Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/wd4EfvjuVLEHxsV3G9lICJzBOfI.roa
File: wd4EfvjuVLEHxsV3G9lICJzBOfI.roa (raw, json)
Hash identifier: IeTjaI7FUDxEe/woBOx5f3+w2VnfVCUUIfOevTccN+o=
Subject key identifier: C1:DE:04:7E:F8:EE:54:B1:07:C6:C5:77:1B:D9:48:08:9C:C1:39:F2
Certificate issuer: /CN=996f903f91a85a60c546ee1141348cc3c8036927
Certificate serial: 01856272B046DFFDA1B80BAB795D761AD2A5
Authority key identifier: 99:6F:90:3F:91:A8:5A:60:C5:46:EE:11:41:34:8C:C3:C8:03:69:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mW-QP5GoWmDFRu4RQTSMw8gDaSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/wd4EfvjuVLEHxsV3G9lICJzBOfI.roa
Signing time: Fri 30 Dec 2022 09:52:41 +0000
ROA not before: Fri 30 Dec 2022 09:52:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198333
IP address blocks: 2001:67c:1988::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:62:72:b0:46:df:fd:a1:b8:0b:ab:79:5d:76:1a:d2:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=996f903f91a85a60c546ee1141348cc3c8036927
Validity
Not Before: Dec 30 09:52:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1de047ef8ee54b107c6c5771bd948089cc139f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8e:25:a7:8b:e5:c6:c3:5d:17:93:45:08:5e:
67:af:df:bb:c8:6f:fa:9b:5e:87:92:91:c8:8b:d3:
48:50:46:99:e2:2e:fe:f6:68:02:ec:f1:17:ac:53:
40:32:0d:8a:99:1c:0f:be:a7:c9:a8:ec:87:20:70:
11:ae:32:a6:33:fd:83:57:06:41:16:c5:2c:3b:97:
bf:ae:f8:29:dd:f1:52:e0:52:a8:11:e1:ae:cc:16:
1a:a9:e2:03:a6:12:80:a2:3e:0e:81:d6:bd:4a:9e:
cf:44:ca:a1:d7:57:ff:87:fa:ca:67:bf:e2:ef:a1:
9a:6e:38:81:be:dc:11:2b:af:e2:77:ff:25:d5:bc:
cb:5c:b4:42:23:a2:6d:6e:db:b3:9b:7e:83:9d:b7:
3c:ad:a8:81:fc:cd:0c:ec:af:4d:3f:5a:25:2e:bb:
9a:f5:4e:74:9f:8a:30:1d:3b:96:d0:62:4f:e7:c8:
84:2f:f1:c6:21:6e:ae:ab:dd:5f:e6:39:3a:a6:6e:
c4:2e:18:f2:55:d1:1e:09:58:96:8b:5a:a3:d0:a0:
2b:ea:58:ba:c8:48:6d:d5:04:d1:19:b0:da:fc:16:
df:1e:10:73:60:b6:db:99:ce:85:26:75:c5:92:07:
53:de:d3:dc:82:a9:3d:d6:ff:c1:69:25:c5:b9:60:
b4:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:DE:04:7E:F8:EE:54:B1:07:C6:C5:77:1B:D9:48:08:9C:C1:39:F2
X509v3 Authority Key Identifier:
keyid:99:6F:90:3F:91:A8:5A:60:C5:46:EE:11:41:34:8C:C3:C8:03:69:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mW-QP5GoWmDFRu4RQTSMw8gDaSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/wd4EfvjuVLEHxsV3G9lICJzBOfI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1988::/48
Signature Algorithm: sha256WithRSAEncryption
8c:d8:21:fc:12:2b:c1:20:be:ed:0d:ce:21:a5:d0:fa:fb:32:
5b:55:0e:ce:d2:8c:c9:6a:73:e3:ce:53:13:e7:97:76:80:94:
2f:95:77:27:2f:d2:d8:b6:72:d4:e5:c8:62:1d:b4:a3:15:72:
cd:82:1b:1d:a4:f4:60:94:b8:8d:af:62:68:d5:c3:20:af:76:
67:b9:8b:35:b7:fb:38:12:fc:cd:ac:df:2b:2f:12:d8:72:8a:
22:e9:63:78:f7:0a:28:43:12:25:3a:3d:8c:c5:23:51:08:f7:
90:fb:c3:5f:6f:88:cf:11:9b:9c:d4:ce:85:86:5a:f2:da:55:
76:52:6e:56:0f:1f:2f:76:fe:fb:ef:62:0d:83:67:c2:a1:ce:
20:5c:d7:4a:b3:88:c3:9b:37:30:5d:51:26:58:8b:90:3e:58:
70:c5:3d:60:f0:97:09:2c:80:2c:96:d6:8a:5b:1f:31:b5:d9:
75:38:95:e5:80:ce:83:ad:67:cd:1c:15:6c:db:40:8b:f1:79:
45:fa:ac:24:d2:ad:5f:a8:5c:7e:d2:99:71:17:69:93:dd:71:
f9:20:9d:bf:e9:84:3b:58:df:5e:4b:21:54:d2:cc:2a:31:6a:
22:90:63:77:d5:fe:0e:92:31:65:0d:05:03:51:83:68:ec:75:
93:62:73:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:19 2024 by rpki-client on console-fra.rpki-client.org