Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/7ca61a-ce3d-4bac-9110-c0f3bad99a40/1/Hr256JtHTuEuMsgbyJvnEkQAwks.roa
File: Hr256JtHTuEuMsgbyJvnEkQAwks.roa (raw, json)
Hash identifier: zNTe01IaZHZdRrqy1FaixnoAH8587psvRIEdglTFZOs=
Subject key identifier: 1E:BD:B9:E8:9B:47:4E:E1:2E:32:C8:1B:C8:9B:E7:12:44:00:C2:4B
Certificate issuer: /CN=b689299bc49584a645940c1dd87df0afc8aaa0fd
Certificate serial: 029B6318
Authority key identifier: B6:89:29:9B:C4:95:84:A6:45:94:0C:1D:D8:7D:F0:AF:C8:AA:A0:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tokpm8SVhKZFlAwd2H3wr8iqoP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/7ca61a-ce3d-4bac-9110-c0f3bad99a40/1/Hr256JtHTuEuMsgbyJvnEkQAwks.roa
Signing time: Wed 05 Jan 2022 17:51:38 +0000
ROA not before: Wed 05 Jan 2022 17:51:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212465
IP address blocks: 2a0c:93c0:c002::/48 maxlen: 48
2a0c:93c0:8002::/48 maxlen: 48
2a0c:93c0:8000::/48 maxlen: 48
2a0c:93c0:c000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43737880 (0x29b6318)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b689299bc49584a645940c1dd87df0afc8aaa0fd
Validity
Not Before: Jan 5 17:51:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ebdb9e89b474ee12e32c81bc89be7124400c24b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:85:88:a9:58:d4:f6:b1:86:09:5f:bb:b0:b4:
14:86:68:11:4b:60:55:1e:f3:b4:c9:38:8a:55:5c:
fc:d9:59:b5:14:4f:49:a1:74:be:8d:11:50:58:36:
d3:58:be:f5:a9:e2:85:46:ee:c4:2b:f4:86:d3:6b:
f3:be:3c:d4:1d:3d:50:f1:4b:c5:5f:11:e8:61:8a:
9d:8d:98:24:6e:e0:1b:96:cc:f2:63:d5:46:b7:c5:
69:70:d6:db:63:73:a0:29:7d:be:d1:68:88:f7:ab:
d4:53:c1:b5:4d:3c:d3:f5:f7:c4:9d:3a:9d:3f:4a:
81:84:90:be:ee:51:e5:37:7d:19:af:2b:99:57:a0:
f6:e9:6d:c8:c3:02:0a:dd:5a:33:e7:71:9a:21:70:
0b:52:56:c1:85:21:9c:9c:41:44:db:01:31:57:35:
27:59:1b:94:af:1c:82:a0:33:ae:cb:ba:07:b0:dc:
ff:12:b5:9c:5b:c4:97:6b:37:52:a8:f4:a6:15:10:
d2:5c:8e:8d:ca:ae:0a:86:93:88:75:64:d3:a7:f0:
17:6f:a1:63:3a:bd:0f:d9:f5:f9:55:62:32:52:84:
2f:4d:c5:4c:80:2c:96:50:20:7a:a2:de:6b:c4:ef:
07:4b:40:6f:c3:0f:b4:6b:d6:22:63:0d:a6:b6:d4:
24:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:BD:B9:E8:9B:47:4E:E1:2E:32:C8:1B:C8:9B:E7:12:44:00:C2:4B
X509v3 Authority Key Identifier:
keyid:B6:89:29:9B:C4:95:84:A6:45:94:0C:1D:D8:7D:F0:AF:C8:AA:A0:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tokpm8SVhKZFlAwd2H3wr8iqoP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/7ca61a-ce3d-4bac-9110-c0f3bad99a40/1/Hr256JtHTuEuMsgbyJvnEkQAwks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/7ca61a-ce3d-4bac-9110-c0f3bad99a40/1/tokpm8SVhKZFlAwd2H3wr8iqoP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:93c0:8000::/48
2a0c:93c0:8002::/48
2a0c:93c0:c000::/48
2a0c:93c0:c002::/48
Signature Algorithm: sha256WithRSAEncryption
dc:2d:ff:fc:96:ab:61:13:8b:a2:ea:15:64:24:a5:33:49:ce:
28:78:af:c6:bc:59:12:bd:67:be:d6:ff:94:44:64:11:81:eb:
9f:fa:b6:b7:ba:a6:81:a4:8a:59:d7:4f:03:4d:28:0c:56:c7:
7e:53:66:d6:ec:e5:5e:70:78:b7:2c:44:88:ac:a0:06:21:1e:
b3:22:2f:b9:21:d1:e4:d6:51:66:0e:82:8b:3c:4f:ac:1d:0f:
d4:68:c1:b2:36:82:dd:78:f7:44:e1:37:31:a6:10:45:bd:60:
8a:0e:9e:7a:0d:ca:16:a4:66:4b:78:80:5a:72:c5:4d:36:fb:
33:88:41:f3:6e:d5:bc:cd:0f:da:df:92:b7:b3:78:81:66:88:
e8:3a:21:09:ac:04:08:cd:46:30:36:e9:e8:2d:2a:2f:34:0d:
c6:a2:00:d4:10:5b:8c:7a:00:53:32:5a:85:1e:d3:b4:6e:7e:
83:16:c2:b5:f8:5a:fb:a7:85:50:fe:b9:be:1a:67:6f:9c:ba:
4b:a9:8e:b3:45:be:b5:aa:90:8e:c8:11:50:81:ef:66:7c:7a:
f3:4f:8a:de:aa:77:53:22:ed:0e:51:68:6d:28:5d:f4:67:04:
5e:63:89:af:8b:59:ae:46:17:1b:ca:94:9f:ab:ac:e1:ee:7d:
58:8a:7d:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:31 2024 by rpki-client on console-fra.rpki-client.org