Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/97g5PWkLjLjjAvK8hxKKbEAScj0.roa
File: 97g5PWkLjLjjAvK8hxKKbEAScj0.roa (raw, json)
Hash identifier: /QLU/yTmMxRcAczmy2LP0KIxduLXUa0bLGP6NBCpcgs=
Subject key identifier: F7:B8:39:3D:69:0B:8C:B8:E3:02:F2:BC:87:12:8A:6C:40:12:72:3D
Certificate issuer: /CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5
Certificate serial: 0B3E6632
Authority key identifier: D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/97g5PWkLjLjjAvK8hxKKbEAScj0.roa
Signing time: Sat 01 Jan 2022 08:59:16 +0000
ROA not before: Sat 01 Jan 2022 08:59:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50311
IP address blocks: 2a04:3e00:1000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188638770 (0xb3e6632)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5
Validity
Not Before: Jan 1 08:59:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f7b8393d690b8cb8e302f2bc87128a6c4012723d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:8a:16:93:e2:1a:52:61:90:a4:cf:60:51:8a:
c2:c7:64:d5:d3:4d:7a:15:52:c0:9c:62:b0:6e:1c:
34:73:44:20:0e:93:e9:98:55:b2:15:1f:c8:ce:b2:
b1:46:06:30:b8:c5:c6:c1:92:b0:41:65:eb:4d:18:
1d:53:f6:79:41:d4:30:70:85:d5:b0:72:84:e8:fe:
44:00:ad:89:87:eb:da:8d:e5:e7:95:3b:85:6b:ce:
53:9f:d6:21:e6:b8:5f:66:f6:2b:a5:8f:eb:63:63:
cd:f9:60:e5:81:a9:a3:21:90:13:9f:36:2d:c6:e0:
1b:43:47:67:33:fd:5e:d8:55:22:a7:c7:2e:ba:97:
22:cf:27:2b:1f:c4:fe:9e:63:e4:30:f1:9c:02:d1:
7a:63:d5:db:e8:f2:42:e0:ac:d9:c9:03:1c:d4:8c:
6d:08:4a:1c:8b:d1:3e:8f:34:c4:d1:24:60:45:3a:
2b:09:29:88:c8:7f:ea:1a:a7:08:f4:56:7c:93:66:
9f:52:3f:6d:a1:2c:ce:19:06:1e:ab:b6:b7:2a:04:
09:d5:18:64:77:44:fb:bc:28:45:07:fd:f9:be:f1:
c3:83:77:8e:6a:06:41:f8:e8:85:4c:e4:7e:9c:5e:
fb:2c:bf:2a:4c:44:d0:af:eb:43:ed:1c:90:37:ce:
56:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:B8:39:3D:69:0B:8C:B8:E3:02:F2:BC:87:12:8A:6C:40:12:72:3D
X509v3 Authority Key Identifier:
keyid:D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/97g5PWkLjLjjAvK8hxKKbEAScj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/02AMuv0m_uUGT8ifMB38jjwdPKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:3e00:1000::/48
Signature Algorithm: sha256WithRSAEncryption
a8:94:43:09:cb:64:32:e5:b3:1d:8b:a5:48:3a:ca:02:6d:8f:
5c:7a:d6:ba:bd:c5:79:89:0a:b4:bb:bf:1c:a5:f5:13:b2:fc:
bc:0c:be:6b:63:49:7a:73:79:a7:57:62:b3:35:07:89:92:6c:
a2:0a:55:16:19:7c:5e:13:90:be:11:ad:32:bf:5d:3d:64:97:
fc:eb:78:0b:27:3f:80:e9:8f:76:a3:5f:ed:11:f0:56:37:15:
b5:af:ae:15:47:09:77:a8:e9:d9:75:6f:89:70:f2:c0:2f:a3:
3c:f8:5a:23:c6:d4:97:f1:59:b8:8c:e5:e5:0c:71:94:a9:08:
12:71:c8:dc:aa:02:c2:c5:2c:0b:76:29:96:bb:de:5b:ed:96:
ed:54:7e:ac:69:ac:32:e0:f9:5d:70:ce:32:8b:39:46:68:09:
93:1d:46:e5:bb:b1:f6:ec:6a:f2:06:13:e2:9b:2b:2c:b9:fa:
0b:20:1e:2f:1c:21:79:2e:89:20:89:2d:a3:53:d8:3b:51:dc:
8f:4b:52:25:16:05:d2:66:3b:95:23:89:5d:0c:ad:c6:02:69:
7e:5e:a4:78:42:3a:c1:36:f7:13:34:ad:0d:5f:d9:19:ee:73:
5a:33:40:d1:3a:bf:e8:2f:30:31:4c:5e:41:5c:7f:db:82:f2:
98:4f:a4:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:16 2024 by rpki-client on console-ams.rpki-client.org