Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/64d7a9-cac3-4549-a7aa-61b7902ee204/1/fso9i2B-IV1SxzpcJmbWGsAmhkc.roa
File: fso9i2B-IV1SxzpcJmbWGsAmhkc.roa (raw, json)
Hash identifier: XLLOTzUzwEnxFvVLdJkd9ESBOpCUNdwMqeDYTPQ9Kro=
Subject key identifier: 7E:CA:3D:8B:60:7E:21:5D:52:C7:3A:5C:26:66:D6:1A:C0:26:86:47
Certificate issuer: /CN=3c350ba82f3feb5aee28938fbf1b09c1e2fd19b4
Certificate serial: 36F82D71
Authority key identifier: 3C:35:0B:A8:2F:3F:EB:5A:EE:28:93:8F:BF:1B:09:C1:E2:FD:19:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PDULqC8_61ruKJOPvxsJweL9GbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/64d7a9-cac3-4549-a7aa-61b7902ee204/1/fso9i2B-IV1SxzpcJmbWGsAmhkc.roa
Signing time: Sat 01 Jan 2022 01:03:00 +0000
ROA not before: Sat 01 Jan 2022 01:03:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21371
IP address blocks: 2a03:6c80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 922234225 (0x36f82d71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c350ba82f3feb5aee28938fbf1b09c1e2fd19b4
Validity
Not Before: Jan 1 01:03:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7eca3d8b607e215d52c73a5c2666d61ac0268647
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:8a:9e:e1:af:aa:19:d4:1c:1b:89:e6:f8:c4:
6e:9d:3f:4b:6e:c2:12:d3:2b:f2:2e:b2:a9:3f:9a:
22:be:61:e2:94:05:0a:32:cf:51:60:a8:fc:f3:b5:
cc:cd:b2:39:ef:0e:fa:7d:0a:c2:30:cc:ad:53:f7:
e3:e7:c0:cf:6a:1c:34:6e:4d:13:2e:57:28:92:cd:
2c:c5:28:5e:9f:35:bc:52:ba:67:ed:79:b3:bf:f3:
db:58:20:e4:23:83:bf:ba:d9:5f:81:a1:fc:cd:1a:
95:35:00:20:be:70:c7:9e:4a:3f:1d:05:dc:58:91:
80:14:0c:78:b5:c3:8b:c2:f0:17:09:27:4f:2e:e9:
6b:89:87:23:7b:50:f8:a3:69:87:af:e4:ff:56:5e:
14:1d:a7:03:7c:af:7f:11:e7:4a:81:a9:eb:fa:65:
29:eb:34:06:b8:0a:c5:7a:c2:c6:c6:56:a9:85:59:
6d:f3:6a:5f:da:09:be:9e:c0:91:d7:82:b0:8e:ae:
b9:af:76:b2:08:a8:68:b1:2b:f9:ee:33:d5:bc:75:
ca:ff:4a:79:30:20:76:f8:7c:41:00:72:18:b4:03:
9d:49:75:4d:da:bb:cf:cf:94:df:db:db:d7:58:f7:
1d:c0:55:18:73:e7:31:ad:e8:ce:25:22:3c:a4:fb:
48:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:CA:3D:8B:60:7E:21:5D:52:C7:3A:5C:26:66:D6:1A:C0:26:86:47
X509v3 Authority Key Identifier:
keyid:3C:35:0B:A8:2F:3F:EB:5A:EE:28:93:8F:BF:1B:09:C1:E2:FD:19:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PDULqC8_61ruKJOPvxsJweL9GbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/64d7a9-cac3-4549-a7aa-61b7902ee204/1/fso9i2B-IV1SxzpcJmbWGsAmhkc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/64d7a9-cac3-4549-a7aa-61b7902ee204/1/PDULqC8_61ruKJOPvxsJweL9GbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:6c80::/32
Signature Algorithm: sha256WithRSAEncryption
44:b2:93:d4:d3:19:4c:17:0c:fb:46:2a:58:ab:f5:b5:f8:f0:
47:53:0e:fa:8e:5c:62:67:68:12:a6:df:ec:7c:fb:94:b7:0f:
eb:e1:21:a8:ae:77:50:b4:ff:9f:d2:da:e8:76:56:9a:ec:4f:
fe:12:dc:44:7f:f6:1d:e4:c5:2a:62:94:b8:8d:c4:8b:4e:a1:
49:95:df:ac:49:6f:89:fc:02:b4:3a:1b:17:97:b3:3f:45:cc:
bb:43:e9:06:10:d8:8b:7e:f3:fa:bb:c5:97:96:0a:ab:e6:8f:
15:0e:b9:32:4f:88:82:74:71:59:15:ee:c1:9e:c8:0f:a0:b0:
cc:d5:fb:09:d0:a4:7d:48:a1:58:ad:a9:df:78:7d:3e:61:47:
97:d4:75:a8:52:0c:d2:5b:63:e3:bd:6e:e8:46:60:b2:a6:4c:
3a:23:7b:12:1c:6f:8b:96:a6:7d:9e:c7:b6:28:81:a2:66:ee:
fe:a5:a7:c8:0e:84:d9:55:ca:56:59:e2:c5:20:07:b9:30:83:
dc:76:83:ae:b2:63:16:4d:fe:74:49:10:da:7a:bb:4c:5a:d2:
82:29:99:e9:34:ff:c1:1d:93:96:9d:eb:23:73:8f:43:f5:71:
aa:96:bf:47:6e:a6:f5:24:90:a4:aa:09:f6:2e:3b:e8:cf:34:
bc:01:4e:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:56 2023 by rpki-client on console.sobornost.net