Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/joeJTgl4i2631KIFP2WlU1wf2Yw.roa
File: joeJTgl4i2631KIFP2WlU1wf2Yw.roa (raw, json)
Hash identifier: ffxS4T7M6dA0FlsfmZfT6vbRLj29txUEiY27psMSf88=
Subject key identifier: 8E:87:89:4E:09:78:8B:6E:B7:D4:A2:05:3F:65:A5:53:5C:1F:D9:8C
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17B93418
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/joeJTgl4i2631KIFP2WlU1wf2Yw.roa
Signing time: Sat 01 Jan 2022 04:54:16 +0000
ROA not before: Sat 01 Jan 2022 04:54:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49094
IP address blocks: 2a0c:da04::/38 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 398013464 (0x17b93418)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e87894e09788b6eb7d4a2053f65a5535c1fd98c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:80:0f:3d:f4:b9:cd:51:b6:c1:83:28:eb:46:
bd:51:55:c0:ab:e1:48:8c:86:a7:92:12:dc:e2:f8:
18:eb:28:29:24:dd:83:f8:49:1d:1d:19:3c:a3:57:
7a:a3:6f:97:33:99:7a:6d:7d:e6:38:34:b7:f0:2e:
8e:02:22:8e:29:d9:a0:72:28:f3:8b:25:21:d7:b1:
ac:b8:82:44:75:b9:24:78:87:4c:7c:3a:af:27:c7:
3c:51:bb:f0:d0:62:12:ee:e1:9c:96:59:b8:1c:08:
d2:00:37:4b:c8:83:46:cf:fe:a6:a9:05:57:46:83:
4f:db:8d:f2:2a:7b:52:da:39:22:01:ba:79:3f:d4:
a1:01:31:a8:a5:05:3d:1c:21:52:ce:60:f8:00:a2:
8d:02:dd:52:18:84:f8:b5:b8:ff:a8:52:1e:0b:ce:
f1:a4:4a:df:b5:a2:aa:2e:31:9b:6e:b4:8f:a0:3c:
b1:24:d4:e8:aa:58:02:54:91:12:bf:b1:a0:3e:6f:
b1:4f:49:24:28:b8:07:a4:bc:98:ff:27:55:67:c6:
57:eb:cc:02:bd:05:02:00:14:21:01:fe:4e:ef:6f:
55:b7:81:ea:e6:82:82:2b:70:d5:76:c8:6b:fb:69:
33:2e:80:cf:91:81:50:7d:5c:52:b9:09:ce:f7:2b:
d4:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:87:89:4E:09:78:8B:6E:B7:D4:A2:05:3F:65:A5:53:5C:1F:D9:8C
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/joeJTgl4i2631KIFP2WlU1wf2Yw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:da04::/38
Signature Algorithm: sha256WithRSAEncryption
a0:82:79:6c:37:c7:93:62:4a:50:ed:7d:51:df:4c:27:b9:8e:
06:38:3a:70:97:7e:47:21:c5:e7:a8:0c:9c:d0:fb:06:74:5b:
ac:f9:1f:fe:1d:44:68:b2:03:29:66:4d:bf:e1:dd:71:83:7a:
5e:35:c5:73:33:36:68:77:9d:c4:ea:f3:f2:a6:94:cc:d8:72:
dd:79:e4:82:7e:65:c0:ca:b7:fb:03:6e:5b:ae:2f:12:2b:01:
82:87:86:22:a5:19:35:fa:01:d4:f5:58:0a:8c:39:82:4a:b4:
d2:94:7e:d2:64:f5:3f:9a:18:74:08:ae:9d:6b:87:c8:d9:a5:
4e:fa:0f:df:b5:2f:3d:5d:d4:a7:59:f8:a1:a5:e9:c8:39:41:
cd:c1:0e:c4:aa:01:f5:b2:f6:69:0d:35:42:fd:54:dc:a0:97:
07:83:5a:f2:65:d5:9a:b7:75:1f:30:41:e9:df:6f:54:2b:23:
97:3b:68:06:ca:62:6c:5a:1f:10:4c:c1:6a:59:b6:b9:f1:9a:
ab:5b:dc:8a:fc:ec:47:a7:b6:4a:89:10:12:05:43:2b:a7:74:
cb:76:33:4c:b2:71:d0:4e:aa:6a:f0:17:81:73:0e:1b:f2:e0:
d9:8c:b5:12:24:1b:56:b5:30:62:f0:50:0a:73:dd:83:4e:e4:
45:23:54:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:18 2023 by rpki-client on console-fra.rpki-client.org