Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/fTRAMAbd2flRGm383Lm93zuOAUc.roa
File: fTRAMAbd2flRGm383Lm93zuOAUc.roa (raw, json)
Hash identifier: 2uLyWWWb8P08SJAHP8J0MFNVImrczEDMsux7dIyrnDk=
Subject key identifier: 7D:34:40:30:06:DD:D9:F9:51:1A:6D:FC:DC:B9:BD:DF:3B:8E:01:47
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 1791DFF4
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/fTRAMAbd2flRGm383Lm93zuOAUc.roa
Signing time: Sat 01 Jan 2022 13:03:20 +0000
ROA not before: Sat 01 Jan 2022 13:03:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197071
IP address blocks: 2a00:f826:4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 395436020 (0x1791dff4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jan 1 13:03:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d34403006ddd9f9511a6dfcdcb9bddf3b8e0147
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:41:55:1b:11:df:f7:17:b7:50:6a:49:44:a7:
43:9c:32:b8:0b:3c:d2:85:5f:84:e3:f5:6d:13:53:
ab:85:5c:31:f7:97:1f:85:a9:3d:16:10:af:d4:f0:
cc:86:82:d5:25:b3:27:1e:8b:c1:cc:a1:b7:01:8b:
75:89:32:5e:1f:9b:94:b1:6a:6d:0b:16:69:75:84:
17:09:fd:37:33:4d:bc:7b:ec:7f:3c:e6:a0:7d:80:
54:c4:80:a2:ad:24:db:bd:65:c7:a4:7e:b7:d8:a4:
b3:b2:bc:02:e5:20:06:61:e8:bd:98:3e:29:23:81:
09:05:9b:13:6e:77:4c:56:1d:aa:b7:7f:7b:04:cc:
a2:60:3d:24:88:5d:e8:ca:7c:71:64:e2:d9:83:5a:
97:55:47:06:a0:1b:eb:9a:c5:4f:43:6b:56:f5:bf:
fa:e5:ca:4d:0a:40:8e:80:a6:a3:f5:fe:48:d6:a4:
43:0f:f5:19:1b:c0:3e:36:d3:78:f6:da:37:85:e8:
23:35:e9:89:6f:bf:40:07:4d:17:23:9c:f9:76:12:
bf:8b:f3:f1:c3:c5:b3:05:1a:da:11:bc:09:78:ca:
b0:52:68:2e:a1:1c:bf:bb:6d:55:99:c5:88:15:c2:
4a:7d:43:83:cc:b8:30:37:12:6d:cc:7e:a9:87:1c:
75:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:34:40:30:06:DD:D9:F9:51:1A:6D:FC:DC:B9:BD:DF:3B:8E:01:47
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/fTRAMAbd2flRGm383Lm93zuOAUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:f826:4::/48
Signature Algorithm: sha256WithRSAEncryption
a5:59:29:76:7c:e9:1e:a3:58:c7:09:85:19:e9:6c:f4:c2:07:
5f:56:55:c1:3c:1d:c2:2f:77:88:b5:6e:d7:86:d2:c2:a6:8f:
30:57:07:a4:b5:1f:8a:4b:f0:fe:cc:73:6e:5b:67:0e:f4:5d:
b4:6c:c7:32:d4:c2:10:66:73:9d:c8:ed:c0:1d:61:59:14:c6:
b5:ad:6c:10:2c:39:fa:11:21:64:de:7f:65:54:33:27:92:b8:
c6:a9:6a:4a:73:47:63:f9:36:c9:eb:0b:12:af:a3:b1:65:af:
f2:90:90:03:88:b6:19:a8:d1:3c:89:6f:21:05:40:3d:92:1c:
54:b7:b7:b1:12:59:b8:b7:ed:8c:52:7b:c7:b8:49:e4:ee:20:
ef:a7:6d:0a:4d:9a:9c:00:15:60:65:2e:cb:c9:12:bb:0d:28:
1a:3f:c5:c2:de:c3:2a:14:fa:4a:73:1c:55:4a:27:56:50:86:
90:44:b1:59:fc:49:b9:e4:a1:f4:30:bd:57:38:e6:df:a9:b7:
bb:0d:2c:22:73:24:a6:50:47:f4:30:f0:32:b5:65:28:bd:9b:
f3:b8:9d:8f:79:11:ad:d4:50:42:eb:53:34:25:aa:1e:7a:16:
fe:88:43:35:86:f4:fb:8f:9b:a5:ce:5a:86:cb:72:ca:95:94:
1d:a5:55:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:08 2023 by rpki-client on console-ams.rpki-client.org