Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/8bf78d-c3b5-4691-8108-f0cad9ff65be/1/1-JoYp-KKT3X4xi6kyCS4hT7Kryk.roa
File: 1-JoYp-KKT3X4xi6kyCS4hT7Kryk.roa (raw, json)
Hash identifier: hd6kupC/w7YLqqrcKA8hwzi1dZcSw0naVSdsyYd+/Ec=
Subject key identifier: F8:9A:18:A7:E2:8A:4F:75:F8:C6:2E:A4:C8:24:B8:85:3E:CA:AF:29
Certificate issuer: /CN=534633f19f61d6546ebabf7de9fb7aa987ed5bf3
Certificate serial: 0A8CAB97
Authority key identifier: 53:46:33:F1:9F:61:D6:54:6E:BA:BF:7D:E9:FB:7A:A9:87:ED:5B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U0Yz8Z9h1lRuur996ft6qYftW_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/8bf78d-c3b5-4691-8108-f0cad9ff65be/1/1-JoYp-KKT3X4xi6kyCS4hT7Kryk.roa
Signing time: Sat 01 Jan 2022 15:58:56 +0000
ROA not before: Sat 01 Jan 2022 15:58:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1103
IP address blocks: 141.252.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176991127 (0xa8cab97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=534633f19f61d6546ebabf7de9fb7aa987ed5bf3
Validity
Not Before: Jan 1 15:58:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f89a18a7e28a4f75f8c62ea4c824b8853ecaaf29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ab:10:27:35:82:fb:58:56:de:3f:6f:60:09:
f7:81:13:1a:c2:2b:25:08:d9:02:12:de:fb:fc:96:
01:99:ca:1a:55:d9:b3:9a:1a:65:f7:9c:5e:42:1b:
66:2a:10:04:e5:54:b9:29:da:c7:04:15:c1:d2:14:
b8:b0:81:11:8d:0b:2e:ce:c3:a7:ac:e9:f3:67:9d:
f1:4d:03:3f:98:67:38:d7:7d:bb:b9:fb:57:4e:c3:
7d:ad:93:c2:41:8d:16:da:31:61:d2:d4:3b:1d:9f:
c4:64:c5:de:d6:cc:e8:f2:e4:0d:25:c6:8a:78:0f:
a4:09:94:55:6d:ca:9c:86:3a:b2:17:54:55:90:32:
e1:42:9e:66:98:e8:69:77:e1:55:9e:83:67:c8:1e:
53:cf:a8:20:f3:73:92:a1:6a:1d:74:0e:e8:b9:90:
47:4f:8c:5c:a2:c2:05:b0:c4:c1:39:b0:59:09:b0:
5e:ed:bd:1b:c1:d2:48:41:ba:42:3b:35:7c:a3:32:
25:6c:35:dc:de:c3:05:ca:80:40:0b:d6:30:b9:27:
48:bc:44:5e:1d:ae:f6:54:9f:f6:77:32:20:5f:e4:
ac:aa:e1:93:bf:eb:e0:e2:08:7f:b8:3b:a7:62:1b:
5d:22:e4:ac:73:48:7c:72:1c:87:23:f4:18:c7:8f:
71:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:9A:18:A7:E2:8A:4F:75:F8:C6:2E:A4:C8:24:B8:85:3E:CA:AF:29
X509v3 Authority Key Identifier:
keyid:53:46:33:F1:9F:61:D6:54:6E:BA:BF:7D:E9:FB:7A:A9:87:ED:5B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U0Yz8Z9h1lRuur996ft6qYftW_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/8bf78d-c3b5-4691-8108-f0cad9ff65be/1/1-JoYp-KKT3X4xi6kyCS4hT7Kryk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/8bf78d-c3b5-4691-8108-f0cad9ff65be/1/U0Yz8Z9h1lRuur996ft6qYftW_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.252.0.0/16
Signature Algorithm: sha256WithRSAEncryption
08:8b:59:7c:01:75:c7:a0:16:0d:66:d6:75:22:68:36:74:5c:
72:12:b2:16:02:12:3c:78:37:d2:ee:59:4f:b9:0b:ac:2d:77:
be:60:81:10:a3:8b:5a:77:ef:04:fc:29:dd:81:d9:83:a7:1b:
e5:d1:51:a3:59:e9:b1:f4:78:d8:7d:b1:8e:05:4c:d9:33:01:
76:6f:30:0f:0a:b0:25:47:f7:01:d7:01:e7:f7:98:ca:a3:69:
17:97:c5:67:a3:9e:26:2c:3f:4c:2c:cd:09:7d:85:e8:56:ec:
a1:d5:25:e3:f6:43:e8:f2:82:45:b4:19:26:fc:67:11:db:ec:
10:35:95:16:27:52:f5:4d:01:90:5e:80:6e:b3:d3:ce:ba:96:
df:dc:d8:de:0f:83:ed:1e:d1:3a:76:74:c5:4e:b9:ad:f6:46:
39:64:c2:b9:70:1c:26:85:72:cc:34:84:c5:1f:63:f6:ae:06:
28:8a:42:1b:ae:42:67:5a:10:5c:7a:09:20:5f:e6:a6:65:68:
93:52:59:3d:85:e7:7d:b9:9a:ce:7e:31:a8:6f:b3:50:2e:c0:
7e:ba:11:e9:55:72:22:af:92:fe:c4:bf:d4:51:26:e3:3f:b9:
2b:b8:a0:e4:ec:0e:3d:50:fe:db:23:81:59:83:3b:bc:f0:b0:
0a:3a:0a:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:30 2024 by rpki-client on console-fra.rpki-client.org