Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/876203-e8fd-472f-afc2-990385559d1c/1/Fm1z6ZeLDP0ptTbVQcrrHx_3oFo.roa
File: Fm1z6ZeLDP0ptTbVQcrrHx_3oFo.roa (raw, json)
Hash identifier: PIuEZ6U+TA2IuIKty+wBniIRS8IKZCoxQk7vyfWnOUQ=
Subject key identifier: 16:6D:73:E9:97:8B:0C:FD:29:B5:36:D5:41:CA:EB:1F:1F:F7:A0:5A
Certificate issuer: /CN=61ce2e57f6f862ca3056e5fd5b3e6eac35540401
Certificate serial: 63D984
Authority key identifier: 61:CE:2E:57:F6:F8:62:CA:30:56:E5:FD:5B:3E:6E:AC:35:54:04:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yc4uV_b4YsowVuX9Wz5urDVUBAE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/876203-e8fd-472f-afc2-990385559d1c/1/Fm1z6ZeLDP0ptTbVQcrrHx_3oFo.roa
Signing time: Sat 01 Jan 2022 00:55:37 +0000
ROA not before: Sat 01 Jan 2022 00:55:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38938
IP address blocks: 2a04:8900::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6543748 (0x63d984)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61ce2e57f6f862ca3056e5fd5b3e6eac35540401
Validity
Not Before: Jan 1 00:55:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=166d73e9978b0cfd29b536d541caeb1f1ff7a05a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:30:b4:c5:cf:f0:37:13:05:2d:42:e6:0e:80:
85:c8:66:a2:d0:d9:2b:7d:b1:fc:a1:21:03:0a:65:
39:b9:be:31:84:c6:ea:9b:c1:b2:cb:e8:73:52:04:
9c:f3:7f:86:5d:bc:a1:87:99:af:10:e7:42:f8:57:
05:39:a4:80:08:de:bc:28:86:1f:91:38:a1:02:cf:
cc:d8:92:c8:02:51:4f:05:5f:0c:3b:cb:36:89:9a:
23:9a:ab:86:3c:14:b7:57:a5:48:e7:fb:75:8f:ad:
84:3b:f9:24:9c:a1:f9:1e:5a:f7:4b:63:82:51:fd:
77:57:45:f7:93:11:96:02:17:7b:08:1c:b5:bf:ac:
07:1e:c3:d3:17:72:fd:0b:4e:d9:21:e8:6b:26:3a:
1c:72:1f:bd:29:e2:ed:83:d2:3a:8c:a2:02:2e:05:
bd:75:e4:45:21:e9:35:1e:ee:f8:45:2d:06:37:94:
54:df:90:cd:25:09:94:1b:1e:a3:51:90:a1:eb:53:
e2:4b:72:27:34:30:e6:f0:b5:7a:c4:44:ea:93:ba:
25:e1:a3:79:d7:ec:b8:60:03:e8:79:c8:1e:d3:6b:
30:50:cd:02:3c:a8:b3:e9:4a:59:26:33:92:c0:9f:
59:5e:9c:ab:62:8c:8b:b6:19:33:15:0f:0d:94:26:
ab:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:6D:73:E9:97:8B:0C:FD:29:B5:36:D5:41:CA:EB:1F:1F:F7:A0:5A
X509v3 Authority Key Identifier:
keyid:61:CE:2E:57:F6:F8:62:CA:30:56:E5:FD:5B:3E:6E:AC:35:54:04:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yc4uV_b4YsowVuX9Wz5urDVUBAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/876203-e8fd-472f-afc2-990385559d1c/1/Fm1z6ZeLDP0ptTbVQcrrHx_3oFo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/876203-e8fd-472f-afc2-990385559d1c/1/Yc4uV_b4YsowVuX9Wz5urDVUBAE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:8900::/29
Signature Algorithm: sha256WithRSAEncryption
8e:a8:a5:61:b0:1d:e2:85:63:a1:9a:ca:08:c8:4b:75:03:c9:
47:b9:04:c0:bf:0b:f7:0c:10:37:59:8c:d7:96:c8:a4:f9:69:
14:65:8f:86:9b:fa:88:6f:c7:b5:fc:50:7a:8e:39:d7:d6:8e:
3a:75:03:08:96:fd:c5:e0:bf:e7:56:f6:37:70:ef:25:e5:f3:
7e:0a:11:09:4e:6f:d0:66:73:e8:7c:67:e2:44:97:eb:6d:66:
a6:b7:6e:d3:7d:e5:7b:92:30:1e:8e:0a:e3:e0:74:a6:33:2c:
37:78:a1:58:02:4a:71:96:1a:14:31:b7:29:a2:36:c6:66:4c:
4a:c0:a0:be:67:cf:84:df:42:26:39:75:36:0f:ff:57:b8:18:
b0:ca:f6:b5:a5:79:e9:a9:5b:27:0e:84:58:de:24:2e:5a:55:
ca:72:0a:a0:cb:cc:09:a5:f5:7f:00:eb:be:e8:e5:7d:ee:73:
86:5d:08:19:ff:65:c6:46:31:e2:f1:48:8d:b7:d8:01:e9:c5:
a2:3a:ef:5a:aa:1e:73:6b:2a:b6:b9:93:48:d4:4a:b6:82:1f:
cf:81:57:a3:ef:f3:cf:e6:10:64:b4:fc:3c:bb:8a:03:df:02:
bc:6d:6e:f6:7d:34:8c:3e:e6:cd:07:2c:0f:a2:1c:9c:e1:6c:
05:70:9b:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:34 2024 by rpki-client on console-fra.rpki-client.org