Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/91d629-7d1f-45bd-a1e1-931cf798e412/1/F3yFfqQvWNXD-KTfYeCq3_qoj4k.roa
File: F3yFfqQvWNXD-KTfYeCq3_qoj4k.roa (raw, json)
Hash identifier: 0wBDcvPZW/44uQVCGPV8yg70J/1NK/WjBaZYZkwf0mI=
Subject key identifier: 17:7C:85:7E:A4:2F:58:D5:C3:F8:A4:DF:61:E0:AA:DF:FA:A8:8F:89
Certificate issuer: /CN=eab066c6e1800a3f5bd2e406e9a620d2a0f6f653
Certificate serial: 02A485
Authority key identifier: EA:B0:66:C6:E1:80:0A:3F:5B:D2:E4:06:E9:A6:20:D2:A0:F6:F6:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6rBmxuGACj9b0uQG6aYg0qD29lM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/91d629-7d1f-45bd-a1e1-931cf798e412/1/F3yFfqQvWNXD-KTfYeCq3_qoj4k.roa
Signing time: Wed 25 May 2022 12:28:02 +0000
ROA not before: Wed 25 May 2022 12:28:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 559
IP address blocks: 2a0b:1200::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173189 (0x2a485)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eab066c6e1800a3f5bd2e406e9a620d2a0f6f653
Validity
Not Before: May 25 12:28:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=177c857ea42f58d5c3f8a4df61e0aadffaa88f89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:0b:9f:24:06:40:e9:70:2f:24:ba:8d:af:8f:
0d:e6:20:82:3c:44:45:fe:70:7f:60:be:17:ac:7f:
9d:5a:54:02:ec:f5:bf:92:08:8d:c9:47:7c:03:e6:
dc:4c:1c:41:80:68:d0:7e:35:59:63:54:87:6c:4b:
e1:d9:0d:61:da:47:4e:4f:30:47:bf:5b:38:01:ca:
80:b1:e7:c6:03:6d:5c:5d:83:f9:49:d2:88:64:88:
4a:10:41:2a:b5:ee:50:b6:14:e2:f1:16:f9:3c:11:
fc:9d:e8:b1:c1:39:96:25:e2:eb:6b:f1:86:87:6b:
c1:30:42:3f:34:9c:9d:3f:fc:bd:71:ff:28:1c:f9:
7b:df:7f:ec:74:1d:17:12:bd:8a:29:82:17:3f:34:
c9:d2:6b:f9:13:a5:71:2f:17:7e:45:7e:10:b9:25:
6d:b0:d5:4a:7f:6e:12:21:7c:b8:8d:ff:a8:36:72:
b3:3b:ff:8f:67:ef:f0:94:ba:f3:78:99:da:1c:c5:
f3:4e:1e:13:cf:24:d8:d0:53:9a:dc:8c:20:c1:87:
70:fe:56:3d:3a:5a:73:6b:3d:a9:df:28:3b:ce:8b:
ca:27:b8:14:d4:24:aa:87:c2:e7:f1:ae:e5:30:61:
1b:fb:9a:ab:2e:ac:79:fc:1b:41:ee:96:22:a5:df:
a2:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:7C:85:7E:A4:2F:58:D5:C3:F8:A4:DF:61:E0:AA:DF:FA:A8:8F:89
X509v3 Authority Key Identifier:
keyid:EA:B0:66:C6:E1:80:0A:3F:5B:D2:E4:06:E9:A6:20:D2:A0:F6:F6:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6rBmxuGACj9b0uQG6aYg0qD29lM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/91d629-7d1f-45bd-a1e1-931cf798e412/1/F3yFfqQvWNXD-KTfYeCq3_qoj4k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/91d629-7d1f-45bd-a1e1-931cf798e412/1/6rBmxuGACj9b0uQG6aYg0qD29lM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:1200::/29
Signature Algorithm: sha256WithRSAEncryption
3c:2a:f4:68:cf:e8:4e:66:a6:f1:ae:e5:5c:63:cc:2c:bd:14:
d8:f3:2c:37:5b:16:12:0f:15:ce:5c:23:71:34:98:96:78:38:
d8:29:d3:88:f2:54:24:af:1c:19:f2:21:79:c7:c2:fe:4b:35:
13:bf:95:e0:39:19:f0:f5:a7:a4:29:97:65:2b:f1:f7:8d:d9:
ff:da:3d:06:75:30:bb:94:cc:8b:79:1b:d5:24:6b:22:68:09:
26:c4:b6:c3:b4:21:eb:3c:5b:f6:ce:38:26:8f:40:c8:f2:91:
ca:b1:3f:16:d2:03:c2:a5:ec:db:be:4e:29:85:57:f4:9d:36:
61:bd:99:28:39:af:43:6f:6f:8c:8d:de:3a:67:a5:b7:69:ca:
a4:1b:84:7f:cf:72:c3:ed:4f:70:62:73:24:8a:3b:84:cd:dc:
29:8c:48:26:9b:a8:8f:7c:9e:19:b1:41:8d:06:a3:f3:7a:70:
9b:72:24:fd:4f:36:c7:9b:cf:bb:5a:50:98:4d:56:68:33:b5:
7b:f8:09:6a:12:1c:7c:09:40:cc:5f:3c:ff:b2:b6:5d:20:bb:
d0:ef:a0:83:dc:52:43:ca:69:a6:d7:a8:89:2c:22:d8:98:b9:
3b:ee:b9:a0:26:20:e8:aa:99:60:88:32:7e:3d:1e:db:b0:cf:
4c:6b:ca:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:10 2023 by rpki-client on console-fra.rpki-client.org