Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/9dc933-5c0d-4461-a45d-8f7d5691c1be/1/1-0vfZSoOw2CUjj4u5BD0af3XvmM.roa
File: 1-0vfZSoOw2CUjj4u5BD0af3XvmM.roa (raw, json)
Hash identifier: dsqbXpxTXPG8yIAZYfjORS3Wph18S/97ZD9bHs1R/i8=
Subject key identifier: FB:4B:DF:65:2A:0E:C3:60:94:8E:3E:2E:E4:10:F4:69:FD:D7:BE:63
Certificate issuer: /CN=fb782b78f20a6e4b70643052bd1a40af15a56338
Certificate serial: 04D87922
Authority key identifier: FB:78:2B:78:F2:0A:6E:4B:70:64:30:52:BD:1A:40:AF:15:A5:63:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-3grePIKbktwZDBSvRpArxWlYzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/9dc933-5c0d-4461-a45d-8f7d5691c1be/1/1-0vfZSoOw2CUjj4u5BD0af3XvmM.roa
Signing time: Sat 01 Jan 2022 15:54:55 +0000
ROA not before: Sat 01 Jan 2022 15:54:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 2a0a:580:f010::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81295650 (0x4d87922)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb782b78f20a6e4b70643052bd1a40af15a56338
Validity
Not Before: Jan 1 15:54:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb4bdf652a0ec360948e3e2ee410f469fdd7be63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:0c:8b:ae:6b:3e:15:86:36:f8:27:3a:1e:13:
08:67:7f:36:bf:d3:f7:16:ee:ce:07:8c:dd:5b:8b:
c7:01:e9:80:b2:7d:9e:eb:1c:ed:3e:72:dc:d4:1a:
6b:47:7e:9c:78:20:eb:c8:04:05:b5:51:0b:ed:8c:
89:1c:54:dd:46:97:3d:78:46:4d:5c:0a:59:df:56:
f6:b5:82:4e:b7:9a:b4:0b:b5:32:65:3a:22:0a:31:
f2:22:11:7f:60:2b:f2:6f:43:2e:c2:38:9b:f3:4e:
d6:08:0f:ee:1c:9e:41:5a:d4:8c:4b:66:e7:b9:8c:
03:b6:55:35:b5:13:be:c2:16:8f:08:3e:fa:8a:04:
df:14:95:ab:86:0b:09:54:cf:4e:de:ba:04:e2:5d:
67:d8:cf:9d:43:b5:5a:3d:46:f5:83:be:40:fb:cf:
f6:2a:b1:fa:df:6d:93:a4:7c:be:d0:0b:95:bf:70:
4b:a8:53:63:e9:bc:ba:b0:f8:91:9c:cd:34:95:b1:
6a:13:18:ea:66:a6:2d:ac:75:2c:5a:a1:04:11:2b:
d3:10:dd:25:40:6e:34:00:85:44:47:15:83:dd:c5:
b2:6e:7e:86:d1:98:cd:b1:64:47:8a:6b:e6:ca:10:
9a:9f:73:9d:5f:20:86:e8:e4:ff:b7:34:fb:31:44:
53:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:4B:DF:65:2A:0E:C3:60:94:8E:3E:2E:E4:10:F4:69:FD:D7:BE:63
X509v3 Authority Key Identifier:
keyid:FB:78:2B:78:F2:0A:6E:4B:70:64:30:52:BD:1A:40:AF:15:A5:63:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-3grePIKbktwZDBSvRpArxWlYzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/9dc933-5c0d-4461-a45d-8f7d5691c1be/1/1-0vfZSoOw2CUjj4u5BD0af3XvmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/9dc933-5c0d-4461-a45d-8f7d5691c1be/1/1-3grePIKbktwZDBSvRpArxWlYzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:580:f010::/48
Signature Algorithm: sha256WithRSAEncryption
0e:d4:11:68:64:1f:94:f6:f8:14:58:18:a8:99:d4:7e:f4:ed:
29:57:c6:55:7a:71:93:f0:d8:12:a4:92:9c:38:97:7a:02:03:
0e:86:31:10:2c:2b:8b:11:51:6a:5e:ef:f5:47:ce:0b:32:33:
25:93:aa:b6:6e:d9:4c:9d:52:aa:ee:40:a4:8e:99:5a:fa:46:
06:2d:45:be:ce:47:65:af:37:ab:2f:8f:2b:fe:63:35:18:f1:
9b:3d:78:08:44:dd:29:5c:04:2b:53:6a:97:7e:ac:03:74:3c:
e8:c2:96:57:56:bb:f0:18:cf:df:e4:1e:36:5b:95:6d:ba:e4:
0f:75:a1:24:55:61:60:bc:02:20:34:2b:dd:68:ee:e8:74:63:
18:0e:8b:f2:72:09:92:76:30:f0:6d:d2:8a:27:11:69:b7:0c:
b7:c5:2a:06:a3:c5:cc:5e:e6:2c:70:3a:05:52:f7:20:8d:2e:
42:a8:ff:6c:0e:34:02:d2:ba:12:d5:0b:e4:71:a2:23:47:b9:
6a:53:e8:cf:3e:34:47:c9:8f:af:c5:c9:a4:ea:0b:e0:eb:df:
d6:35:7a:51:cc:07:46:41:7e:38:4a:05:8d:86:c3:85:30:b2:
be:82:b0:90:ee:c1:b4:ee:9a:f2:61:3d:0b:e0:70:d6:c4:af:
01:11:c8:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:26 2023 by rpki-client on console-fra.rpki-client.org