Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/KWORTwIvYk9eRi2nf88d3C3DML8.roa
File: KWORTwIvYk9eRi2nf88d3C3DML8.roa (raw, json)
Hash identifier: Nz123LPqKG/uHWVNolrEl/eYmDRTHAQXfP2VqkpFMr8=
Subject key identifier: 29:63:91:4F:02:2F:62:4F:5E:46:2D:A7:7F:CF:1D:DC:2D:C3:30:BF
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 099426AA
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/KWORTwIvYk9eRi2nf88d3C3DML8.roa
Signing time: Wed 23 Mar 2022 03:43:40 +0000
ROA not before: Wed 23 Mar 2022 03:43:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207212
IP address blocks: 2a0e:8f02:f040::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160704170 (0x99426aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Mar 23 03:43:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2963914f022f624f5e462da77fcf1ddc2dc330bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e5:e1:1d:0e:80:bd:6e:77:61:9f:b1:c4:70:
1e:e6:77:b1:07:12:31:da:f5:58:77:78:1f:8c:17:
26:9a:fd:f2:d5:a8:8a:55:6d:05:c5:71:d1:66:c4:
91:da:96:b7:f7:6b:fe:f5:37:c1:4b:e3:c5:ea:d9:
03:24:af:d4:8e:e0:11:7d:65:eb:8e:54:52:74:3a:
38:35:4d:02:cc:5a:0a:af:6c:ad:a7:0a:2c:4c:5b:
00:04:a1:3c:6d:39:2a:7e:06:74:c3:f3:9a:d6:96:
7c:be:e3:d1:7b:ef:13:15:a4:65:70:cb:e6:5b:87:
a6:28:70:19:f0:6b:70:ce:64:67:ba:b7:be:f2:98:
c8:10:bf:d9:3f:4f:6f:fe:ae:e3:4b:29:ff:78:bc:
49:28:bd:b8:a0:06:84:18:d8:e2:20:f8:12:8a:dd:
f3:23:36:b8:76:3d:3f:03:75:f0:72:51:36:82:b6:
c1:34:ab:67:c7:ff:e8:8f:5b:a2:00:26:3b:d6:00:
e0:8e:45:58:16:39:8a:82:3f:58:0d:1d:61:bb:84:
de:ac:9f:16:5f:a0:67:45:68:a7:60:81:00:ca:73:
57:6d:f2:1a:00:89:97:5d:c0:19:82:b6:72:36:f5:
e0:04:27:94:b9:56:d6:0b:62:b9:96:ed:4f:49:82:
30:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:63:91:4F:02:2F:62:4F:5E:46:2D:A7:7F:CF:1D:DC:2D:C3:30:BF
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/KWORTwIvYk9eRi2nf88d3C3DML8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f040::/48
Signature Algorithm: sha256WithRSAEncryption
56:cb:9f:ae:6f:65:be:02:aa:ce:b7:f1:1b:65:1f:e2:74:c2:
cf:e2:35:4c:dc:05:ea:18:75:0c:62:fb:50:63:fd:5c:af:90:
b1:54:93:f1:ae:98:45:ab:fa:cc:e1:a9:ca:cd:c7:a5:3e:f9:
e1:64:a0:37:6c:dd:c9:13:92:1b:21:1d:63:8f:40:89:f9:52:
0f:bc:91:2f:66:51:46:b8:79:86:cb:ba:cf:96:2d:17:c1:32:
bb:0d:ac:39:32:19:04:65:a0:94:d1:88:1b:8e:f1:90:b8:f8:
55:4c:2c:4e:30:56:c2:bc:93:26:7d:f2:ef:27:09:2f:2a:60:
e3:45:94:81:46:d7:5a:6e:aa:99:7a:6f:6d:11:71:95:89:f2:
9b:e1:ae:57:7b:1f:09:8a:9f:dd:84:bf:d1:22:85:34:34:d5:
34:c0:58:14:da:68:2a:7c:72:2c:5c:d0:7c:b3:82:ac:d7:54:
85:39:37:95:75:39:0d:46:d0:01:3c:b0:cc:34:f0:e3:cf:72:
14:39:a1:3e:d7:c2:2a:17:71:09:ff:97:01:f2:31:66:b3:00:
40:60:62:9d:2e:1c:33:c3:07:2a:cb:24:29:4a:4b:59:22:1e:
2d:ec:a6:68:7b:78:96:f0:3f:e4:fc:68:dd:b4:49:fb:aa:d9:
1d:7e:c1:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:12 2023 by rpki-client on console-ams.rpki-client.org