Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/HaOsAisq0YY0SH_71kZkfOVic5I.roa
File: HaOsAisq0YY0SH_71kZkfOVic5I.roa (raw, json)
Hash identifier: +kBRjmzv6U6vRztKURLFiQiDSC/hsA50kyYiJnQx4pU=
Subject key identifier: 1D:A3:AC:02:2B:2A:D1:86:34:48:7F:FB:D6:46:64:7C:E5:62:73:92
Certificate issuer: /CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5
Certificate serial: 0182070D53257074A446C7184746FD247B5A
Authority key identifier: D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/HaOsAisq0YY0SH_71kZkfOVic5I.roa
Signing time: Sat 16 Jul 2022 12:48:09 +0000
ROA not before: Sat 16 Jul 2022 12:48:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24409
IP address blocks: 2a04:3e00:1002::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:07:0d:53:25:70:74:a4:46:c7:18:47:46:fd:24:7b:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5
Validity
Not Before: Jul 16 12:48:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1da3ac022b2ad18634487ffbd646647ce5627392
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:7a:4a:51:ae:02:c4:c1:5b:98:44:3d:df:4d:
5a:be:25:1a:72:bd:84:28:ad:70:63:42:dd:84:c8:
8b:d0:c3:d7:68:79:21:46:0f:a0:63:16:a6:f5:3e:
79:06:92:cd:f5:ef:4e:f1:c3:73:2c:d2:5a:b9:9f:
2d:ee:c8:6a:91:8f:6d:cf:96:07:b1:94:99:c0:fb:
cc:fe:1a:65:18:bd:a9:fa:fd:fe:ef:dc:38:13:86:
c9:31:de:57:34:da:06:be:03:ce:a5:30:3c:d8:a4:
71:49:e6:ac:9e:2d:3a:05:14:06:d9:8f:d0:5a:58:
14:8f:b1:82:eb:79:1a:89:ab:01:d0:c4:f1:01:c5:
21:ed:89:bb:af:e5:53:01:07:69:8b:4f:2f:e6:fc:
86:0c:a0:58:a4:8c:77:29:53:e0:02:e7:97:15:52:
9c:91:93:7f:4d:3c:f0:b7:3e:25:51:fb:9c:b7:8d:
df:bc:c5:e4:86:88:38:26:c3:86:5c:0b:3c:00:27:
10:7e:92:e7:27:ba:2a:23:3a:81:60:7c:4b:eb:ae:
ca:15:c4:06:c0:9b:cd:df:ce:82:e1:1c:bd:ef:ce:
66:9c:9b:7b:56:62:c3:9c:3e:24:98:7e:82:63:7c:
5b:21:bc:2a:45:8e:71:23:74:d3:e8:70:b6:2f:71:
f9:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:A3:AC:02:2B:2A:D1:86:34:48:7F:FB:D6:46:64:7C:E5:62:73:92
X509v3 Authority Key Identifier:
keyid:D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/HaOsAisq0YY0SH_71kZkfOVic5I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/02AMuv0m_uUGT8ifMB38jjwdPKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:3e00:1002::/48
Signature Algorithm: sha256WithRSAEncryption
59:07:e0:ed:fb:32:92:c1:5b:7c:b4:a4:f1:c0:72:48:5a:6f:
db:28:1f:40:e1:e4:de:0d:76:62:87:7b:54:5b:cd:d4:1d:15:
9d:ec:32:4e:bc:8a:65:1d:b5:66:f8:8c:8a:b8:a6:87:ea:ef:
7e:d4:84:55:81:9f:5b:ad:41:a7:d7:0a:aa:4a:64:f4:2f:0f:
fc:f2:b0:61:34:f1:4f:d3:f4:2f:73:4d:b5:a7:90:46:53:c0:
5f:1e:b0:77:52:c3:4b:30:d9:bd:42:83:c8:16:72:86:93:67:
7d:8a:4d:99:49:a0:94:df:39:64:3b:f8:89:43:a1:f0:d4:1c:
68:05:be:4e:ff:a4:fd:c1:13:ff:57:4c:81:68:67:e7:97:08:
16:7c:f4:c7:d1:6d:bf:ed:3a:32:be:7c:92:28:53:42:7f:80:
a8:c7:d5:ca:11:f6:e2:0e:a3:42:79:6a:6a:1e:85:73:41:da:
c4:61:ba:1d:00:df:c5:2f:fa:68:d1:e2:1f:d9:25:ee:46:3a:
1c:86:f2:61:d6:dd:90:e0:d2:4f:79:11:0d:4e:36:93:f8:70:
49:10:fb:44:92:33:9b:c3:f9:62:45:01:7c:93:31:8f:22:ff:
e8:31:d0:62:dc:8e:9a:4a:d7:f2:ce:56:35:b6:8c:c2:3b:57:
e7:17:6d:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:30 2024 by rpki-client on console-fra.rpki-client.org