Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/2reAOojUQmXiCwn1E2F9w7z7yHA.roa
File: 2reAOojUQmXiCwn1E2F9w7z7yHA.roa (raw, json)
Hash identifier: /xw6tELmWSwv2Uqx0J+fV/Ury0MEMeNjhIBh0igUvNY=
Subject key identifier: DA:B7:80:3A:88:D4:42:65:E2:0B:09:F5:13:61:7D:C3:BC:FB:C8:70
Certificate issuer: /CN=b0c20ae1dacca31815b274702927c1a5a9dbc7b3
Certificate serial: 0A8471D0
Authority key identifier: B0:C2:0A:E1:DA:CC:A3:18:15:B2:74:70:29:27:C1:A5:A9:DB:C7:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sMIK4drMoxgVsnRwKSfBpanbx7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/2reAOojUQmXiCwn1E2F9w7z7yHA.roa
Signing time: Sat 01 Jan 2022 02:54:20 +0000
ROA not before: Sat 01 Jan 2022 02:54:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61050
IP address blocks: 2a00:ece1:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176452048 (0xa8471d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0c20ae1dacca31815b274702927c1a5a9dbc7b3
Validity
Not Before: Jan 1 02:54:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dab7803a88d44265e20b09f513617dc3bcfbc870
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:5a:65:c5:31:94:0e:03:14:d4:64:91:90:95:
8f:0c:43:46:de:94:86:57:30:b9:98:fe:db:e0:1c:
ef:a7:51:f9:39:af:ce:06:44:2e:80:e5:93:14:82:
81:b9:20:60:56:89:27:5c:b3:bd:bd:e9:06:96:f2:
4e:5e:f2:37:29:f1:76:32:f5:b2:6d:31:94:7e:c1:
66:ac:36:5c:54:4f:a9:a3:1c:3f:50:5a:9f:0f:34:
3d:98:ba:e7:e9:60:eb:4c:96:a2:60:e3:47:03:b0:
1c:21:c7:1e:13:48:9c:2d:19:f9:95:39:fa:44:62:
c4:fe:db:f9:c7:cb:43:9d:20:d9:a0:af:7f:ae:0e:
78:3e:31:89:ca:87:fe:a3:6e:e6:20:c2:e5:54:ae:
3e:54:16:9c:ae:a7:80:d4:b6:ea:ed:ce:f0:d8:f0:
7b:e9:1e:4a:4a:07:81:5b:ca:65:9f:e5:8f:0d:c1:
81:04:b2:e5:0a:90:4f:b6:cb:78:8c:aa:79:c4:b8:
ac:d7:57:a6:30:d8:c9:3d:cc:76:f1:84:79:13:b8:
78:84:06:d5:26:bf:19:26:30:05:5e:a1:a2:0e:47:
0e:bc:a9:d3:dd:8c:0c:f1:26:79:ee:58:34:5d:69:
23:04:94:dc:cc:f6:98:a2:fb:4f:d2:2d:b1:50:d5:
73:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:B7:80:3A:88:D4:42:65:E2:0B:09:F5:13:61:7D:C3:BC:FB:C8:70
X509v3 Authority Key Identifier:
keyid:B0:C2:0A:E1:DA:CC:A3:18:15:B2:74:70:29:27:C1:A5:A9:DB:C7:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sMIK4drMoxgVsnRwKSfBpanbx7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/2reAOojUQmXiCwn1E2F9w7z7yHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/sMIK4drMoxgVsnRwKSfBpanbx7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:ece1:1::/48
Signature Algorithm: sha256WithRSAEncryption
78:b5:42:e3:5f:2d:9c:de:f6:a7:8d:b8:0a:cd:34:d2:de:41:
c3:78:81:4f:58:77:6f:41:ac:04:8d:12:44:71:16:da:60:9f:
9a:d4:59:15:16:c6:f2:b9:c3:86:96:eb:0b:dd:ad:0d:cc:cc:
8a:30:4d:63:da:28:0d:38:77:0d:b2:1f:a2:82:69:25:54:be:
c3:90:29:d7:0a:3b:95:ed:d1:18:76:7d:68:80:1e:bb:f6:43:
b4:11:67:5e:7e:02:40:76:19:03:33:c1:0b:6a:9f:85:07:b9:
6b:73:18:4a:9a:0e:b5:5d:ef:88:4e:26:07:a3:97:ba:c8:36:
e1:7d:07:51:5e:91:d1:cf:5c:10:f1:21:8e:74:90:58:c5:11:
63:7c:e4:f7:c7:dc:d6:44:79:32:37:09:80:b3:56:26:51:55:
84:0c:7d:01:d7:5d:90:8c:ed:3d:86:5a:df:7b:f7:8e:4f:c0:
47:9e:9a:33:f3:dd:3b:c4:32:af:be:4f:79:55:23:36:d7:53:
c3:4e:3e:f4:51:61:dc:04:83:da:76:3e:97:99:22:c4:fa:70:
0d:19:9d:4d:70:b5:29:04:11:04:dc:55:9f:f8:5f:c9:79:ae:
ef:d9:3d:9b:83:0a:6a:91:5b:c2:00:8a:37:15:15:e2:98:e5:
b1:3e:5d:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:36 2023 by rpki-client on console-fra.rpki-client.org