Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/f1_WYSEYVQc_e8fKhKBsRT97bJo.roa
File: f1_WYSEYVQc_e8fKhKBsRT97bJo.roa (raw, json)
Hash identifier: KQod+Ri70x0F9wpiSMyxzMpq+xQC00PwC/EzSt2uq0c=
Subject key identifier: 7F:5F:D6:61:21:18:55:07:3F:7B:C7:CA:84:A0:6C:45:3F:7B:6C:9A
Certificate issuer: /CN=04a2ae2cd094333018c41daafb474c6cfa80d07d
Certificate serial: 0152CA08
Authority key identifier: 04:A2:AE:2C:D0:94:33:30:18:C4:1D:AA:FB:47:4C:6C:FA:80:D0:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BKKuLNCUMzAYxB2q-0dMbPqA0H0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/f1_WYSEYVQc_e8fKhKBsRT97bJo.roa
Signing time: Mon 14 Mar 2022 16:41:48 +0000
ROA not before: Mon 14 Mar 2022 16:41:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8778
IP address blocks: 2a00:9060::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22202888 (0x152ca08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04a2ae2cd094333018c41daafb474c6cfa80d07d
Validity
Not Before: Mar 14 16:41:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f5fd661211855073f7bc7ca84a06c453f7b6c9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:b1:9d:3e:33:84:bc:5c:ec:22:a9:08:7f:4b:
e0:06:f1:be:87:aa:8f:12:0b:ba:e3:5f:af:f1:c6:
0e:09:bd:50:0b:49:af:65:09:22:c9:1a:6d:93:34:
a7:3b:51:63:cd:e3:92:b8:43:ee:b6:ce:d6:08:3e:
b8:92:b8:14:9c:2a:7a:56:ad:57:2e:f6:ac:de:67:
09:b8:44:42:0c:1f:95:8e:02:31:f1:78:c9:45:29:
93:5e:c9:b4:43:34:4e:b6:0d:b0:c7:78:eb:b1:06:
89:02:69:bc:7d:4f:df:87:62:57:81:59:3c:ad:1b:
8a:35:ae:cc:de:95:a8:ac:23:94:60:e5:d4:b2:7e:
87:d8:b1:b5:3d:b5:09:0e:c5:00:35:f3:41:e2:e3:
34:49:05:a8:ea:ee:1b:b3:b6:0f:fc:1f:7c:1a:49:
de:fe:7c:97:7d:8c:14:b9:63:cc:27:0f:eb:b1:7c:
54:1b:6c:a6:e7:c5:55:09:17:4f:03:4a:17:f6:37:
b6:07:ce:0f:e4:55:60:c1:15:35:1a:0d:45:7c:d7:
7d:55:34:4a:4e:ed:5f:5b:f0:ae:d2:4b:67:8d:b0:
93:e0:85:1e:85:3f:ef:3d:f2:09:24:ec:cf:56:d0:
93:af:cf:39:8a:61:79:3c:a3:e5:9a:b4:ff:b2:70:
ba:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:5F:D6:61:21:18:55:07:3F:7B:C7:CA:84:A0:6C:45:3F:7B:6C:9A
X509v3 Authority Key Identifier:
keyid:04:A2:AE:2C:D0:94:33:30:18:C4:1D:AA:FB:47:4C:6C:FA:80:D0:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BKKuLNCUMzAYxB2q-0dMbPqA0H0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/f1_WYSEYVQc_e8fKhKBsRT97bJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/BKKuLNCUMzAYxB2q-0dMbPqA0H0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:9060::/32
Signature Algorithm: sha256WithRSAEncryption
5a:36:42:73:d4:a2:a5:04:1b:e2:2c:cd:f6:24:f7:19:e2:cc:
ca:e3:8a:c5:26:ad:d7:32:dd:15:51:48:78:65:d3:94:3d:8c:
78:00:a0:aa:07:66:e7:f7:f6:87:0a:18:c2:2b:eb:ab:e9:26:
be:fe:82:56:3b:61:df:74:0d:f4:d7:13:08:d8:58:6e:7f:be:
36:0d:34:27:ed:f1:53:b6:11:95:56:da:42:c7:ab:46:8f:79:
51:07:98:01:2e:d7:13:4b:24:37:04:33:07:9b:04:7b:b6:f9:
ea:29:e8:2e:32:92:d3:5e:00:d1:8a:3e:35:81:f7:4a:2b:4e:
3d:9f:ca:ff:80:48:23:f4:2c:1e:2e:74:ae:7a:b0:3a:4a:65:
6c:a1:66:f5:19:31:82:25:76:fe:e0:66:10:06:bc:2b:0a:c1:
94:8c:e4:48:6c:e9:c2:4a:3a:db:43:61:15:c7:4a:f6:d5:61:
2d:57:50:93:a6:86:fb:89:08:bc:d1:81:53:58:75:e4:97:89:
d8:11:3f:ee:8b:d3:e1:c9:3a:d1:21:17:7f:3a:6a:eb:66:7d:
c6:13:11:a5:dd:53:e4:ea:6f:3a:eb:d7:2e:97:d3:b7:00:7a:
f6:14:d3:a6:32:35:25:db:98:03:9e:5d:08:16:39:df:bf:28:
3b:50:35:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:51 2023 by rpki-client on console-fra.rpki-client.org