Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/avp7o7Z7bQLRAHKe8_DIKQtYHak.roa
File: avp7o7Z7bQLRAHKe8_DIKQtYHak.roa (raw, json)
Hash identifier: 15qhd5ZfO8XHE5itjs1CfhAaRpV1Myql6muoRSrYxLw=
Subject key identifier: 6A:FA:7B:A3:B6:7B:6D:02:D1:00:72:9E:F3:F0:C8:29:0B:58:1D:A9
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 179828E3
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/avp7o7Z7bQLRAHKe8_DIKQtYHak.roa
Signing time: Sat 01 Jan 2022 13:03:23 +0000
ROA not before: Sat 01 Jan 2022 13:03:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203125
IP address blocks: 2a01:367:3953::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 395847907 (0x179828e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jan 1 13:03:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6afa7ba3b67b6d02d100729ef3f0c8290b581da9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:29:0b:f4:c0:9e:55:ca:d3:3d:e6:f8:82:a6:
70:e4:f0:b6:0c:98:b2:7d:c0:9e:9f:52:83:d3:b3:
6a:09:9c:d1:3d:08:fb:7c:6d:0d:bb:59:07:ea:9d:
ac:df:b8:0d:83:66:a3:a4:fe:81:74:d5:c5:9e:df:
96:c0:04:7c:7c:f2:5a:46:90:c7:63:b1:af:a2:9b:
f8:c2:23:91:0e:59:7e:3b:ed:15:27:91:65:5a:99:
61:19:5d:3f:bf:80:c5:ee:ec:a8:14:fa:8f:ce:b0:
ee:09:52:55:fc:4d:fc:29:ca:73:89:6a:bf:85:44:
41:c5:b5:51:0d:b0:5f:e8:2a:37:32:39:60:24:07:
a7:0b:95:fa:39:b9:f1:6b:93:a9:db:4e:16:83:03:
34:6c:52:94:2d:bb:27:4d:1d:55:09:e3:cf:42:48:
cc:2e:5c:ae:15:8e:07:01:12:6b:c8:3a:a0:6c:9a:
bf:9e:d0:09:c1:7e:08:7f:70:e1:07:54:66:5a:48:
ee:0b:69:43:44:dd:a8:69:c5:2e:1e:a4:c9:47:99:
79:d9:58:3e:34:66:ac:6a:5e:85:d1:10:11:53:46:
22:8d:b3:f1:68:b7:c5:da:3b:4f:43:53:00:bc:c7:
58:aa:dc:ed:de:a1:32:57:b2:77:de:57:83:41:4b:
4c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:FA:7B:A3:B6:7B:6D:02:D1:00:72:9E:F3:F0:C8:29:0B:58:1D:A9
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/avp7o7Z7bQLRAHKe8_DIKQtYHak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:367:3953::/48
Signature Algorithm: sha256WithRSAEncryption
93:20:04:2e:cf:24:12:72:05:fe:9e:73:d3:39:51:34:b8:ac:
a0:f2:0b:d8:74:f9:37:60:7a:d1:e5:a9:91:fb:e9:b0:d7:12:
54:89:ef:5d:b5:68:9b:eb:d2:24:3a:8b:6a:0d:10:e2:e2:08:
33:b7:2f:bd:c3:c2:3c:b5:23:7b:39:a3:fb:f2:1c:81:56:30:
b2:ba:da:32:e0:15:71:bc:1b:87:97:cc:84:90:14:06:61:22:
78:63:ec:78:ef:8b:a0:80:f6:07:b5:db:91:a2:7c:e7:2c:4d:
47:a9:3c:4b:53:22:f8:89:69:02:53:6c:52:bc:88:57:af:6e:
ee:ae:f6:34:83:30:04:14:d8:03:c6:9e:31:36:84:a8:4c:0f:
d6:65:af:64:22:a2:83:15:50:67:82:ba:a5:aa:f2:eb:45:5a:
f5:ce:0a:0e:86:a6:ca:57:25:40:1c:4e:84:56:c9:e4:c0:30:
f0:45:d7:0d:fe:1c:7b:58:bc:02:d8:fb:2c:83:e7:01:39:e2:
4e:0e:e4:99:54:2f:02:4b:01:9a:d3:38:20:4f:27:91:a4:0a:
63:68:23:99:b2:07:f6:c9:43:32:df:4f:b7:41:19:bd:c4:ea:
db:a5:34:c1:85:91:aa:e6:d5:a0:61:b2:1f:90:b2:29:78:f0:
84:ed:b7:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:31 2024 by rpki-client on console-ams.rpki-client.org