7e:99:fd:e2:70:f7:16:32:3f:fd:52:5c:b4:74:70:
41:2c:81:2c:f6:b4:b5:5b:ac:01:b5:8e:15:ff:2a:
68:ae:80:33:a9:34:3c:e1:cc:6a:9f:9a:e4:2e:7c:
60:89:31:94:b5:a5:3d:56:da:1e:ff:da:05:bd:59:
39:f4:1a:96:3f:67:9e:8f:4a:20:82:d6:9a:2b:4f:
8b:a2:cc:9d:cb:d7:b6:41:55:69:08:51:70:64:86:
de:5d:7c:71:40:05:01:19:57:74:57:16:d4:ef:26:
f4:87:03:1a:05:7e:70:50:fc:7b:b5:98:7d:37:fe:
0e:bb:35:18:ca:bd:af:47:c3:65:83:c1:f6:b0:48:
12:14:0b:69:6f:6c:16:96:2d:1b:81:59:44:f0:89:
29:10:ef:cb:47:3d:b7:4c:2c:48:e3:3b:7f:3f:6d:
4b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:19:98:01:D9:D5:C6:C1:FD:BA:1B:B7:D8:B3:E1:5C:39:DA:8A:8F
X509v3 Authority Key Identifier:
keyid:EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/ARmYAdnVxsH9uhu32LPhXDnaio8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/6sLBr9S97JgFBvoH33yGYtVU-kY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:2304::/37
Signature Algorithm: sha256WithRSAEncryption
3d:0b:e7:ac:55:ed:ac:cb:72:53:2a:f2:22:a9:67:68:e2:9e:
60:aa:5c:4d:c4:5a:66:78:eb:31:5b:4a:2f:6d:a4:92:0a:00:
38:d5:37:75:72:06:73:5e:46:3d:ef:25:66:95:e6:1f:97:e1:
d1:fb:46:a2:5e:77:64:3c:f8:af:80:56:26:7f:ac:ba:12:de:
b2:0c:e4:7a:3c:16:29:0a:17:67:30:72:06:59:d6:04:1b:5c:
4e:a3:3c:80:49:a1:bb:07:ce:32:3f:c6:b9:6f:07:33:04:f2:
4b:b0:fd:15:c7:14:23:0e:e9:6d:0b:5d:4d:ee:cf:d8:4c:ce:
4a:b8:06:8e:86:79:43:c3:65:ee:53:64:07:ef:4d:97:cd:4e:
16:bb:bd:c9:0c:fe:7d:95:2d:74:91:79:ac:3c:f6:e2:11:0b:
5e:b4:a3:64:ef:08:f7:3e:ed:0a:1b:82:43:43:00:c0:62:db:
f4:54:7e:93:05:b0:33:5d:6d:3d:45:22:be:69:f4:c1:3d:7a:
19:bf:a3:25:a6:d8:28:e9:3f:4e:76:27:42:69:25:3c:bc:08:
cd:9f:c9:8f:05:12:7f:39:ca:fc:82:bd:52:f5:ab:03:48:d5:
36:08:2a:30:eb:ae:33:c4:dc:94:5e:7b:8f:47:bc:b5:89:dc:
e6:1f:df:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:36 2023 by rpki-client on console-fra.rpki-client.org