Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/fpx0fLmLAGFRsho0iHGhKDFnVmo.roa
File: fpx0fLmLAGFRsho0iHGhKDFnVmo.roa (raw, json)
Hash identifier: c5oDOkohYIm30iwUgAykFGLhTyO/ytxBoQw2xD/Bk0w=
Subject key identifier: 7E:9C:74:7C:B9:8B:00:61:51:B2:1A:34:88:71:A1:28:31:67:56:6A
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 17995B2C
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/fpx0fLmLAGFRsho0iHGhKDFnVmo.roa
Signing time: Sat 01 Jan 2022 13:03:24 +0000
ROA not before: Sat 01 Jan 2022 13:03:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203189
IP address blocks: 2a01:367:dead::/48 maxlen: 48
2a01:367:babe::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 395926316 (0x17995b2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jan 1 13:03:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e9c747cb98b006151b21a348871a1283167566a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6f:54:3b:2c:9a:d4:67:c2:a0:42:e9:11:2d:
aa:af:da:a3:a7:af:f5:6d:2c:82:ac:1c:fd:ba:92:
ba:c9:e9:8d:5a:22:c3:48:aa:db:64:52:02:b9:ae:
ef:3e:fc:5a:a1:bb:b8:a9:39:f7:b2:b8:d7:29:70:
5f:5b:2f:62:8c:4a:34:05:d8:1e:d5:e9:87:15:aa:
95:cf:cb:07:23:4c:cf:61:c2:bd:44:1f:3b:40:62:
7f:b1:6a:1e:ad:3b:9f:fa:8a:a0:d1:e3:40:f9:0b:
52:a8:a0:68:82:b9:ff:79:87:59:58:2e:c3:79:d3:
fe:d2:d7:be:27:4a:f9:83:a2:6c:86:b4:40:1e:58:
4c:32:0f:8d:71:b4:d7:1a:12:86:ff:53:80:79:3a:
f7:96:e0:d0:cd:78:ce:4d:7d:27:20:6f:cf:92:46:
40:fc:20:cc:ac:36:b7:6c:4d:ae:2c:13:96:5c:3c:
5c:b0:40:93:35:f6:54:0f:bb:41:d4:24:e4:38:18:
7d:99:5b:7a:8a:f8:17:4f:41:cc:73:e1:2b:70:1d:
3f:d6:51:60:d0:ff:2b:c2:5b:07:d7:13:d4:9a:1e:
ec:25:f1:e6:c8:ab:99:27:aa:ee:b2:1d:f1:f3:3a:
45:e4:1d:53:44:49:ce:b2:1c:4a:e8:08:aa:04:75:
1a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:9C:74:7C:B9:8B:00:61:51:B2:1A:34:88:71:A1:28:31:67:56:6A
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/fpx0fLmLAGFRsho0iHGhKDFnVmo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:367:babe::/48
2a01:367:dead::/48
Signature Algorithm: sha256WithRSAEncryption
03:55:86:fa:fe:75:30:78:cd:4c:2e:7c:f6:19:9a:98:9c:97:
fb:1f:7f:d2:4a:27:e8:3d:ff:83:83:23:74:c3:ec:e7:98:b4:
e5:12:94:ef:de:16:38:57:14:b9:f7:8b:58:89:14:8a:d5:70:
c7:b5:71:9e:7c:ed:d2:ae:b5:43:e5:e6:e6:2d:c6:bc:e9:1e:
84:27:f0:f8:d1:c7:43:7b:fb:6d:00:84:15:a7:90:27:6c:e3:
5b:49:c2:6e:e2:7f:c1:32:87:cc:4b:9e:a4:34:6b:2c:eb:d6:
fb:a5:52:bd:99:27:3e:ca:0a:3c:7f:77:bf:0c:c1:5d:50:ad:
6f:3b:49:8e:e6:5c:51:8b:bc:37:74:49:a0:d8:ed:e9:e4:7b:
64:1e:e0:c6:14:52:f9:77:5e:5c:2d:4a:d1:36:fd:1e:15:db:
de:df:25:f7:67:05:8e:eb:5a:e3:e2:b2:5b:0a:f3:57:79:cf:
2f:49:79:d7:6e:4d:cc:0d:95:56:1e:2a:29:95:df:d0:ef:02:
4b:f5:4e:36:d0:ad:6c:8c:99:11:a4:de:65:6e:37:91:a6:48:
d3:84:6b:a1:18:e6:3f:79:81:73:22:13:cf:27:1e:4a:f3:64:
27:ca:6e:95:75:fa:a7:e2:16:61:46:5f:81:3b:bb:cc:23:a6:
e8:3e:49:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:08 2023 by rpki-client on console-ams.rpki-client.org