Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/S_aVeSWnDkjFw0dtvf9ZSrFIM2w.roa
File: S_aVeSWnDkjFw0dtvf9ZSrFIM2w.roa (raw, json)
Hash identifier: TlMQmwAD8KmFU8oi/+4SGuOCyCKTduvFGHi2ThaofSk=
Subject key identifier: 4B:F6:95:79:25:A7:0E:48:C5:C3:47:6D:BD:FF:59:4A:B1:48:33:6C
Certificate issuer: /CN=8624f3f661f24be5fef641dc722e5cf5ac87389e
Certificate serial: 02DED0
Authority key identifier: 86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/S_aVeSWnDkjFw0dtvf9ZSrFIM2w.roa
Signing time: Mon 27 Jun 2022 21:49:23 +0000
ROA not before: Mon 27 Jun 2022 21:49:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8784
IP address blocks: 2a02:d50::/32 maxlen: 32
2001:4b90::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188112 (0x2ded0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8624f3f661f24be5fef641dc722e5cf5ac87389e
Validity
Not Before: Jun 27 21:49:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bf6957925a70e48c5c3476dbdff594ab148336c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1d:e2:89:b6:c3:80:da:b7:6f:90:c2:6a:f9:
42:30:72:ec:34:f3:ce:3c:ef:15:f4:a2:1c:3b:61:
e5:48:5d:0c:06:07:7a:0b:31:e9:8c:49:67:43:8b:
ed:9a:72:66:3a:43:c4:87:95:5d:bb:95:fa:2b:b6:
b7:55:0f:21:20:97:df:ac:0b:35:14:76:b2:85:ac:
69:e3:69:5c:9d:4f:45:70:74:fa:c4:ec:06:f6:98:
2e:88:42:2a:35:c5:e5:ad:a8:7c:a0:f1:d3:c1:22:
17:10:67:f5:71:8a:f7:7a:a5:09:80:7d:37:1b:a0:
d9:df:0f:82:32:a7:71:56:09:78:92:7c:cd:3b:3f:
4e:87:09:20:32:ec:00:ef:5e:c5:ab:51:a6:6f:68:
32:31:a7:18:b3:0b:9d:2f:8b:32:ed:e1:06:a6:a0:
a7:b8:23:48:33:4b:0c:bc:a7:b5:7d:b5:f3:b5:fa:
36:9d:a3:4b:45:57:66:b4:74:48:e7:fb:ed:67:4c:
0f:66:0c:f1:cc:9f:2c:23:1d:a7:d6:41:99:ec:e7:
21:f4:aa:85:ac:ee:29:0f:fa:95:25:09:47:0d:e9:
3a:ed:b0:8c:21:a8:aa:39:87:c1:66:fa:5e:4b:9b:
47:e0:6e:24:43:3d:8d:15:e9:20:00:d1:c7:c7:f2:
35:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:F6:95:79:25:A7:0E:48:C5:C3:47:6D:BD:FF:59:4A:B1:48:33:6C
X509v3 Authority Key Identifier:
keyid:86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/S_aVeSWnDkjFw0dtvf9ZSrFIM2w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:4b90::/32
2a02:d50::/32
Signature Algorithm: sha256WithRSAEncryption
ae:d3:35:51:fa:e6:64:f2:87:67:20:9e:db:e3:d3:c7:1a:11:
67:34:f9:42:38:3a:bd:dc:1f:51:a7:77:bd:dd:1f:f3:14:71:
0d:6c:35:b0:4a:db:70:29:a6:28:b3:da:fa:07:1e:00:28:3d:
5e:0d:f7:af:dc:a6:b4:99:65:07:00:f8:af:87:b6:f9:a1:9c:
49:42:17:ac:97:00:38:1c:d2:71:92:18:5b:80:a3:c4:5a:f2:
29:f0:92:b4:48:74:bf:74:b5:0a:6f:f0:36:39:9e:97:bb:d5:
4b:9a:14:87:46:2e:2a:d6:84:95:7a:a1:e8:d6:30:e3:98:7d:
59:5a:07:02:13:ea:83:a4:fa:46:bc:cd:9d:d9:54:09:56:ae:
2e:3a:16:b8:b7:e7:55:96:00:b1:25:f9:63:f8:30:13:4b:65:
3b:44:ca:84:d3:6b:d6:d3:e5:7a:5b:23:ab:00:05:77:88:06:
32:37:06:38:7f:00:df:b1:d3:53:7d:54:82:78:b5:46:8b:67:
7c:9d:34:b8:f7:6c:6c:71:8d:da:b3:71:a5:66:fa:c6:dd:5b:
71:cb:47:b7:31:e6:28:61:27:e5:49:64:e0:a2:c4:9f:f8:3d:
9a:d9:63:e0:3d:87:29:2f:71:99:1c:af:b5:5e:b6:fe:ec:0e:
43:e7:e5:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:31 2024 by rpki-client on console-ams.rpki-client.org