Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/27e527-e02e-4c30-a86b-3c354d618b3a/1/p2OzLOgefEX1MEKLHdEAH8VQX3s.roa
File: p2OzLOgefEX1MEKLHdEAH8VQX3s.roa (raw, json)
Hash identifier: IbQ8gaSj1jZsXuC7jIP1deDoonkEwyri05TuAN/G4hQ=
Subject key identifier: A7:63:B3:2C:E8:1E:7C:45:F5:30:42:8B:1D:D1:00:1F:C5:50:5F:7B
Certificate issuer: /CN=5283073076e673a32b7dd6bcdc0fbcc16f37b6a1
Certificate serial: 146412EC
Authority key identifier: 52:83:07:30:76:E6:73:A3:2B:7D:D6:BC:DC:0F:BC:C1:6F:37:B6:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UoMHMHbmc6Mrfda83A-8wW83tqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/27e527-e02e-4c30-a86b-3c354d618b3a/1/p2OzLOgefEX1MEKLHdEAH8VQX3s.roa
Signing time: Sat 01 Jan 2022 14:07:59 +0000
ROA not before: Sat 01 Jan 2022 14:07:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3308
IP address blocks: 2a03:3b80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 342102764 (0x146412ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5283073076e673a32b7dd6bcdc0fbcc16f37b6a1
Validity
Not Before: Jan 1 14:07:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a763b32ce81e7c45f530428b1dd1001fc5505f7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:88:c3:61:bc:18:0d:2b:77:10:f2:cb:f9:7e:
88:22:6f:bd:db:f0:b2:b8:82:75:6a:d1:11:fe:65:
8d:aa:bb:90:52:a2:8e:36:67:6a:9e:a6:18:78:c6:
f2:b6:3f:ac:65:21:c5:3e:a4:6e:b2:6c:b6:6f:21:
cd:df:53:7f:b8:da:8e:ed:65:50:e0:4d:ca:83:48:
38:85:ef:b8:82:30:b8:50:d4:36:ce:57:e3:30:7c:
64:bc:2b:15:3f:26:cd:08:78:5a:3c:92:89:07:3f:
2b:55:d6:33:af:90:ae:4c:81:2c:1f:2c:aa:f6:41:
cb:a5:72:95:86:26:01:7f:9d:a0:43:2c:23:1b:1d:
e6:aa:ff:d5:4e:2b:45:44:85:7a:54:83:2a:b2:bd:
fa:ec:e5:27:0e:73:e5:51:90:a6:90:bc:a1:df:44:
3e:be:27:de:34:3e:8f:b2:97:e3:ee:71:2d:01:93:
96:de:45:9b:9e:e1:8f:a9:c9:31:69:1c:16:ff:19:
35:03:5e:11:ee:ad:28:0f:16:4f:9a:66:c2:c2:87:
56:ad:aa:ed:c6:3c:59:6a:e4:dc:70:d4:ba:30:ca:
f4:20:41:45:e3:51:b9:33:37:dc:f8:ad:85:3f:63:
95:a5:29:75:72:c2:2d:16:1e:80:48:73:48:e1:2f:
3c:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:63:B3:2C:E8:1E:7C:45:F5:30:42:8B:1D:D1:00:1F:C5:50:5F:7B
X509v3 Authority Key Identifier:
keyid:52:83:07:30:76:E6:73:A3:2B:7D:D6:BC:DC:0F:BC:C1:6F:37:B6:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UoMHMHbmc6Mrfda83A-8wW83tqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/27e527-e02e-4c30-a86b-3c354d618b3a/1/p2OzLOgefEX1MEKLHdEAH8VQX3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/27e527-e02e-4c30-a86b-3c354d618b3a/1/UoMHMHbmc6Mrfda83A-8wW83tqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:3b80::/32
Signature Algorithm: sha256WithRSAEncryption
4a:38:6f:1e:3c:71:ce:f2:54:67:8c:99:55:d7:9c:5b:23:a2:
77:d1:f8:ed:77:88:6c:51:22:65:6c:ae:d3:8e:92:1f:03:f4:
27:9d:58:be:9c:ae:77:68:41:5a:97:23:77:e8:7d:61:71:0e:
e5:6c:ff:41:dd:87:fd:99:c7:88:24:43:f4:1c:cb:d2:04:6d:
03:32:90:60:a2:5a:61:64:cf:f0:44:78:11:e3:45:30:31:02:
8e:a6:a7:04:8b:f8:c7:ce:48:e3:66:2a:80:ba:e1:c4:28:98:
4b:19:e5:c7:bf:cf:1e:c0:33:19:04:d5:2f:98:b3:a2:64:4e:
d8:2f:b4:6e:6c:ef:2c:39:84:8f:c5:43:6b:86:bc:7e:95:10:
3b:44:90:32:6e:ad:eb:8a:33:3c:9b:ff:ac:cf:53:c4:b8:de:
56:12:53:c2:6f:5e:9a:09:87:20:9d:f3:4b:bc:83:a5:87:7c:
ee:f8:81:06:8f:5f:7a:2f:39:5c:c9:08:aa:77:0f:6d:39:1d:
9b:02:a3:28:3c:d9:f8:16:ed:58:2b:a0:db:29:63:bb:e6:df:
ae:47:90:0e:2b:92:55:3c:0b:d5:e7:48:3a:98:0d:7d:5a:91:
28:b0:27:07:a8:85:df:f7:c7:9f:7c:f6:bd:6b:f3:b3:68:4d:
c9:03:66:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:54 2023 by rpki-client on console.sobornost.net