Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/6c3948-ca2a-40d1-8e17-ef518b4b463f/1/9Vp7uWcBpDWC_XTAxNYxvSVCGcw.roa
File: 9Vp7uWcBpDWC_XTAxNYxvSVCGcw.roa (raw, json)
Hash identifier: 4g5q0vNZ00Q/TGfBJELu/jJ/RWpYWZ+fF6BhZG+MxE0=
Subject key identifier: F5:5A:7B:B9:67:01:A4:35:82:FD:74:C0:C4:D6:31:BD:25:42:19:CC
Certificate issuer: /CN=6f7fcea4f7fcd7bd81dd598153dd6ee5b12e47df
Certificate serial: 09105E1B
Authority key identifier: 6F:7F:CE:A4:F7:FC:D7:BD:81:DD:59:81:53:DD:6E:E5:B1:2E:47:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b3_OpPf8172B3VmBU91u5bEuR98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/6c3948-ca2a-40d1-8e17-ef518b4b463f/1/9Vp7uWcBpDWC_XTAxNYxvSVCGcw.roa
Signing time: Sat 01 Jan 2022 01:53:12 +0000
ROA not before: Sat 01 Jan 2022 01:53:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12843
IP address blocks: 2001:67c:1928::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152067611 (0x9105e1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f7fcea4f7fcd7bd81dd598153dd6ee5b12e47df
Validity
Not Before: Jan 1 01:53:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f55a7bb96701a43582fd74c0c4d631bd254219cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:62:23:46:e8:c4:89:51:73:2d:3c:ab:69:1b:
a8:8d:65:2e:97:5d:6f:e8:ac:92:c0:95:7d:f7:ec:
52:3a:08:35:a8:f0:fd:ee:ec:ce:df:88:67:6e:ac:
fe:19:3f:e1:d9:15:9e:a4:3b:86:37:a6:70:3e:9d:
05:be:b8:a5:21:45:ef:0f:74:ff:3d:d8:32:43:2e:
4f:17:78:06:58:d6:02:1d:8a:4c:3d:36:1c:4d:1d:
90:40:9d:ca:af:bb:a4:70:ce:7d:73:04:42:5b:d2:
21:70:82:9b:5d:da:64:27:69:09:07:9a:f2:4e:4f:
e7:07:f3:cf:a5:26:ff:f7:fd:83:f4:d0:f2:7d:09:
be:68:49:03:f7:95:1e:43:77:ca:b4:3c:03:9b:26:
a6:a2:37:92:81:ea:d4:e4:49:dd:8f:ce:c0:62:23:
9c:af:3a:41:09:ef:a2:98:4a:ff:b3:44:2e:4f:1d:
b8:07:f1:3d:88:41:a0:41:6c:02:62:f7:e8:77:c7:
ec:fa:7f:0c:c5:7d:a0:6a:16:f2:a4:6b:d1:7f:90:
11:79:95:01:17:af:d1:b2:57:56:fe:07:6c:87:97:
dc:ee:91:b5:94:a6:da:e1:e1:39:94:77:70:d0:74:
60:1c:39:3a:f7:1c:72:bc:87:fa:77:aa:5e:ef:1c:
76:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:5A:7B:B9:67:01:A4:35:82:FD:74:C0:C4:D6:31:BD:25:42:19:CC
X509v3 Authority Key Identifier:
keyid:6F:7F:CE:A4:F7:FC:D7:BD:81:DD:59:81:53:DD:6E:E5:B1:2E:47:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3_OpPf8172B3VmBU91u5bEuR98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/6c3948-ca2a-40d1-8e17-ef518b4b463f/1/9Vp7uWcBpDWC_XTAxNYxvSVCGcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/6c3948-ca2a-40d1-8e17-ef518b4b463f/1/b3_OpPf8172B3VmBU91u5bEuR98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1928::/48
Signature Algorithm: sha256WithRSAEncryption
31:bc:2b:86:d6:cf:77:96:a8:03:dd:7f:f3:04:95:12:5c:cf:
e7:5b:b1:9e:54:c6:d8:b0:8b:0f:60:2b:c9:3d:4d:b3:a4:17:
56:08:2b:88:37:8d:11:c9:42:69:80:d2:05:4b:97:a1:c5:28:
97:cf:81:37:56:5b:34:5a:65:28:78:ec:1a:4d:e9:b2:9b:be:
bb:21:55:8d:2a:83:93:59:1b:b1:ce:7e:0c:63:67:f9:6a:39:
64:3b:fa:79:49:c2:3f:28:52:17:10:90:fc:c6:a1:7d:de:6c:
47:53:f3:fe:23:2d:29:ee:77:12:e7:f5:1b:3a:0b:e4:93:52:
13:a9:41:c3:77:33:de:2c:2d:30:47:06:12:12:38:6e:8f:9c:
41:80:58:d5:65:37:36:84:cd:d6:91:23:ce:f2:c3:6e:c1:9b:
fe:1c:17:6b:c4:6e:4e:9c:00:58:83:b5:6a:8d:67:50:60:b6:
d7:8b:cb:34:e5:76:63:19:88:13:a1:af:5e:bb:f0:2b:fa:4f:
f0:9b:e9:64:c1:8e:4f:5a:b6:40:6b:70:20:11:84:ad:b3:4a:
9c:68:2b:16:bf:c6:89:b3:b6:89:1d:1f:da:73:1b:fa:a1:97:
41:3e:1b:03:4e:22:c8:f5:ce:24:25:76:dd:af:50:07:93:50:
f2:32:36:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:36 2023 by rpki-client on console-fra.rpki-client.org