Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/tLP_iW-9fgz1EBB-ddUFSYXpYFk.roa
File: tLP_iW-9fgz1EBB-ddUFSYXpYFk.roa (raw, json)
Hash identifier: 36dgURlgB1WgxHtNo4Z9P/7B5v5uOQ/NoW0FrI5oBYU=
Subject key identifier: B4:B3:FF:89:6F:BD:7E:0C:F5:10:10:7E:75:D5:05:49:85:E9:60:59
Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Certificate serial: 01855D3F131130B3B70A22C166D52DF886A6
Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/tLP_iW-9fgz1EBB-ddUFSYXpYFk.roa
Signing time: Thu 29 Dec 2022 09:38:12 +0000
ROA not before: Thu 29 Dec 2022 09:38:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210816
IP address blocks: 2a10:4646:c0::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:5d:3f:13:11:30:b3:b7:0a:22:c1:66:d5:2d:f8:86:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Validity
Not Before: Dec 29 09:38:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4b3ff896fbd7e0cf510107e75d5054985e96059
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:af:f6:c3:33:a2:3a:01:4f:53:e5:ee:1b:77:
2f:2e:84:38:ac:b8:f9:b5:96:9a:71:7a:f4:3d:e0:
63:0f:33:db:8b:5d:27:97:a8:c4:3f:68:8d:aa:0d:
0c:85:67:d3:7b:f2:cc:f4:3f:a8:ad:d5:18:49:4b:
54:5b:d3:85:1d:14:02:5a:35:ac:1a:0e:9d:4c:0b:
8a:41:bb:93:b1:a8:ea:8a:01:1b:74:fc:4c:a0:5e:
e5:1b:80:97:56:fa:7c:03:8f:67:4f:98:7b:e5:1b:
19:08:f1:68:ce:6e:cf:ba:e9:c1:96:42:67:c6:d7:
5c:7f:c3:b8:38:26:16:0b:34:ab:99:2f:d8:f5:f2:
89:73:dd:d0:a7:2e:b2:90:bd:97:e4:ae:6e:e0:f0:
4b:6f:ea:73:18:4c:a3:58:02:09:fb:4f:c5:46:7a:
58:3d:f6:3e:98:01:54:ba:0f:63:b3:b8:80:f3:40:
8e:21:d2:95:10:8f:ba:31:c8:2e:7a:ed:ee:12:45:
09:68:37:61:08:08:15:86:73:f7:2d:06:89:ad:d7:
62:c3:f4:21:90:62:ab:d8:32:4a:96:ce:89:d4:23:
63:e6:c7:55:8b:4c:ca:90:c7:4a:58:fb:50:2f:0f:
db:bd:24:36:57:c6:9c:44:c5:e4:12:7a:3b:de:b7:
0c:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:B3:FF:89:6F:BD:7E:0C:F5:10:10:7E:75:D5:05:49:85:E9:60:59
X509v3 Authority Key Identifier:
keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/tLP_iW-9fgz1EBB-ddUFSYXpYFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:c0::/44
Signature Algorithm: sha256WithRSAEncryption
1c:ed:cc:c0:b0:2f:79:82:65:51:65:e0:c7:09:ee:2c:19:88:
55:39:4d:2a:cc:e2:31:c0:04:88:89:ab:32:2b:e7:f3:60:9e:
d0:40:06:d7:8b:b0:8a:cc:c5:f1:19:1e:25:23:5b:e3:f6:dc:
40:60:c9:0b:f6:d1:2f:a5:a7:48:ce:c6:2b:69:31:57:d0:e5:
13:a5:97:4a:c4:b9:dc:e0:5b:c7:50:53:b9:7e:de:45:88:3f:
85:98:52:99:cf:4b:a3:d6:7d:7c:b2:55:bf:9f:ae:2b:03:b9:
ec:eb:86:27:b9:9d:1d:ea:32:a2:4e:66:1d:ed:f7:1b:9b:c3:
4c:90:37:b1:f0:06:c9:cf:28:25:fa:8d:a3:85:82:72:f3:c2:
5d:64:75:ea:f6:af:28:2d:6d:cf:91:2d:0d:55:0e:8e:39:7c:
fd:cb:98:e1:29:42:36:9f:dc:fe:06:72:a8:a1:7a:d4:de:96:
89:21:bc:b5:15:76:59:9f:97:0a:77:59:5d:26:ef:3b:98:33:
70:b4:b5:64:3f:21:b3:bc:1e:a7:02:e5:5a:c1:ee:dd:dc:fe:
c4:04:44:9c:b4:06:ca:96:d9:14:5e:f9:0d:53:43:fb:27:d8:
36:41:ec:38:13:7d:34:53:08:cd:25:4f:03:5b:bb:aa:78:56:
65:e4:72:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:43 2024 by rpki-client on console-ams.rpki-client.org