Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/JnqroFYOB6fP0uPlybvFFCpZ2Oc.roa
File: JnqroFYOB6fP0uPlybvFFCpZ2Oc.roa (raw, json)
Hash identifier: AHgYVXiaFld4wXCV74pZ+iIp42w//377uhMcNTAQmfc=
Subject key identifier: 26:7A:AB:A0:56:0E:07:A7:CF:D2:E3:E5:C9:BB:C5:14:2A:59:D8:E7
Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Certificate serial: 085A1D36
Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/JnqroFYOB6fP0uPlybvFFCpZ2Oc.roa
Signing time: Fri 25 Feb 2022 07:57:48 +0000
ROA not before: Fri 25 Feb 2022 07:57:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212520
IP address blocks: 2a05:4741:25::/48 maxlen: 48
2a05:4741:26::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140123446 (0x85a1d36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Validity
Not Before: Feb 25 07:57:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=267aaba0560e07a7cfd2e3e5c9bbc5142a59d8e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:21:60:88:cd:9c:08:77:46:fc:a4:5a:88:14:
64:ad:fb:6a:7d:61:0c:81:27:18:e7:91:77:81:ba:
ea:0f:0e:51:d0:ca:2e:9c:78:4a:89:4f:63:ce:31:
52:6d:61:19:ee:e2:3e:b4:17:86:0c:5d:b0:3f:ad:
fb:34:da:07:e6:a6:f6:e2:58:8a:ee:54:b4:e3:89:
f4:82:03:a5:d7:e1:17:26:91:58:ec:f1:e6:ea:b5:
aa:fc:77:87:60:f9:75:cc:63:de:b7:de:3b:b1:f7:
0b:58:6d:ea:2b:19:4f:94:40:1a:ff:3f:a9:60:00:
0f:55:88:fa:91:78:7e:57:dc:04:49:a1:65:b3:44:
74:33:1f:9f:d0:84:f7:f7:8f:8f:2b:e3:06:95:7e:
31:d5:ef:c7:c0:a8:cd:b0:82:14:63:74:80:7d:b2:
5b:ce:96:7b:af:57:ca:5c:bf:1e:20:05:06:f2:5f:
2e:36:1e:67:bf:28:4d:ea:96:2e:ee:bb:3a:38:6d:
dd:d9:9d:e4:c2:27:f5:15:33:2f:59:71:50:d3:4e:
e1:21:1d:f2:c5:fd:91:9e:52:41:de:a9:84:36:ef:
bf:3e:68:f0:22:9e:2b:61:db:7c:89:a5:f9:d1:57:
bd:9d:20:80:18:b1:5e:7d:69:f1:59:75:e1:49:37:
5b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:7A:AB:A0:56:0E:07:A7:CF:D2:E3:E5:C9:BB:C5:14:2A:59:D8:E7
X509v3 Authority Key Identifier:
keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/JnqroFYOB6fP0uPlybvFFCpZ2Oc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:4741:25::-2a05:4741:26:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
2b:84:ca:43:6f:b8:d3:d1:bb:87:03:35:ce:0e:d3:3f:24:7e:
24:b2:1a:d6:04:aa:f0:5c:90:17:7e:cf:c7:54:8f:08:d1:dc:
f1:d0:e8:7b:b5:82:39:5a:1c:70:f4:a0:f7:85:c1:37:54:fe:
c6:c7:00:67:6d:37:c0:0e:87:2d:06:fd:6b:cc:6c:31:ab:67:
ee:2c:50:9b:39:5e:e7:28:71:ae:3f:6f:ab:e4:40:83:42:ee:
66:bf:74:ff:67:72:aa:4d:ed:80:86:aa:e7:2c:1c:01:3c:db:
d4:93:22:8f:9d:b3:ef:10:54:93:1f:98:b6:f2:fe:18:3e:62:
c5:22:dc:6e:8e:ef:52:44:cd:34:e2:ec:fd:5a:9a:a6:85:41:
83:6d:a3:2a:e6:54:02:f6:2b:82:21:e6:9f:44:6f:d3:2f:b8:
c8:e6:39:64:d8:d1:33:b1:cd:e0:f7:57:ae:2f:ed:c5:5a:51:
09:02:25:19:de:22:6b:2c:64:13:70:1e:b1:b9:fc:f1:fb:42:
73:d2:c4:6b:6b:10:ce:41:2b:87:ee:6a:cb:71:70:95:7b:ab:
74:a4:66:4f:14:29:8a:21:8f:14:7b:60:a3:73:3a:c1:8f:2a:
83:55:ea:b1:9e:08:ab:b7:cc:73:08:0d:dc:f1:38:cf:38:d1:
b8:00:3d:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:59 2023 by rpki-client on console-ams.rpki-client.org