Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/b1c50e-af27-4a62-ae23-b6f1cfaa6985/1/gtcnNXqnvus2uU25QqB8UhUrQs8.roa
File: gtcnNXqnvus2uU25QqB8UhUrQs8.roa (raw, json)
Hash identifier: eAvYpQAB6hTvnqv58E5TlRcp1TvX87OYoKqVIfSGtT4=
Subject key identifier: 82:D7:27:35:7A:A7:BE:EB:36:B9:4D:B9:42:A0:7C:52:15:2B:42:CF
Certificate issuer: /CN=aa35f907ec7dbf9c65b815aa3d7202b6dfae3148
Certificate serial: 33DED134
Authority key identifier: AA:35:F9:07:EC:7D:BF:9C:65:B8:15:AA:3D:72:02:B6:DF:AE:31:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qjX5B-x9v5xluBWqPXICtt-uMUg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/b1c50e-af27-4a62-ae23-b6f1cfaa6985/1/gtcnNXqnvus2uU25QqB8UhUrQs8.roa
Signing time: Sat 01 Jan 2022 04:52:52 +0000
ROA not before: Sat 01 Jan 2022 04:52:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208559
IP address blocks: 2a02:f28:23::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 870240564 (0x33ded134)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa35f907ec7dbf9c65b815aa3d7202b6dfae3148
Validity
Not Before: Jan 1 04:52:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82d727357aa7beeb36b94db942a07c52152b42cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f7:85:de:da:0b:74:56:bf:6c:1d:58:e5:ca:
e1:51:65:c0:34:2f:43:59:0d:58:42:4c:3b:c9:40:
bd:a7:77:94:ee:ae:5b:97:82:4c:2d:86:3a:d2:b4:
ff:53:6d:40:62:af:a8:54:67:c8:6b:4d:88:1b:aa:
7d:70:91:85:c9:51:10:08:06:d4:72:09:e6:c2:4b:
27:fb:7b:7f:ba:53:e6:4d:05:64:e6:13:00:40:fb:
73:07:f1:1a:12:04:8f:ac:2c:cf:17:55:c0:9c:fa:
03:4e:3d:83:b9:3f:1f:36:98:53:98:e1:73:a5:54:
c1:2d:ec:e3:72:64:bc:6d:38:67:0d:ef:24:16:06:
16:f9:30:6e:04:94:fc:6a:d2:eb:7a:bb:1e:ab:f1:
8f:ae:50:30:36:2e:03:fe:f5:fa:a0:ee:dc:ea:95:
3d:38:f1:bb:d6:83:24:cb:4b:d8:57:ea:ab:1d:18:
52:1f:36:b9:f6:b5:f0:de:0a:33:21:62:c6:65:df:
ed:bf:8b:66:7f:48:6e:bf:a4:e6:dd:cc:33:81:3f:
c6:f6:ed:ee:ad:2c:b5:d4:85:53:c3:5d:4f:fa:71:
39:58:be:d7:13:6f:fe:cb:72:34:06:ca:be:2e:2d:
6f:76:69:f2:08:b4:e7:bb:8d:02:96:a0:06:86:7d:
8f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:D7:27:35:7A:A7:BE:EB:36:B9:4D:B9:42:A0:7C:52:15:2B:42:CF
X509v3 Authority Key Identifier:
keyid:AA:35:F9:07:EC:7D:BF:9C:65:B8:15:AA:3D:72:02:B6:DF:AE:31:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qjX5B-x9v5xluBWqPXICtt-uMUg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b1c50e-af27-4a62-ae23-b6f1cfaa6985/1/gtcnNXqnvus2uU25QqB8UhUrQs8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b1c50e-af27-4a62-ae23-b6f1cfaa6985/1/qjX5B-x9v5xluBWqPXICtt-uMUg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:f28:23::/48
Signature Algorithm: sha256WithRSAEncryption
12:c3:c2:bd:6d:80:9c:2e:53:b2:7c:5f:7f:b4:d2:c4:45:57:
ee:d0:52:7d:31:31:20:65:c4:9a:7b:a7:c7:a9:ac:4b:51:a6:
6e:97:14:b6:df:1d:1c:9c:b8:b0:cb:c4:d9:d3:2f:cf:7b:e1:
94:00:fc:4a:de:9f:6b:15:07:b2:38:f6:ea:3c:cb:5b:1c:da:
c1:ad:01:54:d7:2c:8a:00:30:98:e8:8b:62:5f:8c:92:77:1a:
55:15:da:dd:d2:7b:68:cb:f7:18:60:7e:9b:60:ca:49:75:58:
1b:e8:5f:12:d7:d5:14:f9:5e:97:62:bc:f9:1d:d7:6d:81:c6:
fe:eb:67:72:2b:78:b7:c9:8c:2e:67:9b:cb:44:72:31:4f:a7:
9f:d4:30:00:f0:99:06:38:75:9d:72:cf:a1:df:32:22:c7:d2:
1c:3d:3e:02:27:ff:9d:90:ab:2a:0e:b9:18:18:03:c4:2e:cc:
ee:97:c5:cb:68:73:e6:7c:92:5e:a3:b4:9d:76:e1:5f:6b:c2:
b6:b2:9c:21:38:63:6d:d1:46:52:82:cd:e5:f3:d1:33:c1:87:
f4:5b:14:a6:fe:31:a6:80:de:79:cb:cf:c1:ea:cd:ac:ec:b5:
59:5c:96:84:d4:e7:ca:e8:68:3a:b3:e7:4b:15:e9:72:01:e7:
04:23:ac:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:40 2024 by rpki-client on console-ams.rpki-client.org