Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/fbf239-5f8a-4d6a-a0cb-44ac6adb3a49/1/vP7a3DgUsjUBAGhHa8Hdx0l2_Qo.roa
File: vP7a3DgUsjUBAGhHa8Hdx0l2_Qo.roa (raw, json)
Hash identifier: i5F1qlI+qZqVxjw9AApRtmb6Qz2S8REpy0i+4QV7Z9k=
Subject key identifier: BC:FE:DA:DC:38:14:B2:35:01:00:68:47:6B:C1:DD:C7:49:76:FD:0A
Certificate issuer: /CN=4aabd1a765ae5cbe1dc93daf024d3a47e72ac918
Certificate serial: 012F1030
Authority key identifier: 4A:AB:D1:A7:65:AE:5C:BE:1D:C9:3D:AF:02:4D:3A:47:E7:2A:C9:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SqvRp2WuXL4dyT2vAk06R-cqyRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/fbf239-5f8a-4d6a-a0cb-44ac6adb3a49/1/vP7a3DgUsjUBAGhHa8Hdx0l2_Qo.roa
Signing time: Sat 01 Jan 2022 11:04:45 +0000
ROA not before: Sat 01 Jan 2022 11:04:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210961
IP address blocks: 2001:67c:30::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19861552 (0x12f1030)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4aabd1a765ae5cbe1dc93daf024d3a47e72ac918
Validity
Not Before: Jan 1 11:04:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bcfedadc3814b235010068476bc1ddc74976fd0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d6:b9:f0:4a:11:93:ef:59:34:1a:c9:a1:06:
39:74:04:31:94:19:eb:89:5b:49:4b:ea:c3:83:c4:
f4:9d:2e:34:b3:f4:47:f4:6b:89:73:01:80:d4:2e:
eb:0f:8a:02:55:c1:fd:e5:11:1e:d0:d4:41:40:48:
d4:ed:90:24:c6:04:ee:fb:fc:e7:c7:d9:61:50:9d:
82:9c:e3:30:84:59:f5:87:65:85:4b:b7:51:5f:f5:
46:c2:0e:c3:14:80:8a:5c:6f:4f:a3:48:f8:82:37:
7b:be:1f:07:54:08:78:39:fe:ee:c7:e9:e6:6a:7f:
a4:60:8d:a4:cf:5b:50:b9:cf:27:79:5a:b7:9f:de:
15:ba:b3:fb:09:5d:c8:3e:a6:d5:38:72:2b:68:50:
05:99:e5:7a:26:ec:5d:09:bd:ab:52:9c:db:9e:86:
92:6b:43:7f:67:2f:2d:2d:23:3e:f1:99:0c:cc:95:
2c:6c:ba:6a:7a:be:28:23:32:a3:5a:56:43:c1:99:
3a:fc:95:23:dd:3a:01:c9:c8:5a:a5:99:a2:48:35:
7f:6d:e7:af:c2:24:36:1a:a7:3a:fc:e8:ce:8f:00:
59:30:bd:f3:84:56:f1:d3:f0:47:99:9c:19:ee:f7:
3d:82:62:73:cb:f1:3f:6f:83:a0:d0:7a:c7:8a:2d:
7c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:FE:DA:DC:38:14:B2:35:01:00:68:47:6B:C1:DD:C7:49:76:FD:0A
X509v3 Authority Key Identifier:
keyid:4A:AB:D1:A7:65:AE:5C:BE:1D:C9:3D:AF:02:4D:3A:47:E7:2A:C9:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SqvRp2WuXL4dyT2vAk06R-cqyRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/fbf239-5f8a-4d6a-a0cb-44ac6adb3a49/1/vP7a3DgUsjUBAGhHa8Hdx0l2_Qo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/fbf239-5f8a-4d6a-a0cb-44ac6adb3a49/1/SqvRp2WuXL4dyT2vAk06R-cqyRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:30::/48
Signature Algorithm: sha256WithRSAEncryption
6d:14:91:85:a0:55:69:e6:2b:fb:ce:dc:04:08:e3:f3:5e:dc:
55:d5:21:8e:09:59:02:c1:40:79:28:d9:7d:98:4f:b1:49:e0:
80:3d:a9:6e:1e:57:61:38:0e:74:41:1d:05:83:59:14:b3:b1:
15:5f:b3:99:bb:9d:52:c7:0d:bf:f5:06:a0:9c:a2:37:07:05:
dd:0a:c0:17:af:8a:72:34:8f:02:1a:f2:47:89:c0:ab:1a:95:
cf:77:40:63:f2:a7:95:4a:4c:da:a3:21:3d:dc:ae:ef:f8:60:
bd:bc:48:6d:ca:f3:fd:33:ad:c5:b2:55:70:f4:0e:8c:1f:ff:
45:ed:3a:c2:f2:b6:9c:c4:07:4b:0d:06:09:c5:5e:45:21:2c:
38:bd:4d:69:a2:98:4a:40:97:63:88:19:6a:ff:e8:f1:6f:05:
91:a6:c4:ba:97:47:da:33:3d:6a:98:98:9d:9c:3e:b5:38:f4:
7e:fe:e6:fa:06:23:7a:f7:c8:cb:ee:b1:b4:70:04:3b:10:18:
bd:08:ca:9e:da:f8:53:c4:11:b9:5d:61:2e:d5:be:42:16:ae:
83:66:ec:45:3f:43:0a:90:78:92:2f:af:95:38:5e:7b:c0:24:
16:df:2e:fa:a3:fd:26:fb:13:7b:f6:22:cb:62:ed:84:4d:7b:
4b:c4:88:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:56 2024 by rpki-client on console-ams.rpki-client.org