Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/rPYnC7lbOlLJEk71cFoT8P-Wp4M.roa
File: rPYnC7lbOlLJEk71cFoT8P-Wp4M.roa (raw, json)
Hash identifier: ixDMjRVqJ6rajs7Twn2f15xy+eQkkvM4E77vdF6ilOg=
Subject key identifier: AC:F6:27:0B:B9:5B:3A:52:C9:12:4E:F5:70:5A:13:F0:FF:96:A7:83
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 17902A32
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/rPYnC7lbOlLJEk71cFoT8P-Wp4M.roa
Signing time: Sat 01 Jan 2022 13:03:19 +0000
ROA not before: Sat 01 Jan 2022 13:03:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62387
IP address blocks: 2a00:f826:11::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 395323954 (0x17902a32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jan 1 13:03:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=acf6270bb95b3a52c9124ef5705a13f0ff96a783
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:20:73:8c:0f:55:67:cd:b5:5a:1d:b7:5f:88:
5f:72:c0:05:6f:8b:16:32:1e:98:45:90:97:ba:da:
4a:34:41:ce:70:1e:a2:c4:fa:90:dd:61:dd:de:da:
20:64:ca:c8:b9:a2:b1:b5:cb:02:a6:34:7f:8e:0a:
4c:e1:82:bc:43:cf:01:1c:4b:4b:b1:ca:6b:37:31:
0e:3e:ac:98:3a:07:1b:3c:be:e4:6f:10:0e:61:d1:
a7:fe:ce:38:22:8b:9a:11:f3:59:f0:5f:43:a6:1e:
49:e6:95:51:8c:b6:78:2e:9f:c3:6f:b9:76:84:69:
64:c5:b2:a9:ac:36:3e:fa:fd:3d:99:8b:96:ad:34:
b3:18:d2:7b:f6:32:ff:80:d2:a8:d2:68:b4:30:03:
5b:4b:f1:c6:ed:8e:bd:db:19:b2:50:a5:c6:70:49:
67:29:47:2a:ac:8c:95:63:39:74:fd:15:a9:6f:93:
6e:d6:83:2f:f0:d2:26:92:36:9a:49:78:d7:04:24:
3a:4f:72:5c:79:79:33:e3:dc:1c:2f:92:27:46:90:
15:eb:e9:74:45:bf:22:b7:e4:6a:7a:63:87:19:03:
88:51:64:b8:34:b0:dd:93:4a:dd:3a:85:19:e5:f2:
de:2e:64:f3:08:a6:9e:6a:79:cc:e8:f0:ec:1e:0c:
cc:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:F6:27:0B:B9:5B:3A:52:C9:12:4E:F5:70:5A:13:F0:FF:96:A7:83
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/rPYnC7lbOlLJEk71cFoT8P-Wp4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:f826:11::/48
Signature Algorithm: sha256WithRSAEncryption
2f:bd:dd:06:3a:7e:41:55:28:f1:ea:38:ab:bb:83:01:86:6b:
e4:ec:f7:f7:21:b1:46:e0:3d:17:6d:4a:d9:96:d2:05:86:0a:
63:a0:0a:92:68:cc:84:86:60:c3:a0:19:6f:a8:c9:d6:1a:c0:
51:8a:d4:7c:bc:38:40:11:e3:ec:88:c1:c2:b2:1a:5f:e6:0c:
ca:a2:5a:4a:04:bf:31:8f:99:ec:c7:2c:1b:e6:dd:cd:07:f0:
5f:24:e3:8c:2c:68:40:76:03:40:58:20:71:1c:32:cc:ac:e7:
30:cc:2f:33:b0:5c:44:1b:1e:0f:34:76:2e:2b:aa:51:2c:80:
05:d5:26:b2:ba:7d:24:b6:94:dd:35:98:2a:f1:b1:20:8c:d8:
58:ba:80:86:a2:09:b6:e1:f2:fc:d5:97:fe:21:e2:38:7d:31:
1a:2b:e7:44:11:6e:3e:56:1a:db:61:42:c5:67:75:77:58:bc:
95:fe:e9:09:8b:6b:f4:c0:02:9c:de:0b:f5:f7:49:4c:4e:02:
bb:3c:7c:60:d2:a6:57:05:fc:f8:56:a5:3a:c8:c2:29:1c:96:
3d:9c:44:f7:f0:41:8f:c1:06:ab:48:c4:66:b6:4b:7c:5e:c3:
31:07:1b:08:df:48:51:d3:97:fd:c8:b4:48:7a:e8:fd:23:43:
46:56:ab:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:17 2023 by rpki-client on console-fra.rpki-client.org