Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/rhTVNiOKhdcHiCegrBMAmAIO9Gc.roa
File: rhTVNiOKhdcHiCegrBMAmAIO9Gc.roa (raw, json)
Hash identifier: 1N60IDfqR/tO+YNUKRe10InL7JyhxbKbBadcgwIKPeE=
Subject key identifier: AE:14:D5:36:23:8A:85:D7:07:88:27:A0:AC:13:00:98:02:0E:F4:67
Certificate issuer: /CN=4f3bd56e8b54e6da27bbe6622dac67cbf02a81ea
Certificate serial: 0BB7E837
Authority key identifier: 4F:3B:D5:6E:8B:54:E6:DA:27:BB:E6:62:2D:AC:67:CB:F0:2A:81:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/rhTVNiOKhdcHiCegrBMAmAIO9Gc.roa
Signing time: Sat 01 Jan 2022 11:56:51 +0000
ROA not before: Sat 01 Jan 2022 11:56:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142275
IP address blocks: 2a0c:8fc1::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 196601911 (0xbb7e837)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f3bd56e8b54e6da27bbe6622dac67cbf02a81ea
Validity
Not Before: Jan 1 11:56:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae14d536238a85d7078827a0ac130098020ef467
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:33:ee:30:24:8b:e5:58:f7:56:95:f0:88:be:
ef:ed:73:79:7b:8b:49:6a:97:89:10:9a:60:e5:b5:
19:40:23:9c:eb:c7:50:42:21:5a:44:b8:2c:f0:50:
1e:20:6b:a4:99:06:b2:c3:45:f9:34:b3:10:02:e5:
db:c0:24:c0:8b:92:b7:3c:70:f0:58:eb:fb:d0:61:
59:10:79:75:f5:b1:4a:c0:67:9f:b6:9d:eb:11:2d:
87:c8:12:dc:12:28:fb:06:09:4c:a0:1c:c9:d9:eb:
78:fc:0b:d6:16:dd:c3:01:76:7b:9f:4f:08:01:a6:
ad:51:cb:35:5a:bc:ec:ee:eb:89:e3:f4:3b:f5:ee:
f8:44:94:7a:d3:cf:7e:b5:67:3f:ce:ab:e1:31:2d:
6d:35:bb:53:c2:d2:a0:91:e9:ae:93:8c:33:2e:a6:
20:d2:64:31:03:96:f4:35:fa:c5:81:f0:6b:93:ce:
5c:18:1a:fb:92:32:f7:71:7d:1e:e2:d7:f7:9f:12:
d2:f1:63:e3:3e:fe:32:8e:d8:ec:d0:e0:ef:cb:38:
32:52:03:ad:10:22:fb:23:e9:e1:67:5c:01:9d:37:
99:44:c3:dc:ab:ae:02:72:7d:5a:70:be:fb:08:37:
90:83:42:3e:8a:0b:6b:7e:24:39:91:3a:f9:90:83:
6e:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:14:D5:36:23:8A:85:D7:07:88:27:A0:AC:13:00:98:02:0E:F4:67
X509v3 Authority Key Identifier:
keyid:4F:3B:D5:6E:8B:54:E6:DA:27:BB:E6:62:2D:AC:67:CB:F0:2A:81:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/rhTVNiOKhdcHiCegrBMAmAIO9Gc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:8fc1::/32
Signature Algorithm: sha256WithRSAEncryption
5d:14:ba:66:54:5a:4d:17:95:f7:6c:8a:8f:4b:d4:26:f7:e5:
c0:3e:ca:74:ea:f1:34:87:9c:89:37:a2:70:0d:d3:82:30:1e:
87:bb:04:9c:72:e8:14:7f:e0:8b:27:48:19:8a:d8:fb:5f:99:
b6:e9:a5:dc:20:21:b4:ce:23:41:aa:ad:55:37:34:67:9e:23:
88:3d:fe:19:0d:bb:2f:ed:3a:98:66:f3:29:ca:5a:20:fa:18:
93:9d:e2:50:7e:9d:69:b3:28:31:21:9b:21:75:77:67:c2:cc:
b8:42:10:a2:7e:b2:10:90:ea:eb:79:be:32:af:24:7a:ee:f3:
ed:37:b4:fb:4c:b2:1e:5c:76:f1:9b:30:80:2e:f8:74:aa:d5:
03:6c:fd:aa:61:1d:6c:25:ea:f4:d9:58:79:45:8a:a3:54:45:
50:4e:81:20:8b:9f:50:3a:67:3f:4e:e6:d4:a7:7a:e8:84:18:
80:d1:2d:31:7c:fb:ea:4a:78:3e:da:a5:44:d8:22:4b:4a:6d:
dd:fa:11:a3:f6:f3:2f:67:b0:ca:f7:83:ef:83:eb:00:e3:0d:
d4:47:5e:bb:ba:14:c3:18:4e:46:02:f3:f6:e3:cd:5f:ae:18:
c1:94:c4:22:31:aa:30:6c:22:c9:90:49:4f:fc:ca:a2:d2:cb:
e7:b6:11:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:43 2024 by rpki-client on console-ams.rpki-client.org