Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/p0RVuO5ZWL1k2rFc3_-d7mjdnVE.roa
File: p0RVuO5ZWL1k2rFc3_-d7mjdnVE.roa (raw, json)
Hash identifier: E2GhbSOlC/H8EIoLWHWj6LPRBPDbC/hQ2MRq4jUPjIM=
Subject key identifier: A7:44:55:B8:EE:59:58:BD:64:DA:B1:5C:DF:FF:9D:EE:68:DD:9D:51
Certificate issuer: /CN=ffdec4a46a6e6e4f9a92d0ba2e0b3ab5658be1bd
Certificate serial: 19E03958
Authority key identifier: FF:DE:C4:A4:6A:6E:6E:4F:9A:92:D0:BA:2E:0B:3A:B5:65:8B:E1:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_97EpGpubk-aktC6Lgs6tWWL4b0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/p0RVuO5ZWL1k2rFc3_-d7mjdnVE.roa
Signing time: Sat 01 Jan 2022 04:55:12 +0000
ROA not before: Sat 01 Jan 2022 04:55:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207080
IP address blocks: 2a0a:5940::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 434125144 (0x19e03958)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ffdec4a46a6e6e4f9a92d0ba2e0b3ab5658be1bd
Validity
Not Before: Jan 1 04:55:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a74455b8ee5958bd64dab15cdfff9dee68dd9d51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:1f:d2:6b:67:b7:33:6b:31:04:c5:9a:3a:6f:
d3:d2:9f:90:a9:97:c6:b7:56:b4:3e:23:bc:64:3e:
9e:cd:83:06:15:03:ad:cc:41:b6:33:53:62:a7:fc:
3c:b3:5e:e2:60:22:ea:33:d2:44:d1:a7:4a:3d:e0:
5b:22:1b:71:34:ff:7e:30:6a:0c:99:b7:b1:9f:95:
10:97:0e:cf:bc:d3:0a:94:36:e2:ee:65:d5:d4:78:
88:84:84:14:b0:e5:4a:19:92:63:8f:65:39:16:38:
0d:6d:aa:4f:a4:d8:16:b1:69:25:33:58:78:92:e6:
39:b4:25:10:28:6a:1e:a6:95:17:42:04:f9:f2:41:
40:fa:30:ae:17:6c:8e:e1:4e:53:a3:19:15:07:76:
c7:94:6a:1e:c2:6b:f9:ce:15:bd:6c:1c:ec:1d:b6:
b8:ef:09:f0:1b:cc:a0:f2:54:46:aa:1b:3e:df:f5:
ea:7e:c1:ed:ed:d0:ab:0e:cf:a3:c5:5e:62:93:41:
38:68:13:8c:f7:2d:90:8a:1e:1f:6e:26:a8:c3:6d:
3c:f1:41:87:69:c7:1d:d5:96:a4:d8:a3:01:87:35:
ad:16:53:51:b5:be:a0:18:6b:13:53:f1:5a:2d:2a:
f3:a6:58:a5:b8:67:c2:1a:18:ef:94:71:fa:fd:cc:
39:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:44:55:B8:EE:59:58:BD:64:DA:B1:5C:DF:FF:9D:EE:68:DD:9D:51
X509v3 Authority Key Identifier:
keyid:FF:DE:C4:A4:6A:6E:6E:4F:9A:92:D0:BA:2E:0B:3A:B5:65:8B:E1:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_97EpGpubk-aktC6Lgs6tWWL4b0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/p0RVuO5ZWL1k2rFc3_-d7mjdnVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/_97EpGpubk-aktC6Lgs6tWWL4b0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:5940::/48
Signature Algorithm: sha256WithRSAEncryption
94:77:e1:0c:85:a9:64:37:8c:35:a0:df:7f:e1:8a:aa:e2:ff:
0c:be:c6:4b:b8:ef:28:78:e6:93:82:06:8e:ad:b9:02:bd:e8:
7d:9f:47:0f:db:ff:db:cf:61:46:8e:6c:60:12:d7:b4:f6:c4:
c9:6a:8a:2a:7f:0d:e7:77:54:6e:10:3a:8d:ef:ec:6f:a6:ca:
28:1a:60:5c:1c:9f:e3:da:45:0d:98:94:20:7b:e8:b2:bb:80:
2d:e4:91:0e:0a:24:42:06:97:5d:c2:d9:54:bb:80:4d:7a:1e:
7a:2f:b6:92:26:88:1d:94:8e:c6:ed:fd:48:35:a6:37:25:38:
a4:ec:8a:1e:65:7b:fd:d6:6f:24:24:e5:79:3a:c0:2c:e6:1d:
f8:f9:a7:c8:1e:a4:ea:fb:e9:2b:78:68:fb:a8:d9:65:49:3e:
08:27:a3:8e:7f:6b:38:67:92:ee:85:4b:78:c8:b9:80:6b:73:
f4:63:dc:1f:bc:dc:be:5f:b8:64:55:0b:ea:d2:a4:8e:c4:54:
94:b2:e2:94:b3:92:20:a6:fc:ea:18:99:de:1e:e6:d1:c8:f5:
2f:07:bf:3c:c4:e3:ec:2a:c2:e8:2e:49:7c:b8:36:db:e4:65:
a0:9b:ac:5a:81:b5:eb:8b:92:a2:40:ba:12:c3:0d:16:d9:94:
06:2f:4c:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:56 2024 by rpki-client on console-fra.rpki-client.org