Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/R2yYnrDJ5UbVk60go1YNjmKXtcQ.roa
File: R2yYnrDJ5UbVk60go1YNjmKXtcQ.roa (raw, json)
Hash identifier: vPbjU8rpbHXxt0F8ptnCwEPQsMvu29HdK4UogYkx7m0=
Subject key identifier: 47:6C:98:9E:B0:C9:E5:46:D5:93:AD:20:A3:56:0D:8E:62:97:B5:C4
Certificate issuer: /CN=884bf80e72f50f09bf563493ebdb11a34bba312d
Certificate serial: 067E8266
Authority key identifier: 88:4B:F8:0E:72:F5:0F:09:BF:56:34:93:EB:DB:11:A3:4B:BA:31:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iEv4DnL1Dwm_VjST69sRo0u6MS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/R2yYnrDJ5UbVk60go1YNjmKXtcQ.roa
Signing time: Tue 01 Mar 2022 13:05:06 +0000
ROA not before: Tue 01 Mar 2022 13:05:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207954
IP address blocks: 2a0f:24c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108954214 (0x67e8266)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=884bf80e72f50f09bf563493ebdb11a34bba312d
Validity
Not Before: Mar 1 13:05:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=476c989eb0c9e546d593ad20a3560d8e6297b5c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:42:00:0c:4c:4b:25:e7:d5:16:ff:ff:e6:b2:
be:b3:ce:29:58:ed:d1:1c:16:93:a5:0f:f6:07:53:
5f:6e:f5:8f:7a:28:b7:21:8b:d9:72:89:8f:9e:45:
74:d0:2c:dd:f4:4f:ee:b8:54:cc:3c:1c:22:5e:71:
9c:bd:70:b9:ae:5f:2e:01:e5:19:0b:b5:ef:8c:3c:
92:13:50:cc:76:10:95:80:e9:e7:b5:83:86:00:e8:
55:7f:29:75:80:62:09:72:7a:f0:da:9c:aa:cc:51:
d3:79:5f:d2:8f:2b:27:67:66:63:06:c9:5a:90:63:
f5:14:79:8c:6b:dc:bc:b1:42:21:53:f1:82:c0:2e:
cd:38:78:02:4a:3e:05:12:9c:23:72:40:3c:1e:21:
1c:d3:f4:38:f1:cd:f9:47:4d:bc:6b:e7:36:88:39:
b5:d0:82:d5:d3:2e:2f:2c:8c:45:b7:42:bc:e6:e4:
9a:bb:51:20:16:75:15:f2:07:94:51:d1:0b:5a:07:
2e:02:85:64:a3:0a:25:6e:a8:ea:97:9f:5e:be:a9:
40:f0:af:c8:a2:56:6d:44:a8:1b:28:b5:4c:c9:12:
fd:82:51:06:11:14:80:55:13:f8:ce:a4:7f:ab:5c:
bc:de:30:04:fd:5d:b0:a8:20:56:a6:d2:23:7c:c5:
5c:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:6C:98:9E:B0:C9:E5:46:D5:93:AD:20:A3:56:0D:8E:62:97:B5:C4
X509v3 Authority Key Identifier:
keyid:88:4B:F8:0E:72:F5:0F:09:BF:56:34:93:EB:DB:11:A3:4B:BA:31:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iEv4DnL1Dwm_VjST69sRo0u6MS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/R2yYnrDJ5UbVk60go1YNjmKXtcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/iEv4DnL1Dwm_VjST69sRo0u6MS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:24c0::/29
Signature Algorithm: sha256WithRSAEncryption
b0:ff:0a:52:a2:79:b1:bb:55:d4:5c:23:81:3c:ca:23:53:8c:
db:b0:2c:f0:97:d0:86:19:7e:39:ff:e2:4e:89:e6:22:68:8f:
cb:a2:9f:59:84:38:7b:29:6f:6e:de:ec:44:7e:2a:c4:e5:3c:
b6:1a:52:74:16:9e:25:e5:3d:75:20:fc:bb:a3:4c:2e:36:c7:
c5:d7:70:be:f4:c5:3e:87:cb:b6:16:1c:92:d3:d8:9a:2c:73:
01:53:94:ab:8b:e8:0e:e0:2f:21:22:86:03:1d:e6:d5:ee:7c:
26:20:bd:14:a3:08:10:d6:45:c3:bd:88:dd:85:94:c8:a1:00:
1d:23:9c:3e:cd:95:04:be:fc:3f:72:95:82:78:da:06:40:dc:
0d:84:54:25:bc:61:5f:a4:96:ae:0b:0f:fe:78:e4:26:da:84:
09:c0:11:f1:f0:0f:16:0d:53:3c:42:3a:3c:f4:67:b8:29:5c:
b7:11:72:3b:06:f0:bd:90:97:4f:b8:16:43:0b:48:70:1c:f4:
c4:8c:82:17:03:e3:c4:c3:32:fc:d4:46:16:16:36:df:40:ce:
eb:20:43:57:a7:a0:56:96:e6:a4:31:20:bb:bf:54:9c:d3:ba:
21:af:0b:5b:a0:04:bb:9b:4b:9b:11:e9:4f:db:de:6d:10:16:
34:3d:8d:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:14 2024 by rpki-client on console-fra.rpki-client.org