Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/26d917-8c91-45ab-8442-e4e52ac0fefe/1/Tk1rFG2mTuYuzcQ3rQGZpoOpcTs.roa
File: Tk1rFG2mTuYuzcQ3rQGZpoOpcTs.roa (raw, json)
Hash identifier: wMEhXZyMFRZNDXeH3cVoEq6Wn8MTNAjNLU8x/dZmRVc=
Subject key identifier: 4E:4D:6B:14:6D:A6:4E:E6:2E:CD:C4:37:AD:01:99:A6:83:A9:71:3B
Certificate issuer: /CN=63d92b8256159894d2b9b25f4d85986c172723c3
Certificate serial: 04E632
Authority key identifier: 63:D9:2B:82:56:15:98:94:D2:B9:B2:5F:4D:85:98:6C:17:27:23:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y9krglYVmJTSubJfTYWYbBcnI8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/26d917-8c91-45ab-8442-e4e52ac0fefe/1/Tk1rFG2mTuYuzcQ3rQGZpoOpcTs.roa
Signing time: Thu 10 Feb 2022 15:04:55 +0000
ROA not before: Thu 10 Feb 2022 15:04:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29033
IP address blocks: 2a00:1fd0:ecc1::/48 maxlen: 48
2a00:1fd0:ecc2::/48 maxlen: 48
2a00:1fd0:ecc0::/48 maxlen: 48
2a00:1fd0:ec00::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 321074 (0x4e632)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63d92b8256159894d2b9b25f4d85986c172723c3
Validity
Not Before: Feb 10 15:04:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e4d6b146da64ee62ecdc437ad0199a683a9713b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:8e:06:49:ac:72:e2:2b:cb:9e:21:99:91:e4:
ad:da:09:c6:10:e9:e5:31:65:c4:fe:63:6f:73:08:
a7:42:6b:e4:5c:8b:1b:e9:20:c6:0e:df:90:7c:b5:
a6:cd:bc:16:f4:1f:a8:69:07:2d:ce:d9:2a:4d:84:
fa:4d:88:a0:b3:4f:9b:7f:2f:05:69:53:94:22:87:
74:a9:2b:b4:2c:74:35:b5:33:2c:c5:08:8c:29:5a:
40:bf:bc:15:ab:bb:ed:6d:b5:82:23:e8:ec:e0:65:
9d:c6:6f:a6:71:8e:65:1b:af:18:d3:35:52:71:4f:
2c:66:d4:ab:f5:23:12:ba:26:1a:fa:81:85:73:98:
53:3f:85:36:b7:e1:0c:a0:22:9d:41:13:fe:aa:76:
0b:01:19:0a:90:e8:40:cb:ab:1c:ec:24:9e:89:ff:
c7:e1:5d:14:d1:13:67:2a:80:ad:06:ac:c9:7a:07:
a9:4f:2c:4a:3b:9e:fc:e4:3a:f0:6b:fb:21:81:d4:
f6:59:0e:c3:37:73:91:d4:9a:c6:63:3a:35:88:c0:
14:be:38:01:2e:15:ec:d4:bb:19:4c:e1:24:8d:8e:
c9:d8:90:48:c3:bd:f6:b6:0e:02:74:d2:4d:ad:2a:
92:f0:6e:3e:de:c1:2c:6b:d4:3d:06:c9:1d:8b:a9:
a0:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:4D:6B:14:6D:A6:4E:E6:2E:CD:C4:37:AD:01:99:A6:83:A9:71:3B
X509v3 Authority Key Identifier:
keyid:63:D9:2B:82:56:15:98:94:D2:B9:B2:5F:4D:85:98:6C:17:27:23:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y9krglYVmJTSubJfTYWYbBcnI8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/26d917-8c91-45ab-8442-e4e52ac0fefe/1/Tk1rFG2mTuYuzcQ3rQGZpoOpcTs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/26d917-8c91-45ab-8442-e4e52ac0fefe/1/Y9krglYVmJTSubJfTYWYbBcnI8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1fd0:ec00::/48
2a00:1fd0:ecc0::-2a00:1fd0:ecc2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
45:58:eb:52:f3:f3:6b:35:b7:cb:68:c6:0c:f9:a3:ac:d7:27:
a1:e6:2e:e3:e8:4c:76:3e:4d:4d:88:8d:66:a4:10:7c:7e:a6:
94:9e:43:2f:87:62:38:6d:d0:01:54:2f:7f:82:f9:9b:0c:4e:
9a:67:24:ae:c1:eb:5e:32:9d:3c:f9:c7:1c:90:89:11:cb:a9:
49:57:10:6d:65:03:08:14:4a:eb:6b:68:d2:0d:e3:91:26:7b:
7e:2e:32:43:fb:f3:8c:cb:f3:c2:64:c2:a3:4c:9f:48:e6:66:
85:58:26:87:ed:f8:c1:29:82:6a:5a:40:32:d8:ae:b7:99:f9:
db:58:73:23:a1:ea:cb:9a:08:e7:73:65:a4:bb:3e:4f:18:15:
49:3f:79:3c:28:c5:40:22:65:c8:a1:46:27:fc:46:03:ca:01:
e9:6a:c1:91:3c:38:e0:71:75:f5:ef:25:f2:fb:1c:28:30:9a:
15:56:1e:75:90:c8:e2:cc:89:f7:41:ca:3d:51:f1:6c:9b:47:
ab:4f:a6:3d:60:3a:93:a0:e9:31:a6:d5:f0:51:7e:73:f9:31:
d6:36:b2:b7:53:fb:34:80:f8:10:9b:41:95:ab:c6:e1:bf:89:
c5:0e:60:f1:14:89:36:8e:21:a0:e6:9d:17:4b:e5:37:ab:c4:
d7:77:4e:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:26 2024 by rpki-client on console-fra.rpki-client.org