Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/aRdg2xf8_hYXr3yjQWloM09quFE.roa
File: aRdg2xf8_hYXr3yjQWloM09quFE.roa (raw, json)
Hash identifier: C8qg63/eEMxwc98hMdoL2niSbqE2JksFAr4JM5K4U7o=
Subject key identifier: 69:17:60:DB:17:FC:FE:16:17:AF:7C:A3:41:69:68:33:4F:6A:B8:51
Certificate issuer: /CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff
Certificate serial: 199E28DD
Authority key identifier: CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/aRdg2xf8_hYXr3yjQWloM09quFE.roa
Signing time: Sat 01 Jan 2022 05:52:35 +0000
ROA not before: Sat 01 Jan 2022 05:52:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48625
IP address blocks: 2001:7f8:82::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 429795549 (0x199e28dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff
Validity
Not Before: Jan 1 05:52:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=691760db17fcfe1617af7ca3416968334f6ab851
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:dd:57:78:ec:84:38:33:70:f7:98:d0:d8:6d:
58:9f:86:29:12:c7:e8:5e:81:3e:d0:9f:35:0e:a2:
b1:cf:a5:3b:b8:2e:0f:40:66:f9:23:7f:c6:24:c1:
a5:7b:14:c7:05:6e:90:0b:c7:01:07:40:0e:41:7b:
28:00:93:d0:95:23:eb:09:40:9b:e6:87:f1:e4:9e:
24:93:92:13:ae:f7:77:1f:7b:70:d9:90:93:28:f6:
ff:a4:5c:12:48:24:af:f8:cd:68:2e:74:f8:66:57:
51:4d:39:92:d0:02:4c:74:81:92:b8:a9:45:ea:b5:
0c:14:7a:a4:39:fc:5c:fc:51:ed:80:bf:90:81:c4:
e9:d4:25:1e:c2:ee:64:fe:f1:28:92:52:16:6c:52:
64:3a:e6:05:02:90:ef:40:d1:ad:12:b7:7e:5d:42:
e5:3e:5e:6d:96:92:c8:85:7d:4b:ab:9b:72:0e:d3:
6b:00:97:e0:dc:f0:08:35:fa:ed:cd:51:04:47:69:
bb:d7:1f:e7:2a:a0:71:c5:6b:e2:76:ba:f4:66:4f:
7c:db:4f:49:90:e8:ae:e3:07:59:bd:c7:c7:83:50:
16:36:b0:94:83:50:98:bc:3e:33:5d:ea:1e:2e:80:
73:45:ba:1c:48:47:91:0f:a2:3d:a0:fe:32:ea:2e:
dd:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:17:60:DB:17:FC:FE:16:17:AF:7C:A3:41:69:68:33:4F:6A:B8:51
X509v3 Authority Key Identifier:
keyid:CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/aRdg2xf8_hYXr3yjQWloM09quFE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:7f8:82::/48
Signature Algorithm: sha256WithRSAEncryption
52:84:56:08:a3:00:7c:6b:eb:e7:d1:7c:05:45:bf:de:f4:e1:
53:19:84:d4:71:a2:c9:33:58:b4:ea:a3:35:9e:6a:33:b9:a4:
5c:7d:5e:69:89:f2:40:0a:5e:19:c1:6c:a5:4c:f1:85:4a:8e:
df:c0:d2:ce:06:91:8e:49:40:91:1b:f5:ad:d7:85:98:0e:6e:
f9:e9:d4:08:61:66:71:bd:6c:2f:0d:8d:a6:5b:8e:38:63:b7:
75:b5:5b:43:01:40:6e:8e:bc:8e:6b:3c:2b:df:54:93:19:a4:
86:99:6c:b3:5e:f5:2d:00:d4:fb:4a:e7:d3:c4:b7:af:9d:69:
cf:af:49:d7:79:cc:07:e9:e6:fd:73:e5:75:e1:ec:54:d1:b1:
12:c8:3b:ae:77:8d:5c:dc:7f:52:2c:5a:83:93:3b:13:b5:79:
b6:33:d7:fa:bb:7d:e9:0d:61:cb:2d:72:16:17:7d:25:27:58:
6b:cd:ca:56:0b:cd:59:d2:b8:58:28:58:34:f0:71:11:f3:4f:
f3:6c:d7:2c:ca:6c:56:10:ef:ef:fe:0f:e6:ba:65:7e:c0:25:
72:93:bc:bc:04:94:6b:d9:cd:d3:0b:0d:f4:68:7f:97:69:80:
3f:f2:b3:9d:4f:f6:36:21:7c:c3:d4:c4:06:62:1c:23:b6:06:
d0:d3:13:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:02 2024 by rpki-client on console-fra.rpki-client.org