Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/C_nWL_yJ1xu7PHyq8vWxZPprYR4.roa
File: C_nWL_yJ1xu7PHyq8vWxZPprYR4.roa (raw, json)
Hash identifier: hyWE02wizMHG4Q1e+HoC/fDSoBUrCD3Q8SF14qA9h0U=
Subject key identifier: 0B:F9:D6:2F:FC:89:D7:1B:BB:3C:7C:AA:F2:F5:B1:64:FA:6B:61:1E
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 091E896F
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/C_nWL_yJ1xu7PHyq8vWxZPprYR4.roa
Signing time: Sat 01 Jan 2022 16:00:42 +0000
ROA not before: Sat 01 Jan 2022 16:00:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205749
IP address blocks: 2a0b:b86:fe00::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152996207 (0x91e896f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 16:00:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0bf9d62ffc89d71bbb3c7caaf2f5b164fa6b611e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:cf:c9:4e:fc:d3:b0:34:b4:66:e2:6c:7e:86:
d1:e5:e4:8f:d1:b0:eb:98:a9:37:44:63:91:15:b6:
30:fd:d5:65:d7:4c:4f:8a:f7:ac:2c:97:c5:10:74:
56:0b:b1:10:48:55:48:f2:5c:2e:5b:26:35:2a:fe:
52:7e:af:29:0f:cc:d7:8e:09:f5:9d:d2:06:e3:89:
34:8d:12:8b:f4:92:fe:a6:e3:f6:63:36:5e:3f:25:
4b:46:5d:f3:56:4c:b5:70:e1:e1:fb:8b:66:73:f6:
62:ab:89:71:d0:0e:54:6e:51:89:0f:d4:ac:18:79:
cb:fe:7c:46:34:07:ff:90:44:52:60:a6:44:7f:86:
ad:bf:27:3d:35:1c:4b:66:a7:53:e6:ea:66:af:25:
06:02:d9:c6:28:9f:66:08:14:c4:23:4c:aa:29:e9:
43:15:9b:a0:9b:93:32:22:45:71:1b:64:31:2c:2d:
d1:56:7e:08:b2:a3:e7:e4:3a:cb:18:89:6d:68:c2:
8e:75:44:72:5b:88:3d:01:13:50:1e:82:cf:87:b1:
f7:08:97:44:2b:b7:8c:13:2e:cf:f4:23:c4:13:0d:
95:10:98:87:0d:1c:9f:0c:35:12:58:52:97:bd:04:
d1:df:e4:f6:8a:8e:75:1a:9d:be:b2:3f:a4:61:5d:
df:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:F9:D6:2F:FC:89:D7:1B:BB:3C:7C:AA:F2:F5:B1:64:FA:6B:61:1E
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/C_nWL_yJ1xu7PHyq8vWxZPprYR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:b86:fe00::/40
Signature Algorithm: sha256WithRSAEncryption
0c:99:8e:4a:d5:fe:9d:5a:7c:95:00:d9:2a:32:55:41:78:5e:
69:3e:71:fc:01:02:23:f4:7d:7d:a2:69:74:a5:de:ec:1b:9f:
17:54:72:b1:1a:a1:11:99:91:80:55:e7:94:37:89:f4:7c:92:
2d:09:98:8a:c1:32:68:59:0f:ae:85:3a:8e:13:28:96:f0:08:
c6:29:5f:d8:b9:2a:8b:b1:ff:6d:6d:dc:e1:6a:76:ed:ee:fe:
55:b2:f1:76:42:33:34:cb:dd:d0:bf:0e:80:0a:54:ac:17:30:
c2:05:6b:a9:b0:e8:9e:d8:44:9c:a9:ba:e7:22:4d:7c:df:be:
06:d4:50:96:63:36:5f:24:81:94:50:b5:31:50:5f:5b:2b:7c:
bf:77:2f:34:b1:d2:70:0c:7d:2a:36:a6:36:24:18:17:3a:32:
e3:64:a8:9a:56:d4:42:d7:ff:1d:2e:95:fe:58:09:41:ae:4c:
4c:e4:e9:b9:7d:40:c9:53:b8:8b:40:f5:ac:4e:76:3d:55:06:
70:26:d9:f8:bb:05:ee:cb:a1:50:27:14:b9:6e:4e:a4:d6:77:
41:a1:92:d0:4b:92:98:84:89:cd:ad:94:15:42:13:98:d4:47:
4b:1a:61:2a:c6:db:4f:37:67:68:80:8e:63:52:4a:94:a0:90:
31:37:f8:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:39 2024 by rpki-client on console-ams.rpki-client.org