Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/8cc47f-0265-407c-ba45-05d7bd4a741d/1/DnTs_xeuUh-Yn0DqalZYJdamAWY.roa
File: DnTs_xeuUh-Yn0DqalZYJdamAWY.roa (raw, json)
Hash identifier: fU/gWDUelwjS3qBiP5JS6ZzuJGr+9ZQRcm/v+zS0LNs=
Subject key identifier: 0E:74:EC:FF:17:AE:52:1F:98:9F:40:EA:6A:56:58:25:D6:A6:01:66
Certificate issuer: /CN=bc184d30d1fd2fde50bea6f70fe2dbe20518a03e
Certificate serial: 09915A48
Authority key identifier: BC:18:4D:30:D1:FD:2F:DE:50:BE:A6:F7:0F:E2:DB:E2:05:18:A0:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vBhNMNH9L95Qvqb3D-Lb4gUYoD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/8cc47f-0265-407c-ba45-05d7bd4a741d/1/DnTs_xeuUh-Yn0DqalZYJdamAWY.roa
Signing time: Sat 01 Jan 2022 09:01:41 +0000
ROA not before: Sat 01 Jan 2022 09:01:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2119
IP address blocks: 2001:67c:2dc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160520776 (0x9915a48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc184d30d1fd2fde50bea6f70fe2dbe20518a03e
Validity
Not Before: Jan 1 09:01:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e74ecff17ae521f989f40ea6a565825d6a60166
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f7:e8:ba:0c:a1:63:b5:40:d7:93:61:4b:e5:
03:d3:54:9a:0b:84:e4:22:7e:4e:ea:24:6d:16:ed:
d8:6e:c2:3b:e8:68:a3:e9:32:10:7c:b1:69:43:bb:
0e:f2:8d:84:31:d1:60:1a:11:55:12:4f:d3:a7:13:
d7:b7:c5:aa:8b:e4:ab:15:bf:31:5e:38:c6:02:b1:
9f:fa:d4:cc:1a:8b:7a:14:41:cd:89:2b:e2:31:5e:
1c:9c:01:31:2a:e3:48:50:5b:4b:1a:a9:82:fe:f1:
a5:67:72:ec:32:e0:28:b7:0f:30:be:37:08:f9:a8:
79:3a:0f:7b:55:b8:35:01:0c:78:b9:a4:b7:30:76:
83:52:cb:c5:d9:44:f0:af:1d:8e:1d:9e:bd:a7:d2:
db:e2:50:21:c5:c9:2a:7a:03:9a:63:98:ad:50:6f:
f1:31:81:56:9d:56:f0:a0:b6:5a:5f:96:8b:fb:79:
3f:a3:d4:bb:7d:4e:4a:93:df:21:97:47:7c:68:5f:
e5:68:c5:ef:8a:c0:dd:a2:06:8a:16:e6:46:be:36:
52:11:91:37:f9:11:76:85:36:cd:70:59:f8:bc:26:
91:4a:5f:b5:5a:3c:7a:75:64:2e:c0:db:c2:7a:36:
70:54:ff:e7:69:45:85:10:58:10:2b:32:bc:06:77:
2e:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:74:EC:FF:17:AE:52:1F:98:9F:40:EA:6A:56:58:25:D6:A6:01:66
X509v3 Authority Key Identifier:
keyid:BC:18:4D:30:D1:FD:2F:DE:50:BE:A6:F7:0F:E2:DB:E2:05:18:A0:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vBhNMNH9L95Qvqb3D-Lb4gUYoD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/8cc47f-0265-407c-ba45-05d7bd4a741d/1/DnTs_xeuUh-Yn0DqalZYJdamAWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/8cc47f-0265-407c-ba45-05d7bd4a741d/1/vBhNMNH9L95Qvqb3D-Lb4gUYoD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2dc::/48
Signature Algorithm: sha256WithRSAEncryption
78:d9:47:e4:d8:9c:03:9f:4c:58:bb:02:c8:74:a6:bc:ce:0a:
8e:92:c5:f1:2f:e9:17:b9:45:c5:d0:e1:79:ad:2f:cf:55:9d:
8c:d3:d6:f8:87:fa:1c:f9:76:0b:d6:65:a9:6c:18:3e:d5:80:
3b:28:ea:f3:f2:54:ba:c1:91:bc:a2:e4:c5:0a:b7:76:68:75:
4c:ef:a5:53:32:da:97:b5:a0:cb:81:ed:52:75:90:f8:20:7c:
d1:ec:b4:b7:11:56:95:cd:53:a0:e3:a5:4f:51:48:58:f0:ff:
24:50:93:69:98:e9:ce:d3:37:95:36:81:e2:bf:49:d0:b6:9c:
eb:17:1f:b2:24:09:dd:1a:4a:33:f6:47:d1:33:09:1e:6c:c4:
c2:c0:9e:3e:6e:8a:74:6b:9e:af:56:cb:84:89:f3:71:6f:a7:
fa:8e:66:dd:11:e9:38:1f:50:5c:60:04:35:fa:09:6c:a0:c4:
e7:38:06:99:4a:56:b2:fa:23:87:39:ec:52:e4:84:80:79:cc:
a1:aa:9d:f4:38:f9:20:5a:fd:fe:7b:c6:dc:5d:61:4c:36:15:
0b:64:2b:69:30:24:da:3e:c9:c6:50:a2:f8:83:ba:5d:99:d1:
f1:df:bf:66:db:28:c9:02:58:81:a1:a2:25:2b:a7:f1:0e:ea:
90:6e:5f:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:46 2023 by rpki-client on console-ams.rpki-client.org