Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/F-OaxgqAcRj91x8uSyaxkJrY0N0.roa
File: F-OaxgqAcRj91x8uSyaxkJrY0N0.roa (raw, json)
Hash identifier: MGhmVxdEUXf4wyWtW119G34z3ZDNLoJQznfmZokJ/VU=
Subject key identifier: 17:E3:9A:C6:0A:80:71:18:FD:D7:1F:2E:4B:26:B1:90:9A:D8:D0:DD
Certificate issuer: /CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff
Certificate serial: 19A469C2
Authority key identifier: CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/F-OaxgqAcRj91x8uSyaxkJrY0N0.roa
Signing time: Sat 01 Jan 2022 05:52:38 +0000
ROA not before: Sat 01 Jan 2022 05:52:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201848
IP address blocks: 2a04:ac00:1::/48 maxlen: 48
2a04:ac00:4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 430205378 (0x19a469c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff
Validity
Not Before: Jan 1 05:52:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=17e39ac60a807118fdd71f2e4b26b1909ad8d0dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:89:d4:bd:0b:2b:e8:4c:0c:c4:db:a3:46:52:
b7:55:e2:93:91:be:2e:d8:14:a3:b3:f4:b6:eb:f3:
27:47:5d:c8:e0:32:4b:60:74:97:bd:f4:5f:4a:96:
13:f2:1e:77:63:a8:1e:31:8f:ff:b1:e6:67:ed:1f:
3a:12:78:8d:c0:ff:50:e9:2e:16:72:a0:09:e6:60:
eb:4c:a1:4b:b0:b3:c6:3a:32:f8:89:15:d3:3b:1e:
5f:60:e0:98:e2:28:b7:bb:04:aa:06:07:ba:83:78:
06:69:56:bf:7e:b9:f4:dc:06:96:ea:7e:e2:e3:bf:
3e:91:f8:81:2b:e5:19:aa:11:20:a8:2e:0a:6c:9b:
50:dd:92:61:6f:a5:ce:cb:32:63:ba:7a:86:91:53:
c5:d7:30:b9:f9:14:9f:05:cd:88:0e:f8:a9:d4:98:
52:82:53:89:84:16:20:1c:0b:bb:f0:35:11:38:d1:
b1:89:8c:28:19:86:cb:ba:de:8e:7a:1a:63:74:cd:
c1:92:4e:65:36:0f:4d:0b:a7:ee:ab:4b:df:d6:5b:
34:e3:b6:15:9a:9a:39:ca:e2:b7:d6:24:30:43:d5:
35:1d:b9:ef:35:b0:ad:7b:1e:d0:a3:46:0f:00:14:
99:1d:70:cd:b9:39:25:6d:a8:27:61:b0:19:3f:1c:
1f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:E3:9A:C6:0A:80:71:18:FD:D7:1F:2E:4B:26:B1:90:9A:D8:D0:DD
X509v3 Authority Key Identifier:
keyid:CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/F-OaxgqAcRj91x8uSyaxkJrY0N0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:ac00:1::/48
2a04:ac00:4::/48
Signature Algorithm: sha256WithRSAEncryption
73:d5:7a:74:d6:8b:bc:53:b9:8b:71:94:6a:39:80:07:f1:e8:
03:d8:28:bd:72:36:ee:6a:27:00:55:0b:a7:c0:4f:36:d5:ab:
c6:2a:c9:31:2f:21:ba:86:7c:f6:d3:23:07:c4:fd:33:03:c3:
c2:24:a4:c8:be:4f:cb:9e:ad:19:fe:4a:b3:90:76:10:d3:1a:
4c:79:d8:5c:c5:5f:e9:fe:a6:32:ff:2e:a6:2b:79:aa:51:92:
62:c2:e1:4d:5c:22:cc:a9:54:79:ab:17:21:98:e5:c1:bd:fa:
4f:05:55:16:8a:ae:f7:fe:91:36:fe:7d:1e:ad:2d:19:bb:3c:
d3:c5:da:5f:2b:4d:98:23:4a:44:c2:54:49:68:c7:41:fb:f2:
05:5e:a6:bc:12:58:bd:67:b2:da:07:0b:e6:dc:89:98:a8:fe:
c1:80:47:04:76:33:bb:e9:27:20:e1:10:90:f1:98:7f:66:26:
e1:a4:f1:7e:db:f4:28:09:b1:cc:ae:92:c6:d9:08:c4:1c:fb:
56:3f:e4:dc:4a:c8:b0:6b:6d:3f:da:e5:0b:bf:92:2b:46:05:
af:29:a4:7a:33:f7:c4:80:07:8e:0e:3c:68:72:f0:57:7a:dc:
ae:02:fa:85:d0:41:7e:f9:25:27:c1:37:d4:8c:93:10:d6:da:
72:e0:6b:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:02 2024 by rpki-client on console-fra.rpki-client.org