Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/ccf93b-8ff9-4eb6-8c34-4aa3c3dd4d6b/1/NVpTdo0fimFT9YrpTDgG015QGd4.roa
File: NVpTdo0fimFT9YrpTDgG015QGd4.roa (raw, json)
Hash identifier: 9pvJmlf9pdj4UR0CTeCVR0PojBIjX0Ctkkp3hIWOT/Y=
Subject key identifier: 35:5A:53:76:8D:1F:8A:61:53:F5:8A:E9:4C:38:06:D3:5E:50:19:DE
Certificate issuer: /CN=82f08f263c37459b5fd6fc06fd9f0e5f6d622759
Certificate serial: 0B37EBE8
Authority key identifier: 82:F0:8F:26:3C:37:45:9B:5F:D6:FC:06:FD:9F:0E:5F:6D:62:27:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gvCPJjw3RZtf1vwG_Z8OX21iJ1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/ccf93b-8ff9-4eb6-8c34-4aa3c3dd4d6b/1/NVpTdo0fimFT9YrpTDgG015QGd4.roa
Signing time: Sat 01 Jan 2022 00:50:30 +0000
ROA not before: Sat 01 Jan 2022 00:50:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204896
IP address blocks: 2001:67c:4e4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188214248 (0xb37ebe8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82f08f263c37459b5fd6fc06fd9f0e5f6d622759
Validity
Not Before: Jan 1 00:50:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=355a53768d1f8a6153f58ae94c3806d35e5019de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:81:9f:8b:1e:94:8b:f9:53:0f:39:7f:c5:1c:
13:15:1a:ee:6f:05:f4:ef:36:7e:5a:fb:be:f0:6b:
5b:3a:d8:ab:6f:35:31:cb:cf:97:fe:2b:80:31:32:
af:7b:8f:da:f2:94:58:69:3d:78:17:a7:85:84:ad:
78:2c:e8:df:72:ec:6b:e2:c8:97:e4:39:fa:94:2a:
00:e9:02:02:46:9d:07:a0:3b:f5:87:0e:55:21:3c:
cd:61:f5:6e:d7:6c:c6:84:11:e2:e4:b4:27:29:ff:
c7:08:4a:64:0d:39:a5:9a:b8:65:3b:6d:61:8c:06:
c3:13:ce:34:11:bf:cc:e8:ec:63:e6:8f:0b:11:ac:
e5:c9:af:ca:f2:c2:93:8d:8e:bc:aa:b7:08:a7:bc:
09:37:f6:c0:22:be:dc:52:23:34:b2:02:81:af:1d:
28:21:5f:71:8e:9e:c6:dd:b9:68:fa:29:f4:05:42:
07:5f:07:02:fc:57:a7:00:6c:df:90:dc:50:5a:93:
93:82:cc:1e:06:17:bf:8e:05:5b:8b:04:6a:bd:aa:
58:c3:27:ea:9b:ed:75:0a:30:ff:e4:59:a9:39:5d:
40:67:a9:02:c9:9f:18:82:df:5e:49:2c:db:37:1e:
4a:ab:4d:92:15:b3:45:4d:23:6a:d0:15:c7:85:ec:
d3:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:5A:53:76:8D:1F:8A:61:53:F5:8A:E9:4C:38:06:D3:5E:50:19:DE
X509v3 Authority Key Identifier:
keyid:82:F0:8F:26:3C:37:45:9B:5F:D6:FC:06:FD:9F:0E:5F:6D:62:27:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gvCPJjw3RZtf1vwG_Z8OX21iJ1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ccf93b-8ff9-4eb6-8c34-4aa3c3dd4d6b/1/NVpTdo0fimFT9YrpTDgG015QGd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ccf93b-8ff9-4eb6-8c34-4aa3c3dd4d6b/1/gvCPJjw3RZtf1vwG_Z8OX21iJ1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:4e4::/48
Signature Algorithm: sha256WithRSAEncryption
c4:9d:c4:74:f2:6f:01:48:f8:37:b8:2a:7d:d0:1b:4a:5f:98:
90:6e:cc:2b:17:c6:7b:83:8c:92:d1:f9:60:24:67:45:bb:be:
25:a4:89:27:c4:1b:a0:44:17:b7:48:e0:0c:69:46:bc:ed:e4:
30:d8:b3:66:a4:35:c5:24:cd:22:89:d3:e2:65:af:96:39:42:
cf:53:69:c4:df:17:09:7f:5a:ca:6f:07:f2:94:1f:df:9d:38:
97:19:13:de:75:86:12:0a:d3:48:a5:27:ed:be:9f:46:77:1b:
23:87:6d:ab:ad:c4:b5:81:65:23:36:90:44:72:ae:d3:51:10:
ea:92:84:0a:0a:49:5d:b7:ad:ba:c9:d1:cb:b1:c3:1c:af:95:
1b:b6:aa:97:84:51:ee:53:04:a2:94:50:5f:d2:36:7a:06:2d:
7a:a8:a7:61:a1:d9:4b:01:1f:d5:c1:d4:a5:4f:a4:39:6d:14:
9d:e2:df:26:27:53:15:88:d1:55:23:0e:4b:20:fa:11:97:2a:
5e:00:9d:76:e9:37:e3:ef:3c:c0:b0:23:bd:b0:61:cd:55:42:
fb:4f:86:59:d0:a3:16:52:ad:54:57:26:04:36:f8:5f:1a:b0:
37:ae:2b:b0:91:aa:99:e7:1f:02:23:fc:37:5a:95:1f:bd:04:
e5:0b:f2:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:09 2024 by rpki-client on console-ams.rpki-client.org