Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/_I0qDHDgAeq88rhbvLujbvDB60g.roa
File: _I0qDHDgAeq88rhbvLujbvDB60g.roa (raw, json)
Hash identifier: sLaUVdb/c1Y9hFJKzAxt/DQxZT0QGQSZYVimiHnkblU=
Subject key identifier: FC:8D:2A:0C:70:E0:01:EA:BC:F2:B8:5B:BC:BB:A3:6E:F0:C1:EB:48
Certificate issuer: /CN=55fad96dd05af8c2d26192c841131f2f97459fed
Certificate serial: 08AEA4DC
Authority key identifier: 55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/_I0qDHDgAeq88rhbvLujbvDB60g.roa
Signing time: Sat 01 Jan 2022 13:02:01 +0000
ROA not before: Sat 01 Jan 2022 13:02:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43312
IP address blocks: 2a0e:3304::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145663196 (0x8aea4dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55fad96dd05af8c2d26192c841131f2f97459fed
Validity
Not Before: Jan 1 13:02:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc8d2a0c70e001eabcf2b85bbcbba36ef0c1eb48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:2f:79:2a:8c:ab:26:7e:74:85:ec:cb:98:7c:
29:62:29:cf:4f:1c:61:c4:7b:2d:7b:8c:fc:1a:1c:
2d:6e:6d:33:ae:02:62:81:5e:a7:27:8a:5e:62:b5:
f3:1f:12:fd:1d:9a:07:da:34:8a:c2:80:cc:2d:b9:
22:45:da:38:d5:c8:59:45:42:bf:8e:f7:b6:0f:6a:
64:b0:d6:74:76:20:be:9f:bd:7e:77:32:d2:05:44:
65:d4:13:e2:34:42:b0:54:62:b5:92:cb:b7:b5:07:
b9:6b:65:d7:b4:88:f0:01:4e:8c:a5:88:67:e9:62:
70:68:9e:c4:a3:56:90:b2:b7:41:f6:ad:8b:01:b5:
8d:96:63:5a:9c:ce:a6:11:be:b1:56:e1:65:4a:6d:
b1:68:31:d3:16:a3:22:f9:f9:fd:05:9b:c2:e4:33:
86:7f:d2:0e:5a:2d:df:89:5c:6f:d2:a0:60:a3:65:
05:7c:e4:63:2d:e6:20:13:41:fc:d1:78:27:79:1e:
bf:ae:13:01:0e:2e:48:d4:69:05:5f:61:b3:de:31:
69:b1:c9:6b:bc:48:41:2b:6c:08:51:57:9a:ef:b3:
4b:0b:5a:17:a1:b2:3f:2a:00:85:42:16:7a:5c:17:
cc:2a:75:25:a3:cd:d4:29:2e:86:1d:cc:06:93:df:
fb:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:8D:2A:0C:70:E0:01:EA:BC:F2:B8:5B:BC:BB:A3:6E:F0:C1:EB:48
X509v3 Authority Key Identifier:
keyid:55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/_I0qDHDgAeq88rhbvLujbvDB60g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/VfrZbdBa-MLSYZLIQRMfL5dFn-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:3304::/32
Signature Algorithm: sha256WithRSAEncryption
34:62:43:0c:93:9f:c4:3d:f6:78:f2:12:2a:6c:ae:7b:bd:09:
70:df:99:33:9b:3f:a9:06:a1:e4:5d:50:16:38:75:82:c3:ea:
22:29:68:c7:84:33:c3:6b:c0:f6:d3:68:30:a1:81:54:68:36:
2a:27:81:58:37:49:6b:b2:2a:71:7a:e3:1e:2b:02:08:49:4e:
6a:ba:f2:b5:b9:57:84:e8:04:24:e2:1b:a9:34:b0:4d:c8:72:
af:76:c7:6d:ba:00:79:18:24:25:aa:4a:be:1b:ed:d8:c3:fc:
fd:cf:cc:7e:61:ff:69:16:c9:d3:4e:03:9a:2c:5a:00:77:26:
bd:83:b2:13:4d:1f:64:c6:6a:32:2c:10:dd:3c:54:eb:17:72:
8e:c8:bb:ce:7d:6e:40:ca:d5:01:f7:b3:e1:22:45:6e:ca:7f:
5f:0f:57:3b:99:22:e9:0d:a0:cb:51:91:92:10:ce:ac:14:d9:
7f:b3:63:5b:a9:d2:ee:07:32:7a:d0:7f:75:5b:a6:f8:23:5e:
1b:eb:5a:e1:1d:f8:4e:b7:1c:7e:3d:71:24:2d:d2:f9:11:ea:
73:96:5e:84:ed:ee:d2:ff:02:87:f0:04:cf:a1:96:72:18:fb:
d6:a2:ff:03:98:59:ee:ca:1b:c3:69:ca:84:bb:c5:41:7f:5e:
fd:6b:f1:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:22 2023 by rpki-client on console.sobornost.net