Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/UpnpHHtJs5wYQNLbmctPAU3Bt_g.roa
File: UpnpHHtJs5wYQNLbmctPAU3Bt_g.roa (raw, json)
Hash identifier: K2ZJaddwmniNC8BZZKJ9Ks8DgsKhpk1dJt8jcATcDhk=
Subject key identifier: 52:99:E9:1C:7B:49:B3:9C:18:40:D2:DB:99:CB:4F:01:4D:C1:B7:F8
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 08C7A205
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/UpnpHHtJs5wYQNLbmctPAU3Bt_g.roa
Signing time: Sat 01 Jan 2022 14:02:03 +0000
ROA not before: Sat 01 Jan 2022 14:02:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212746
IP address blocks: 2a0e:8f02:2040::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147300869 (0x8c7a205)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 14:02:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5299e91c7b49b39c1840d2db99cb4f014dc1b7f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:31:63:2f:74:41:22:4d:1c:50:d6:9e:7a:25:
60:b1:d8:bf:53:3f:80:03:3c:64:8b:76:8b:db:f0:
a2:06:ac:b9:00:a5:1a:cb:2a:c9:65:91:af:b1:61:
bc:07:36:ba:00:44:43:02:57:f2:04:4d:cd:88:65:
e3:08:a7:5a:29:a3:64:6d:d1:b7:c9:31:e7:ff:a4:
84:7f:86:b0:4d:36:2d:9f:3b:cc:c6:f4:7c:c3:ca:
bd:fa:09:9d:98:40:cc:65:5d:ef:7b:b1:db:f8:bb:
c1:70:f3:55:5a:15:1b:57:0c:3a:de:ac:68:84:f8:
e8:3b:e9:28:a2:f7:90:87:ef:61:fa:3a:72:f8:0a:
49:9f:50:52:db:47:f6:c8:9d:05:78:ed:fc:2b:1d:
18:cf:f1:15:d4:09:0c:0d:a5:f0:bb:a9:fc:10:5f:
12:15:3c:8d:f0:af:c0:29:d1:fd:4e:cd:3a:31:9b:
b7:b0:ca:cf:ff:b1:a4:09:f8:87:6e:f7:d1:36:9d:
cf:b3:c6:92:8f:64:0b:df:87:20:b3:31:16:65:53:
41:eb:90:16:4b:d8:76:f6:34:5e:12:97:e8:f0:dc:
0e:66:e9:d9:6f:d4:07:1d:fc:b9:6b:4e:23:65:cd:
d4:c1:af:37:92:51:97:c6:6a:96:87:79:4e:a4:8b:
86:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:99:E9:1C:7B:49:B3:9C:18:40:D2:DB:99:CB:4F:01:4D:C1:B7:F8
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/UpnpHHtJs5wYQNLbmctPAU3Bt_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:2040::/44
Signature Algorithm: sha256WithRSAEncryption
91:a4:e7:3a:cd:13:36:c2:ef:c8:84:6f:8f:f9:76:e3:3d:fc:
79:18:43:64:5a:fd:07:07:33:9b:a8:3c:4e:70:5b:0c:98:3d:
a5:15:5a:02:00:4e:ba:d8:6c:c9:3d:c5:b1:5f:52:95:77:c2:
b7:88:d1:89:18:43:6c:11:4a:11:df:90:4d:78:a7:28:1e:df:
31:79:ad:7e:db:1b:37:54:b7:7b:b6:cc:c5:e4:49:18:6c:f1:
0f:8d:0b:05:d0:2b:7d:8f:67:88:d9:b8:95:cd:62:ef:f3:65:
98:fb:86:86:fe:22:a8:97:9d:ad:6a:77:6f:3e:6e:0c:a9:d5:
b3:ac:70:26:5b:ef:54:34:45:ad:31:a9:58:53:6c:88:08:0a:
30:5b:45:20:65:9b:ec:4e:41:51:c8:55:6f:ff:13:71:f0:9b:
a6:14:8a:28:68:17:c9:9d:65:72:59:8d:73:a2:cd:39:8f:07:
f6:c7:7d:15:98:68:56:fb:2e:fc:80:a9:f1:34:f6:49:a6:e8:
a0:44:96:88:2e:6b:b7:81:ba:cc:cf:ce:23:9f:32:d4:09:f9:
60:f3:80:65:f2:9d:97:d4:9b:42:69:9e:78:b7:95:c5:2b:c1:
9b:3e:0f:d8:76:60:78:2c:d7:4c:05:ba:34:b0:e3:8e:8d:4a:
69:be:ca:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:24 2023 by rpki-client on console-fra.rpki-client.org