Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/TdA27BHjnWnk42Xi96MS1rvp1l8.roa
File: TdA27BHjnWnk42Xi96MS1rvp1l8.roa (raw, json)
Hash identifier: xpBjPfxSGEDWRiJAaidL2jRSoToFNGgnQEqSfjvAFjM=
Subject key identifier: 4D:D0:36:EC:11:E3:9D:69:E4:E3:65:E2:F7:A3:12:D6:BB:E9:D6:5F
Certificate issuer: /CN=d342ab156d5ae153ad16528e87d9c8479dc0a4a5
Certificate serial: 10447807
Authority key identifier: D3:42:AB:15:6D:5A:E1:53:AD:16:52:8E:87:D9:C8:47:9D:C0:A4:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00KrFW1a4VOtFlKOh9nIR53ApKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/TdA27BHjnWnk42Xi96MS1rvp1l8.roa
Signing time: Sat 01 Jan 2022 03:56:02 +0000
ROA not before: Sat 01 Jan 2022 03:56:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 139.6.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 272922631 (0x10447807)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d342ab156d5ae153ad16528e87d9c8479dc0a4a5
Validity
Not Before: Jan 1 03:56:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4dd036ec11e39d69e4e365e2f7a312d6bbe9d65f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:60:39:b6:bb:d4:1e:15:49:76:57:aa:c8:45:
be:b0:3e:43:02:06:83:bc:38:9c:0e:ec:dc:50:67:
3f:c2:a1:99:76:34:7c:80:ab:9b:7d:12:fa:72:18:
f9:a5:7e:00:0b:5f:ce:e7:00:77:95:d8:fe:cf:7b:
80:81:ba:b6:c4:dd:fe:fb:be:14:af:60:b3:a0:39:
9c:16:fd:f1:b5:16:a7:2d:13:c0:e7:08:c9:fd:e8:
a6:27:5e:30:60:e2:c7:c9:a5:18:08:d7:e3:f5:1b:
2e:fa:85:f3:a0:a8:82:f1:62:9f:2d:d7:f3:0f:1f:
c3:f9:d1:b9:b4:2e:d3:89:6f:16:41:70:e7:1e:ab:
6b:1c:5b:e4:91:a9:8a:40:62:ad:ef:eb:0c:6e:74:
86:07:9a:c5:e1:83:ad:f3:ec:5e:28:1d:f8:93:af:
08:a0:ec:4b:d7:93:54:1e:d8:07:a7:d3:e8:85:b8:
ef:3a:ce:5e:8b:08:53:d6:6d:a1:ea:4a:9a:aa:1f:
8e:38:67:08:cc:ee:fb:19:3c:16:97:97:f7:c0:83:
94:53:51:99:c2:41:2d:ca:23:63:7b:ed:bd:ae:e7:
48:29:46:6b:5c:75:0f:7d:3c:71:fe:c9:ba:c2:73:
34:b2:80:ab:26:2f:0e:6e:c6:96:0c:14:1b:02:db:
ed:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:D0:36:EC:11:E3:9D:69:E4:E3:65:E2:F7:A3:12:D6:BB:E9:D6:5F
X509v3 Authority Key Identifier:
keyid:D3:42:AB:15:6D:5A:E1:53:AD:16:52:8E:87:D9:C8:47:9D:C0:A4:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00KrFW1a4VOtFlKOh9nIR53ApKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/TdA27BHjnWnk42Xi96MS1rvp1l8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.6.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2e:41:d7:fa:54:9e:04:1e:10:92:e0:bc:89:10:10:63:f8:c7:
b1:be:14:4b:8d:bc:a3:3c:de:99:a0:e3:ec:e2:48:92:f5:ae:
cd:cd:94:84:13:b7:84:04:d5:9d:92:ac:cc:c4:13:75:e1:56:
2e:f7:79:18:ac:d5:fe:03:5a:a8:7a:10:f3:78:e3:7d:c4:ee:
2b:9d:62:19:03:80:6f:f8:1f:c1:e0:d2:0c:50:84:b2:6b:b2:
2f:35:69:d7:09:7a:95:bd:c5:d6:68:f4:4a:9c:ff:76:c9:c9:
a4:05:81:33:76:4a:d7:87:4f:4b:fe:90:32:c1:43:97:67:59:
ef:23:3e:b1:c7:b3:7e:83:34:a4:10:63:e5:1a:b8:47:f3:e3:
19:69:50:f3:0d:3e:28:56:95:a2:aa:83:64:70:eb:7a:02:1a:
e1:25:69:04:da:84:40:e5:71:16:2f:92:6c:e0:db:18:c1:a0:
23:57:37:a9:49:12:01:68:c3:a7:f8:3d:48:8a:c6:dd:c8:fe:
1f:5d:b3:cb:98:ef:18:35:98:21:f5:c2:d8:8d:ab:f6:7b:52:
83:6b:ff:e4:93:61:0a:91:5f:62:6b:8a:23:aa:c5:85:47:20:
8a:ba:37:67:1d:89:44:76:23:5f:ab:0b:b4:c1:65:cc:31:f0:
37:f2:d5:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:47 2024 by rpki-client on console-fra.rpki-client.org