Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/1KoEHUph1PPjd1fnodYtc2Iv71E.roa
File: 1KoEHUph1PPjd1fnodYtc2Iv71E.roa (raw, json)
Hash identifier: t6Ss1Yl8Fsa+b4Z4gww3Vu5vFPHBMNXO4hIDoxk8pqE=
Subject key identifier: D4:AA:04:1D:4A:61:D4:F3:E3:77:57:E7:A1:D6:2D:73:62:2F:EF:51
Certificate issuer: /CN=d04265fb11c2a220bc350718673e0704d1edadde
Certificate serial: 03D0483D
Authority key identifier: D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/1KoEHUph1PPjd1fnodYtc2Iv71E.roa
Signing time: Wed 29 Jun 2022 09:01:02 +0000
ROA not before: Wed 29 Jun 2022 09:01:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48678
IP address blocks: 2a0c:6d40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63981629 (0x3d0483d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d04265fb11c2a220bc350718673e0704d1edadde
Validity
Not Before: Jun 29 09:01:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d4aa041d4a61d4f3e37757e7a1d62d73622fef51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:76:70:c9:28:c7:f9:cf:06:37:28:64:58:68:
26:52:68:3f:3e:5e:25:35:06:77:77:24:ef:89:58:
39:7d:81:53:f0:f6:e8:f2:b3:c9:b7:8b:ad:56:8c:
ca:26:95:4d:ec:a5:24:31:59:0b:11:43:37:53:06:
f4:e4:c9:ba:41:38:77:d9:69:c1:6b:b7:57:ea:4e:
b7:6d:32:96:c1:6a:04:52:2a:9a:17:e0:54:77:6b:
b3:f2:04:60:fb:c8:26:4f:c5:47:69:19:de:93:91:
fa:7e:5c:21:87:a5:a0:e5:75:36:26:aa:dd:bc:3d:
2b:bb:18:09:db:90:e1:9c:0a:46:a0:be:56:5c:d3:
2e:81:ec:78:f6:4e:6e:ea:74:67:d7:fa:a4:81:45:
e8:7d:ba:93:7b:0a:a3:8f:f0:de:c0:ad:7b:31:57:
92:c9:c1:6c:2c:42:50:a5:58:58:ef:9e:a8:a2:0b:
39:ba:ec:c1:f3:66:51:5c:b7:c9:79:58:7a:97:d2:
53:ed:9b:9b:2d:2d:90:aa:67:ea:8f:f4:2e:e2:d4:
97:a4:cb:47:a2:4b:cd:6c:e7:28:81:01:72:60:23:
f3:d9:37:90:55:68:50:76:59:af:65:1b:d4:35:91:
9a:d4:97:52:e7:52:a4:15:55:9d:3d:d2:c2:61:04:
a9:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:AA:04:1D:4A:61:D4:F3:E3:77:57:E7:A1:D6:2D:73:62:2F:EF:51
X509v3 Authority Key Identifier:
keyid:D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/1KoEHUph1PPjd1fnodYtc2Iv71E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:6d40::/29
Signature Algorithm: sha256WithRSAEncryption
ba:7a:0f:b3:a7:5d:36:da:55:e7:55:cf:e8:b0:72:04:e6:a6:
1b:42:b5:00:0a:cd:8d:09:56:4e:36:b2:66:b1:7d:47:75:98:
03:14:f1:63:81:fc:c9:fd:eb:76:84:8d:ef:9c:19:e0:52:d2:
e4:21:31:0e:af:19:ae:f2:7a:ac:47:6a:bc:35:fa:b4:5f:a3:
9a:b7:07:8a:bc:13:59:17:45:f8:fb:63:5a:7f:c7:dc:d4:0d:
4e:2c:e0:15:3e:21:46:2b:59:3d:71:5d:d5:dd:39:0f:b7:58:
c9:b4:03:f0:06:c8:16:3e:fc:72:cc:68:ab:cb:5b:f4:27:d2:
a7:6d:83:29:7d:21:0e:f0:b4:4c:80:89:bf:31:a5:eb:45:4e:
76:f1:3a:fa:bc:f7:89:40:10:ba:9d:95:9f:87:83:46:01:93:
e9:b8:db:af:8b:b9:53:0d:70:bf:ff:17:61:2f:7d:7d:4e:83:
5f:74:ac:cc:d8:48:b1:0e:91:f0:b2:a8:cd:d5:c3:84:cb:ab:
28:4f:61:e5:31:3d:a2:e2:b0:00:4d:32:c5:30:c9:9d:e0:51:
c5:2d:97:98:96:76:f7:5f:66:f6:53:b0:c8:0e:c8:59:82:63:
ad:fa:82:9c:30:71:57:6e:2f:4c:80:d4:01:03:07:f3:d8:29:
8d:42:0b:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:32 2024 by rpki-client on console-ams.rpki-client.org