Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/Kdyppptg6KaVkB0esR8G78mJ2mw.roa
File: Kdyppptg6KaVkB0esR8G78mJ2mw.roa (raw, json)
Hash identifier: eDvlSYcMoA8Q/NXeFVMF/79yA8OO8v/2BR9dsNQ8sFQ=
Subject key identifier: 29:DC:A9:A6:9B:60:E8:A6:95:90:1D:1E:B1:1F:06:EF:C9:89:DA:6C
Certificate issuer: /CN=5c64f9d04efd5a9fc2e23b42d5b51aefd9a50250
Certificate serial: 0BD747CC
Authority key identifier: 5C:64:F9:D0:4E:FD:5A:9F:C2:E2:3B:42:D5:B5:1A:EF:D9:A5:02:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGT50E79Wp_C4jtC1bUa79mlAlA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/Kdyppptg6KaVkB0esR8G78mJ2mw.roa
Signing time: Sat 01 Jan 2022 10:53:51 +0000
ROA not before: Sat 01 Jan 2022 10:53:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197658
IP address blocks: 31.41.8.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 198657996 (0xbd747cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c64f9d04efd5a9fc2e23b42d5b51aefd9a50250
Validity
Not Before: Jan 1 10:53:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29dca9a69b60e8a695901d1eb11f06efc989da6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:fc:4a:b9:df:42:02:e5:0e:ba:92:94:6c:82:
52:cb:f1:19:61:98:2d:2c:f1:fc:de:4b:40:d4:b1:
dc:fe:6f:03:8b:79:59:58:e3:f5:45:62:5d:2d:af:
8e:7a:bb:04:23:0f:55:3e:ad:c2:0e:52:ec:69:09:
fd:80:c5:cd:9d:4f:a7:87:f3:fe:bf:13:bb:0e:31:
55:99:20:4a:21:e8:dd:94:3e:4f:b8:f2:13:46:d5:
f9:8b:40:3c:bb:47:dd:81:35:7f:20:1f:e8:1a:34:
fd:52:55:ce:bc:bd:c2:da:ed:f8:45:55:1a:3a:f7:
ed:4c:b2:3d:2a:ce:ee:b4:d1:a8:13:bf:d5:c7:3b:
81:0c:ec:21:67:cb:d1:7c:ef:ee:a3:57:90:67:a8:
32:ff:33:ce:54:5e:ec:93:4c:4e:64:9b:fd:7c:18:
4c:1b:c3:01:e5:7d:d8:f9:32:6f:8b:ac:be:42:66:
15:53:0a:db:e2:f4:2a:12:aa:3d:11:7f:5f:00:11:
6a:bf:8c:38:a5:85:af:73:a4:59:9a:3e:cb:7d:1c:
39:2c:d9:7a:b6:0a:a3:94:9e:f5:1a:54:3c:6f:69:
9b:4c:11:93:fa:1a:85:3f:5c:27:71:99:88:06:8b:
58:0f:58:7f:83:e4:75:76:6f:2c:cf:82:f8:29:53:
8f:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:DC:A9:A6:9B:60:E8:A6:95:90:1D:1E:B1:1F:06:EF:C9:89:DA:6C
X509v3 Authority Key Identifier:
keyid:5C:64:F9:D0:4E:FD:5A:9F:C2:E2:3B:42:D5:B5:1A:EF:D9:A5:02:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGT50E79Wp_C4jtC1bUa79mlAlA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/Kdyppptg6KaVkB0esR8G78mJ2mw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/XGT50E79Wp_C4jtC1bUa79mlAlA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.41.8.0/21
Signature Algorithm: sha256WithRSAEncryption
12:d4:5c:12:e6:b0:23:ec:fd:f2:4d:43:e3:76:fa:43:96:fa:
de:20:b0:6d:1a:13:9a:a2:40:67:d5:cd:7a:d9:18:c3:1c:8f:
87:40:60:e0:fb:84:02:93:43:25:94:bc:1a:30:30:ff:95:73:
e7:12:6a:d2:02:d8:11:4a:ed:7b:fd:19:b2:4d:36:3c:3c:ae:
c1:68:ea:a8:f8:38:99:e9:74:68:96:b1:26:62:ff:0d:66:f8:
8e:84:5c:50:6d:f7:a4:6b:fe:df:4b:4d:75:de:af:0d:7a:68:
cf:95:4b:39:16:af:f7:12:f0:bf:e2:e8:a9:a3:0d:f0:43:d3:
fb:04:02:e6:59:07:05:8c:55:cf:60:0b:e4:70:35:af:8c:d1:
8f:2c:63:a0:8c:3a:3a:83:94:d6:89:83:5b:a2:87:b5:4a:0d:
3f:d4:9e:cf:29:c1:cb:86:59:d5:22:a1:aa:20:d0:c0:e5:d1:
20:7b:61:8e:35:19:bf:c7:fc:ee:7e:9b:a8:93:9e:b5:75:de:
9e:89:fc:06:b6:26:a1:2d:97:08:c0:78:db:ec:7d:93:66:f3:
2b:62:c7:52:f9:e9:57:5a:10:9a:59:38:ad:8c:ce:35:73:b7:
a9:40:cb:3a:2f:6e:3b:63:7b:08:1e:b2:59:be:2a:06:a2:bc:
8c:7f:fe:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:29 2024 by rpki-client on console-fra.rpki-client.org