Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/DbkimGTliF2euXkxLqND6vOStrc.roa
File: DbkimGTliF2euXkxLqND6vOStrc.roa (raw, json)
Hash identifier: IPd9uhffvEYpAI7XcYT57p6dgH1sVEqTtn0pNyMlrgk=
Subject key identifier: 0D:B9:22:98:64:E5:88:5D:9E:B9:79:31:2E:A3:43:EA:F3:92:B6:B7
Certificate issuer: /CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Certificate serial: 01845177B47F5CC382664ADE9E85FA8824BE
Authority key identifier: BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/DbkimGTliF2euXkxLqND6vOStrc.roa
Signing time: Mon 07 Nov 2022 09:41:50 +0000
ROA not before: Mon 07 Nov 2022 09:41:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397515
IP address blocks: 2a01:488:bb07::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:51:77:b4:7f:5c:c3:82:66:4a:de:9e:85:fa:88:24:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Validity
Not Before: Nov 7 09:41:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0db9229864e5885d9eb979312ea343eaf392b6b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:15:39:9e:2d:38:d4:89:d0:29:2e:ea:dd:3c:
ba:73:a9:4c:19:80:3a:93:6b:6e:54:53:7a:fc:5c:
0c:02:df:12:44:07:42:1e:7c:ad:b2:35:dd:88:7f:
a9:79:d2:a7:75:61:e8:c6:24:c7:02:ba:57:5a:b0:
72:f9:e9:6f:05:70:47:8b:8c:6a:4a:85:37:37:8f:
b5:5d:e6:f7:69:aa:1e:43:66:90:28:eb:dd:06:76:
c8:65:3f:a7:be:66:47:3c:88:38:6f:7d:57:ea:fa:
cb:2f:be:0f:4c:90:f1:f5:1c:54:b0:9a:1b:02:12:
d5:2e:c2:5f:b2:ac:f3:f2:cd:f8:91:b6:e5:31:72:
36:c1:81:39:a4:6e:82:ce:be:bc:8f:a5:5d:71:49:
a4:8b:53:8b:e0:b8:be:3b:7c:80:f2:22:78:c3:a4:
a9:5f:ad:53:4f:cf:a0:3c:92:c4:c9:b7:38:c7:0b:
b2:2d:ed:2d:f6:39:7a:e2:24:06:c8:71:0d:1d:3a:
d7:5f:3f:8c:c6:86:be:fd:92:24:a0:aa:94:6c:13:
cf:62:30:d5:b2:ec:c2:48:12:54:70:0d:21:75:cc:
6e:af:86:a9:f7:ca:a0:76:55:ac:97:eb:96:01:ab:
0e:46:5e:81:c8:b7:08:46:39:f8:d2:22:b5:26:38:
d5:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:B9:22:98:64:E5:88:5D:9E:B9:79:31:2E:A3:43:EA:F3:92:B6:B7
X509v3 Authority Key Identifier:
keyid:BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/DbkimGTliF2euXkxLqND6vOStrc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:488:bb07::/48
Signature Algorithm: sha256WithRSAEncryption
b1:f3:ed:b7:ca:ea:a6:d4:56:f3:d8:c1:d6:de:03:09:cd:dc:
f2:b0:4b:ac:0c:73:2e:35:c4:5b:ac:e3:b6:db:57:02:89:3f:
e1:8c:f5:bd:1e:ca:20:6a:7c:39:b1:f6:cf:73:2e:aa:c3:30:
24:7f:4f:47:b8:ee:68:d1:75:7e:6f:21:2b:34:1e:8c:71:fb:
f7:40:48:90:4a:98:90:34:55:94:68:d6:5f:1e:da:bd:a1:18:
71:b7:18:38:5f:5f:59:af:53:4b:bd:57:9d:78:fb:1b:8e:59:
8c:be:02:f0:7b:53:37:1a:c7:08:76:ae:1c:6f:32:8f:e1:d7:
f5:97:4c:0b:6f:91:d9:2a:88:b5:a4:60:a6:bb:a7:bc:63:1a:
16:d0:35:96:09:ae:0b:6c:2a:40:72:3a:27:63:21:53:d5:53:
42:e4:1d:cf:f4:02:e4:b4:2b:79:b4:43:aa:40:c4:9c:7e:17:
40:6c:9c:2f:d4:7a:53:5d:3e:f0:9f:a3:33:2d:71:16:41:a1:
0d:a1:80:fe:b7:b9:ad:75:0c:d4:b3:98:fa:73:a9:95:15:d1:
f4:a5:47:58:ca:b8:c9:62:f6:65:c9:4d:03:be:87:7c:72:64:
62:66:f2:26:3a:11:56:b6:06:49:12:da:37:c1:93:e5:af:bd:
a7:22:d6:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:40 2024 by rpki-client on console-ams.rpki-client.org