Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/852cfd-d592-4c2d-94cf-b9ca7555c2c5/1/V2TjFFi37knBgima3NuZtxQuc0E.roa
File: V2TjFFi37knBgima3NuZtxQuc0E.roa (raw, json)
Hash identifier: Z2c14YNqgIlkY+c/6mWVNyD5i5bezxOOwhdjxuPT56U=
Subject key identifier: 57:64:E3:14:58:B7:EE:49:C1:82:29:9A:DC:DB:99:B7:14:2E:73:41
Certificate issuer: /CN=931e3c8de0add9da95cf44d89f50bfde7ae19a57
Certificate serial: 383B374C
Authority key identifier: 93:1E:3C:8D:E0:AD:D9:DA:95:CF:44:D8:9F:50:BF:DE:7A:E1:9A:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kx48jeCt2dqVz0TYn1C_3nrhmlc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/852cfd-d592-4c2d-94cf-b9ca7555c2c5/1/V2TjFFi37knBgima3NuZtxQuc0E.roa
Signing time: Sat 01 Jan 2022 13:03:36 +0000
ROA not before: Sat 01 Jan 2022 13:03:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196960
IP address blocks: 2001:67c:268::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 943404876 (0x383b374c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=931e3c8de0add9da95cf44d89f50bfde7ae19a57
Validity
Not Before: Jan 1 13:03:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5764e31458b7ee49c182299adcdb99b7142e7341
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:d4:49:c0:1e:08:2f:be:ea:90:c1:99:64:8a:
93:17:95:f2:6d:fe:c9:a0:51:07:e6:14:70:96:35:
f2:f8:1f:47:ad:18:9c:2c:d9:1a:79:18:f4:7c:2c:
3b:eb:ad:6f:e5:f1:39:d7:70:e8:d8:cd:87:84:34:
30:dd:67:47:31:ff:52:dc:14:28:2d:31:94:26:59:
ec:6c:cb:e7:cb:fe:ba:aa:5b:13:b0:c8:2f:eb:96:
8a:f2:74:54:a3:81:fb:d5:9f:72:36:72:d4:df:f5:
71:92:37:8a:2c:b5:d5:a6:c3:5a:48:04:9d:3c:44:
f9:73:70:04:10:33:65:75:29:d4:d4:3e:ac:0f:03:
50:97:41:96:6b:2c:35:94:33:30:36:15:61:f2:e6:
37:3f:3b:36:72:f0:cb:14:0a:67:60:94:8c:40:90:
5e:52:75:94:f1:20:4f:c1:14:b1:16:3a:6e:dc:b3:
79:34:d4:6f:9a:da:63:f6:ce:9d:54:c4:50:95:17:
b0:f3:d8:d0:c7:6d:65:9c:d2:04:44:5e:d2:8a:1c:
3d:da:36:15:90:7b:1f:7b:50:fd:93:79:c2:c7:47:
03:5d:02:57:39:6a:99:20:e6:70:34:6a:74:41:0e:
ba:a2:90:f7:26:64:28:c4:7b:c4:63:16:1e:32:8f:
56:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:64:E3:14:58:B7:EE:49:C1:82:29:9A:DC:DB:99:B7:14:2E:73:41
X509v3 Authority Key Identifier:
keyid:93:1E:3C:8D:E0:AD:D9:DA:95:CF:44:D8:9F:50:BF:DE:7A:E1:9A:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kx48jeCt2dqVz0TYn1C_3nrhmlc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/852cfd-d592-4c2d-94cf-b9ca7555c2c5/1/V2TjFFi37knBgima3NuZtxQuc0E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/852cfd-d592-4c2d-94cf-b9ca7555c2c5/1/kx48jeCt2dqVz0TYn1C_3nrhmlc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:268::/48
Signature Algorithm: sha256WithRSAEncryption
09:3c:ba:d8:68:39:9a:64:f0:75:d0:b1:29:e2:42:0d:19:8a:
d3:32:15:a8:ad:dc:e5:95:75:2b:4e:3f:66:c8:01:d0:e0:21:
bb:23:ce:a0:0c:b3:fa:dd:6d:01:40:96:ad:ee:1b:da:ac:36:
9a:f3:64:a4:2d:93:b3:a9:20:af:99:1a:7f:99:13:30:04:83:
22:23:80:99:f7:85:6b:bd:4f:9d:55:40:b1:12:bf:13:bd:27:
2d:72:68:bc:18:72:81:01:a8:71:26:54:0b:8d:ce:bf:7e:4b:
32:80:f1:ae:d5:d3:3b:71:39:ec:b2:e7:f3:35:87:09:63:2a:
ef:ff:d4:d5:66:22:96:74:d2:0e:5e:bb:df:d9:80:54:3b:cd:
c8:3c:67:6c:b9:53:50:25:04:ed:02:64:ca:5a:6e:df:60:94:
09:c1:20:f4:8d:ac:b9:c2:73:25:d2:bf:a0:14:14:bd:dd:8b:
8c:68:b7:d7:98:25:9c:67:89:88:59:e6:39:30:54:dd:79:52:
c2:bc:c3:a6:78:f1:2a:f8:4f:2e:01:31:7a:7a:87:71:77:90:
5b:6f:91:6a:a4:0b:66:fd:95:5c:3c:e7:b4:c6:6d:db:4d:9c:
7d:7e:be:ed:4b:db:95:11:82:ee:34:04:f8:0b:46:0a:4a:f3:
05:5d:4e:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:21 2024 by rpki-client on console-ams.rpki-client.org