Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/Dkru8-K6JUV0OhYvLmRp_O0KIxk.roa
File: Dkru8-K6JUV0OhYvLmRp_O0KIxk.roa (raw, json)
Hash identifier: Yt49TUB8Ww5gMzBtjlD/HbL6Yk7Jp9jt6Zrfcvz1cAI=
Subject key identifier: 0E:4A:EE:F3:E2:BA:25:45:74:3A:16:2F:2E:64:69:FC:ED:0A:23:19
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 09641092
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/Dkru8-K6JUV0OhYvLmRp_O0KIxk.roa
Signing time: Tue 03 May 2022 08:01:45 +0000
ROA not before: Tue 03 May 2022 08:01:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 2a0b:3c40:22::/48 maxlen: 48
2a0b:3c40:38::/48 maxlen: 48
2a0b:3c40:26::/48 maxlen: 48
2a0b:3c40:56::/48 maxlen: 48
2a0b:3c40:19::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157552786 (0x9641092)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: May 3 08:01:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e4aeef3e2ba2545743a162f2e6469fced0a2319
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e5:11:1e:cb:75:e4:80:0c:f1:e6:31:e6:79:
04:c2:11:2f:bd:d4:13:60:f6:82:14:ff:f8:32:92:
97:13:7b:1d:fc:a0:54:45:4b:ec:88:99:a7:41:e0:
be:a6:34:02:75:2f:7b:b8:00:72:87:f7:17:de:d2:
43:c4:a7:9a:25:31:52:52:66:01:55:a1:2c:f6:22:
21:c6:50:11:52:46:63:eb:c0:e3:e0:03:64:c0:3f:
0b:d8:ee:0a:91:62:74:e6:a3:12:ff:43:2c:fb:1d:
c0:d4:76:92:14:e7:a7:e7:8f:bf:e8:2c:71:b2:e5:
80:5c:11:97:07:6e:6b:54:62:c0:33:10:9e:b4:10:
29:28:42:15:65:ba:00:2d:27:d4:72:1f:55:3d:df:
a1:ac:dd:3b:1d:d0:26:7f:f5:f1:51:14:d8:68:6a:
a3:cd:77:54:61:e8:df:c8:49:30:69:da:58:02:97:
ad:f0:77:16:f7:d7:9f:ae:ca:2f:01:3f:a1:4a:9b:
1a:c4:5a:1d:ad:f3:38:30:08:5e:8c:fb:04:fe:07:
8c:a9:4f:91:4e:53:b5:b4:ae:d2:f6:ca:08:b2:e7:
5c:8b:98:69:d3:57:30:f6:e9:57:c9:86:f4:5e:81:
02:42:56:71:b5:fb:ce:b4:2d:5e:1e:3d:83:54:02:
02:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:4A:EE:F3:E2:BA:25:45:74:3A:16:2F:2E:64:69:FC:ED:0A:23:19
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/Dkru8-K6JUV0OhYvLmRp_O0KIxk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:3c40:19::/48
2a0b:3c40:22::/48
2a0b:3c40:26::/48
2a0b:3c40:38::/48
2a0b:3c40:56::/48
Signature Algorithm: sha256WithRSAEncryption
13:23:38:d9:e7:50:37:00:fa:dd:3d:20:4e:f9:68:f8:1b:1d:
40:81:64:65:74:d4:08:5c:6b:54:16:6b:f9:63:e1:20:9c:67:
ab:18:28:a0:22:97:8a:fb:cd:a0:3a:89:f5:7e:97:16:5b:d1:
d9:19:fe:c6:b1:2c:98:71:a8:8d:e2:f4:47:71:6f:5c:47:b9:
b2:34:c5:71:2d:b4:79:11:1f:e8:8a:92:9a:bb:94:39:72:4a:
3b:35:dc:1b:4b:66:c3:b0:2f:fc:bf:73:06:a5:6e:e3:2e:ec:
a6:d1:83:b4:02:a6:b5:4b:3a:ec:75:52:f7:c6:ac:a9:85:a8:
f5:53:9e:04:83:11:6e:2d:23:64:2b:c8:02:37:9f:24:81:fb:
13:42:e5:c6:e2:a4:0b:96:16:d6:3a:3a:0d:a5:83:77:28:02:
06:82:b8:a2:5b:34:03:b6:33:cf:80:e0:98:12:26:b1:c6:f4:
5f:25:28:70:35:f5:de:01:20:50:ed:be:75:d1:3b:a1:b8:b9:
4c:42:57:82:66:d0:ce:6a:95:00:ca:72:12:5b:d8:48:1b:8b:
d4:f2:7b:5d:d1:19:2f:34:db:de:ce:d9:b8:fb:1c:6c:c7:5f:
f4:70:0c:23:fa:9a:ee:05:f8:95:db:2c:05:59:24:a1:be:65:
fe:3f:ad:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org