Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/AY81OIHkgM0aA2g6tgWDacomeLY.roa
File: AY81OIHkgM0aA2g6tgWDacomeLY.roa (raw, json)
Hash identifier: sv6sKDBaqFoTf3XxSpHo6Vqf++zqc8m8OHCvRQeTe8s=
Subject key identifier: 01:8F:35:38:81:E4:80:CD:1A:03:68:3A:B6:05:83:69:CA:26:78:B6
Certificate issuer: /CN=3691d2950145dceac00c0ca4eb536d92867b38d3
Certificate serial: 034BB6
Authority key identifier: 36:91:D2:95:01:45:DC:EA:C0:0C:0C:A4:EB:53:6D:92:86:7B:38:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpHSlQFF3OrADAyk61NtkoZ7ONM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/AY81OIHkgM0aA2g6tgWDacomeLY.roa
Signing time: Tue 21 Jun 2022 13:23:45 +0000
ROA not before: Tue 21 Jun 2022 13:23:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208024
IP address blocks: 2a0c:2f07:72::/48 maxlen: 48
2a0c:2f07:73::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 215990 (0x34bb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3691d2950145dceac00c0ca4eb536d92867b38d3
Validity
Not Before: Jun 21 13:23:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=018f353881e480cd1a03683ab6058369ca2678b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:99:e2:53:81:54:ae:db:0b:1f:18:aa:2a:3e:
4e:a0:ef:3b:6b:53:38:07:47:e9:8d:25:6c:07:24:
f2:f8:06:e9:5c:bf:e0:29:bc:83:55:73:f5:0d:c2:
33:a3:ab:3d:f0:b7:28:0b:fc:0f:7d:da:73:9b:af:
08:ec:d7:0e:4b:9c:39:84:bf:09:8b:5e:2a:1a:b8:
0f:95:53:d1:93:52:3d:c8:9c:3d:be:48:5f:2e:6b:
a6:b3:c3:18:8b:09:ff:b1:81:d0:cd:dd:4e:33:c2:
88:67:56:c6:e4:70:b4:3d:08:87:55:81:72:8c:dc:
c3:dc:06:4d:4a:f9:36:1d:69:78:0c:8b:05:f9:fa:
5d:7e:83:b0:2f:1f:37:71:8c:9a:32:3a:67:ba:2e:
2a:ac:db:5b:c2:fd:6c:6f:f3:ad:b7:1b:32:aa:7a:
44:dd:e4:af:2c:a0:cd:3a:2c:79:ad:80:70:72:dd:
2e:3d:af:d0:10:96:41:21:10:2d:bf:de:23:26:2f:
b5:42:bd:d8:4f:20:51:a6:6a:95:23:9a:36:67:fa:
e2:c8:fa:5b:a6:ed:03:cc:b3:0b:65:6d:17:dd:b3:
a6:c7:b0:a9:fc:b9:f7:40:85:fa:16:68:dd:8d:7b:
89:f0:87:93:f4:39:7e:3f:6a:7f:e2:e1:c9:a3:1b:
4d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:8F:35:38:81:E4:80:CD:1A:03:68:3A:B6:05:83:69:CA:26:78:B6
X509v3 Authority Key Identifier:
keyid:36:91:D2:95:01:45:DC:EA:C0:0C:0C:A4:EB:53:6D:92:86:7B:38:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpHSlQFF3OrADAyk61NtkoZ7ONM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/AY81OIHkgM0aA2g6tgWDacomeLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/NpHSlQFF3OrADAyk61NtkoZ7ONM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:2f07:72::/47
Signature Algorithm: sha256WithRSAEncryption
30:ad:fe:6d:37:23:98:68:c0:ab:4a:a4:e1:68:d6:83:5d:e1:
46:e1:5c:6e:81:52:31:08:e2:13:ab:48:a6:89:34:88:67:5b:
58:5b:41:84:a4:be:17:46:1b:6d:97:65:f0:33:e5:87:c4:08:
55:f3:fc:ac:cd:4f:ef:e4:c4:80:ec:c1:dc:a0:1a:65:40:b0:
2b:0e:ec:6e:05:ba:17:47:cd:c9:a5:b9:0d:f3:3d:f0:28:7c:
1a:24:41:c0:a3:11:84:bb:c8:66:10:33:e8:0a:3a:f8:0a:a9:
96:f6:dd:4d:25:fb:7a:0e:21:58:27:25:4b:c2:f0:01:74:43:
13:7b:5b:eb:a4:29:ee:55:f9:fe:98:24:64:57:21:94:ac:5b:
aa:6d:38:0b:91:6e:11:a0:35:29:56:04:f5:9a:2f:05:cb:17:
6b:74:fd:ec:02:c4:0f:0b:0a:28:db:01:08:1a:2c:ef:da:1a:
9e:a4:48:96:52:c8:47:c0:de:2c:64:c7:d6:30:b9:ca:da:39:
96:14:42:c7:13:90:89:95:6e:6f:4c:3b:f5:2e:64:60:f9:e9:
d3:cd:25:06:36:c5:f7:90:93:9a:ee:7f:58:69:40:7d:2b:69:
4d:56:1d:3a:c5:0a:fc:e2:76:db:a9:72:d6:66:8e:5f:0b:4c:
04:45:77:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:35 2023 by rpki-client on console.sobornost.net