Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/gp6s5u0gKRlt_k5u7nI_muTTzhE.roa
File: gp6s5u0gKRlt_k5u7nI_muTTzhE.roa (raw, json)
Hash identifier: KlpjOFbwZ+H47ytmHKigQrNq5PaAxstnXvBmrNQUYyc=
Subject key identifier: 82:9E:AC:E6:ED:20:29:19:6D:FE:4E:6E:EE:72:3F:9A:E4:D3:CE:11
Certificate issuer: /CN=4dd1b2587490ad061cb207176bdeec81a531588c
Certificate serial: 36923BC5
Authority key identifier: 4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/gp6s5u0gKRlt_k5u7nI_muTTzhE.roa
Signing time: Sat 01 Jan 2022 01:01:05 +0000
ROA not before: Sat 01 Jan 2022 01:01:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34164
IP address blocks: 2a01:3e0:402::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 915553221 (0x36923bc5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd1b2587490ad061cb207176bdeec81a531588c
Validity
Not Before: Jan 1 01:01:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=829eace6ed2029196dfe4e6eee723f9ae4d3ce11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:85:6c:f4:b9:67:52:18:1c:90:7c:89:62:46:
18:1d:60:29:8c:4c:52:e5:03:5a:b0:d3:c9:c7:73:
79:50:34:c1:39:32:9c:a5:50:e7:7f:c2:ed:da:ab:
00:92:58:75:7a:f4:0b:1c:59:51:c9:c5:aa:86:99:
f0:fe:2d:43:63:06:de:cf:01:4e:93:59:72:5f:78:
d1:63:7f:7b:df:2d:24:25:3a:30:3f:b8:fa:9b:67:
1a:c6:61:dc:55:91:af:17:38:b0:c9:c0:14:74:16:
8e:b2:b7:e1:0d:21:95:2d:07:d8:22:b6:20:84:85:
7e:eb:64:3c:db:61:10:7b:91:4d:ce:26:db:17:01:
c9:e5:d9:fc:8a:ec:6c:f9:93:97:f1:18:46:5a:77:
df:8f:e0:ed:34:70:5f:8c:1e:b4:87:0f:9e:fb:b0:
5b:90:fd:11:2c:9f:59:75:51:77:32:d6:79:07:5d:
c6:83:bb:a2:41:e3:f9:72:90:9a:80:98:3e:9d:69:
1d:5b:f5:61:1a:98:e1:26:32:62:13:46:85:9f:86:
d0:28:bd:cb:b0:13:01:ca:c0:7f:31:65:91:fc:a1:
82:44:81:a5:1f:c8:64:59:91:39:fb:48:24:db:eb:
65:22:4c:46:dd:22:4c:90:b3:82:cd:d5:9b:c4:e3:
b6:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:9E:AC:E6:ED:20:29:19:6D:FE:4E:6E:EE:72:3F:9A:E4:D3:CE:11
X509v3 Authority Key Identifier:
keyid:4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/gp6s5u0gKRlt_k5u7nI_muTTzhE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:3e0:402::/48
Signature Algorithm: sha256WithRSAEncryption
44:95:9b:86:cb:7a:90:f9:04:34:b2:a3:9d:8d:fd:90:ce:f8:
5d:8f:5f:b9:bc:1d:01:2e:b6:be:31:69:a4:36:9a:82:1e:18:
47:64:76:06:b5:83:30:aa:a4:05:f8:45:e2:c3:84:e3:fe:7e:
8a:08:37:47:a8:fb:e3:ff:d6:8a:5a:f2:2d:67:b7:08:8d:8d:
8a:58:b4:21:c0:d4:49:9b:d6:03:e5:e1:db:9e:15:aa:f3:71:
2b:04:58:a0:7a:1b:5f:cb:cd:52:7f:cf:cd:41:a6:0e:ff:91:
58:8c:7e:84:62:89:f3:f5:d3:1d:38:73:67:e4:4d:9f:11:ef:
87:ae:8b:78:f5:57:be:d4:d8:57:a8:f1:e4:d1:38:3d:bd:99:
a0:cc:5a:f0:b7:63:25:e6:a3:e9:a7:08:ca:a6:14:ec:61:6f:
b5:2c:01:3f:03:db:28:a6:57:8a:44:c8:d3:8b:cf:34:57:01:
a6:1f:bd:09:20:7f:fb:30:bf:cb:22:42:11:e4:b1:4a:12:26:
5c:27:9c:50:71:2e:b0:9c:3a:76:11:6e:3b:cf:e7:a1:39:c6:
74:49:fe:e9:ba:95:f5:b1:7b:e5:3a:f7:82:a9:ab:75:f6:c1:
0d:66:ad:50:df:1a:60:ea:4a:e0:58:c1:d5:9b:64:a7:c7:2d:
40:24:48:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:19 2024 by rpki-client on console-ams.rpki-client.org