Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/ka11mAeK8x508Cnj2wcTUxVSKa0.roa
File: ka11mAeK8x508Cnj2wcTUxVSKa0.roa (raw, json)
Hash identifier: lJA6m7CqVB8tXmRx4tyI93jHHn3K1Ql+tcoK2FgIJIA=
Subject key identifier: 91:AD:75:98:07:8A:F3:1E:74:F0:29:E3:DB:07:13:53:15:52:29:AD
Certificate issuer: /CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Certificate serial: 02590C53
Authority key identifier: C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/ka11mAeK8x508Cnj2wcTUxVSKa0.roa
Signing time: Sat 01 Jan 2022 11:01:40 +0000
ROA not before: Sat 01 Jan 2022 11:01:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210770
IP address blocks: 2a05:4140:105::/48 maxlen: 48
2a05:4140:103::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39390291 (0x2590c53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Validity
Not Before: Jan 1 11:01:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91ad7598078af31e74f029e3db071353155229ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:40:e8:f9:37:3f:b1:ed:87:62:e6:03:83:40:
64:8f:b8:ac:3d:c5:43:62:50:4d:65:7f:7e:b1:e2:
72:93:ab:04:1d:89:1d:51:f2:8a:e5:83:c8:1b:e0:
53:0e:8c:41:93:b6:35:88:a9:35:82:fc:7a:f4:f4:
39:a4:b2:0a:90:56:00:a9:c3:0d:a3:b7:ba:ce:92:
21:fb:1b:65:ac:4e:3a:61:9e:28:3a:38:15:38:74:
fd:79:7f:39:43:bb:1e:66:35:e4:21:78:3a:1f:77:
5b:46:48:7b:1d:16:d0:ba:68:31:8e:93:98:16:28:
b7:0e:0e:98:91:53:33:75:45:31:05:70:03:d6:07:
53:57:17:a0:4d:a3:59:3d:c1:b8:18:bf:52:ea:8b:
ae:31:c2:dd:44:a2:1d:d4:80:52:6c:25:35:f2:c4:
f6:f6:79:78:b0:bc:37:a7:85:27:fe:7d:05:ac:dc:
4d:e8:c2:9e:41:b1:1e:84:7b:f7:75:89:f3:07:89:
33:9c:ea:ca:f3:ca:16:3f:3b:76:0b:1d:5b:0f:a6:
69:cf:14:f0:0f:68:7b:20:2e:8c:ae:d9:a1:9e:33:
a0:48:09:c3:c1:29:20:dc:1f:7f:68:47:ef:ff:a1:
8e:a3:5a:26:ce:49:80:d0:95:48:01:bf:74:e1:12:
3a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:AD:75:98:07:8A:F3:1E:74:F0:29:E3:DB:07:13:53:15:52:29:AD
X509v3 Authority Key Identifier:
keyid:C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/ka11mAeK8x508Cnj2wcTUxVSKa0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/x0xgresM1XaM91b1YrG1zFucGAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:4140:103::/48
2a05:4140:105::/48
Signature Algorithm: sha256WithRSAEncryption
75:0f:52:51:ff:8f:d8:70:67:42:86:17:4e:32:e8:25:a7:de:
57:77:0f:5c:79:d5:44:7d:e6:09:7a:d4:10:64:a4:ca:2a:fa:
b9:8a:82:c0:b8:cd:21:31:9f:b6:8b:66:fb:a9:ca:f4:23:7c:
04:34:a4:74:5f:f7:8a:f8:ab:fd:11:fa:67:d9:31:64:5b:c5:
61:9f:86:14:7e:9a:14:5e:86:5f:f1:ce:6e:af:4c:0d:3a:08:
3b:28:bf:2d:d5:5e:62:2d:22:d2:1b:0e:fc:d2:08:72:ff:7c:
5b:88:8d:eb:09:2f:9a:ac:31:77:59:d1:a1:af:b3:de:f6:45:
c1:bf:7c:f8:56:61:f2:9f:c3:b3:f3:22:0e:8b:32:91:e2:e7:
11:f1:02:e0:a5:52:a8:82:9b:19:fd:2f:36:d9:d6:9d:2e:2a:
37:fb:cd:b2:c8:86:78:bc:f2:c7:0a:a4:85:b4:22:81:80:6c:
c2:49:ed:a0:af:82:7a:b6:a7:4d:22:b8:1e:d2:5a:50:42:59:
3d:3a:c9:37:e9:d2:fa:a7:fe:df:eb:79:e5:fe:c7:61:71:d2:
7d:5c:8f:62:8f:cf:eb:ba:b7:48:92:1d:f4:25:e6:75:23:47:
92:dc:1e:ff:27:88:c7:4f:53:4d:74:95:0b:68:86:9e:d9:8f:
1c:f9:a7:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:06 2023 by rpki-client on console-fra.rpki-client.org