Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/a5980d-65f4-4573-9759-33415967c213/1/2WrRLfx006O-AStdfE9AGc1igQI.roa
File: 2WrRLfx006O-AStdfE9AGc1igQI.roa (raw, json)
Hash identifier: hr4fxd4VJHQU1qSiks7od4RNQk59BMaWEJp8TQLhbeQ=
Subject key identifier: D9:6A:D1:2D:FC:74:D3:A3:BE:01:2B:5D:7C:4F:40:19:CD:62:81:02
Certificate issuer: /CN=2326eeeadd4c0ee55b3594a596e67220819c18d5
Certificate serial: 09865537
Authority key identifier: 23:26:EE:EA:DD:4C:0E:E5:5B:35:94:A5:96:E6:72:20:81:9C:18:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iybu6t1MDuVbNZSlluZyIIGcGNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/a5980d-65f4-4573-9759-33415967c213/1/2WrRLfx006O-AStdfE9AGc1igQI.roa
Signing time: Sat 02 Jul 2022 09:59:25 +0000
ROA not before: Sat 02 Jul 2022 09:59:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208478
IP address blocks: 2a0e:73c2:ffff::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159798583 (0x9865537)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2326eeeadd4c0ee55b3594a596e67220819c18d5
Validity
Not Before: Jul 2 09:59:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d96ad12dfc74d3a3be012b5d7c4f4019cd628102
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f7:0c:ad:45:0c:d0:bf:43:35:57:90:bd:71:
e5:3e:d4:e5:16:1f:a3:1f:12:66:65:05:4c:04:61:
ea:e2:dd:ef:3d:20:bf:fd:b8:ba:d3:98:4b:8b:85:
fd:6c:09:54:2a:cf:f1:dd:3d:82:c7:a9:4c:1d:ed:
82:15:de:34:cc:97:4e:ff:b2:da:74:01:a3:64:2a:
7c:1b:69:6e:20:89:48:76:0c:f0:ea:ad:81:6a:4a:
69:95:14:46:97:a9:64:0d:cf:cb:5d:3e:52:ea:15:
67:54:44:8f:2e:68:e8:63:95:86:74:b6:eb:e3:17:
b9:6d:70:59:d5:21:25:b9:4b:44:65:be:5b:9f:4c:
fd:25:7c:e4:f2:43:60:5a:89:01:b2:4f:4e:1c:00:
fb:70:c8:21:3f:ec:1f:49:4c:7c:ba:19:6c:f6:55:
90:b2:99:8d:52:75:88:1b:c8:f7:6e:a4:6e:44:30:
0c:cd:d8:44:56:e4:ab:52:d7:4b:07:24:52:a4:4c:
e9:1d:75:cc:a9:55:68:07:7d:34:a5:c6:db:f0:a8:
45:16:01:b2:7b:11:47:ec:6f:c4:a9:3e:61:3c:27:
37:70:c8:fb:79:0a:cd:6c:3d:94:58:37:55:8c:85:
21:b1:fd:38:21:de:2e:09:23:59:bd:a1:21:6a:5a:
73:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:6A:D1:2D:FC:74:D3:A3:BE:01:2B:5D:7C:4F:40:19:CD:62:81:02
X509v3 Authority Key Identifier:
keyid:23:26:EE:EA:DD:4C:0E:E5:5B:35:94:A5:96:E6:72:20:81:9C:18:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iybu6t1MDuVbNZSlluZyIIGcGNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/a5980d-65f4-4573-9759-33415967c213/1/2WrRLfx006O-AStdfE9AGc1igQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/a5980d-65f4-4573-9759-33415967c213/1/Iybu6t1MDuVbNZSlluZyIIGcGNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:73c2:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
21:4e:86:e5:ff:b2:3d:42:02:73:8d:1a:6c:07:bb:e4:c2:04:
72:10:4a:d6:f2:72:e0:02:ec:7a:6b:b7:aa:3d:db:16:7e:52:
d8:04:82:d2:8c:77:fb:b1:e8:26:2f:a2:23:d8:c1:ca:94:29:
2e:7d:ea:ab:d7:d5:34:ad:5a:44:7b:95:0e:72:c4:7f:18:ee:
e6:16:95:cf:52:bf:7e:72:f2:ff:50:b2:91:8e:9b:54:89:a7:
3b:27:15:7d:f7:81:cc:02:cd:47:03:65:0e:a9:5d:df:8e:2f:
90:61:8a:08:2f:3d:2f:a4:20:af:f8:45:c2:db:be:19:08:5d:
ae:7d:1b:13:f7:ea:7e:2a:21:c4:06:53:96:94:29:c2:11:7c:
f9:a0:dd:18:07:43:24:09:36:61:99:bf:29:ab:ec:e1:51:e2:
83:25:aa:89:d1:9b:49:47:0e:c8:81:cc:d5:9d:a0:db:94:b3:
52:27:ea:d3:3b:94:e8:48:53:24:68:5f:cc:dd:1c:42:1a:5a:
1e:2c:51:87:bd:19:ff:31:cc:da:75:ae:89:e3:bd:eb:b3:4d:
32:ad:5c:bd:58:db:96:58:05:e1:74:2f:7b:a7:97:a6:4a:a7:
ec:bf:c1:25:79:79:43:8c:af:7a:52:df:04:8e:91:24:91:93:
31:8f:42:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:58 2024 by rpki-client on console-ams.rpki-client.org