Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/x1kYWMBuDouw37EKcDtrp2G8fss.roa
File: x1kYWMBuDouw37EKcDtrp2G8fss.roa (raw, json)
Hash identifier: xQvkYySCgUefw4MIvLtKuUeDQtnixFAABWk8BhWVCFQ=
Subject key identifier: C7:59:18:58:C0:6E:0E:8B:B0:DF:B1:0A:70:3B:6B:A7:61:BC:7E:CB
Certificate issuer: /CN=73f986c7705bd808c1b02ebd754fbfa91807e9b6
Certificate serial: 1185ABF9
Authority key identifier: 73:F9:86:C7:70:5B:D8:08:C1:B0:2E:BD:75:4F:BF:A9:18:07:E9:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_mGx3Bb2AjBsC69dU-_qRgH6bY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/x1kYWMBuDouw37EKcDtrp2G8fss.roa
Signing time: Sat 01 Jan 2022 11:04:04 +0000
ROA not before: Sat 01 Jan 2022 11:04:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15703
IP address blocks: 2a0b:b600:3000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 293972985 (0x1185abf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73f986c7705bd808c1b02ebd754fbfa91807e9b6
Validity
Not Before: Jan 1 11:04:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c7591858c06e0e8bb0dfb10a703b6ba761bc7ecb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:32:d3:6c:d9:a9:54:5c:fd:64:ba:5a:60:b5:
2b:b8:53:a6:f2:5a:f2:6b:a8:5e:ab:94:00:cc:36:
c0:7b:e6:c6:5d:1c:c2:cf:a9:b2:f1:a5:f0:4f:20:
6a:d8:dc:9e:df:84:a9:78:0a:ee:18:07:5e:5f:e0:
fb:e8:b7:e4:4c:22:b6:2e:e1:9c:62:eb:ef:51:bd:
35:5f:00:8f:fe:47:99:c5:1f:25:06:50:76:e9:2c:
51:c8:4e:ca:b8:e1:68:7b:90:e0:28:5e:21:c8:1e:
25:04:35:97:cc:a3:e7:c0:5d:94:7a:f1:6d:ed:02:
06:74:72:29:15:48:43:e1:f5:5f:92:a8:ba:3e:e3:
63:ca:b2:49:68:0a:c8:6e:cd:80:73:7b:61:9f:21:
ab:97:d6:f7:aa:4c:86:09:1d:eb:52:6d:f9:b2:ba:
63:ba:b7:4b:68:22:82:bc:40:35:3b:9a:c9:2c:cb:
6f:a8:09:b1:01:64:74:76:9a:e2:3a:c5:e8:4b:a8:
4a:fc:15:b7:94:80:2a:ee:f1:8b:ac:1d:83:e4:2c:
80:ea:8e:d5:48:11:fa:d9:9b:d8:18:98:d2:82:e4:
ad:47:e5:61:c5:4c:82:12:3f:91:20:94:e0:6f:d2:
06:f4:84:39:63:87:65:a6:7b:07:4b:d1:57:6c:58:
92:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:59:18:58:C0:6E:0E:8B:B0:DF:B1:0A:70:3B:6B:A7:61:BC:7E:CB
X509v3 Authority Key Identifier:
keyid:73:F9:86:C7:70:5B:D8:08:C1:B0:2E:BD:75:4F:BF:A9:18:07:E9:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_mGx3Bb2AjBsC69dU-_qRgH6bY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/x1kYWMBuDouw37EKcDtrp2G8fss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/c_mGx3Bb2AjBsC69dU-_qRgH6bY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:b600:3000::/48
Signature Algorithm: sha256WithRSAEncryption
37:f5:77:87:4a:fe:58:cd:8e:a5:fb:96:5f:df:14:a5:56:60:
27:2e:83:2b:e5:58:87:94:78:2b:7f:9a:f0:56:58:7d:7d:03:
fd:3b:0b:3e:d3:7f:2e:96:d1:ee:31:29:0d:61:0d:3b:55:10:
0a:f6:e0:3e:c0:f3:95:8a:18:58:9a:8d:4e:0c:d2:af:a5:53:
1f:02:83:28:77:09:42:cc:c0:56:e5:3a:61:b5:fd:a4:3d:5f:
ac:54:6e:b2:0a:bb:d6:27:60:77:8b:f1:1a:2c:3c:ca:c7:43:
28:34:fc:37:65:d9:07:82:7c:42:f7:47:10:a4:26:e3:e7:1c:
9c:2b:88:d4:41:df:36:b6:8f:5f:47:a4:f9:31:b9:0e:8d:a0:
ab:c1:3c:df:67:3e:2b:56:5f:61:a8:4b:69:78:d4:4c:14:26:
6e:e7:cd:d9:9b:e8:6c:f0:56:38:8f:84:f1:63:fb:80:ca:11:
00:71:2f:d4:6d:f0:a1:c9:f6:ec:01:40:63:32:e4:d2:d1:23:
cc:ac:f0:23:89:4c:f5:e2:6a:13:62:2a:18:cd:b6:c8:c3:d7:
b0:85:eb:e6:b4:10:7f:00:80:65:27:35:45:f7:05:79:29:f6:
fb:50:d1:e2:2b:72:ac:ab:47:81:20:de:22:d5:89:cf:ab:67:
5e:db:a7:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:14 2024 by rpki-client on console-fra.rpki-client.org