Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/3kJgOvkyqCcgcNTSYyJ4xo4HHq8.roa
File: 3kJgOvkyqCcgcNTSYyJ4xo4HHq8.roa (raw, json)
Hash identifier: ipsgvyULHu8iHrZ/8sSlCuDdBpz+APg3kbcZrFZpA4s=
Subject key identifier: DE:42:60:3A:F9:32:A8:27:20:70:D4:D2:63:22:78:C6:8E:07:1E:AF
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0B4AFDEC
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/3kJgOvkyqCcgcNTSYyJ4xo4HHq8.roa
Signing time: Sat 01 Jan 2022 13:04:59 +0000
ROA not before: Sat 01 Jan 2022 13:04:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57136
IP address blocks: 2a05:b680:9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 189464044 (0xb4afdec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jan 1 13:04:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de42603af932a8272070d4d2632278c68e071eaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:53:12:05:e2:69:ec:e2:fc:be:72:ca:30:35:
4a:08:55:0b:0d:41:2c:63:4f:e8:54:ed:c1:b3:45:
f9:d0:07:74:a5:45:e9:88:a9:6a:85:1f:bb:13:f3:
b2:31:94:15:62:95:8c:fd:ca:8c:37:80:3a:2c:78:
84:f0:e0:96:a3:60:3e:8a:1e:2f:46:c0:ed:e1:90:
3c:63:74:94:ef:f8:4b:aa:85:5c:a7:15:af:89:b5:
f5:7c:99:63:56:29:90:0f:ce:c4:c8:c6:c0:57:31:
6f:6b:ba:da:ee:9e:53:46:25:93:74:76:88:6c:b8:
69:bc:a1:60:04:7d:98:2e:ba:80:4f:a2:dd:0e:a3:
b9:f5:1c:45:87:c0:2f:f6:00:f7:ec:f6:90:9c:ae:
e2:1a:c3:67:42:c6:20:7e:18:d2:a5:e3:82:6d:45:
d0:41:68:d2:a7:6a:55:59:78:f1:11:49:31:a0:7c:
cb:e0:a6:a7:68:48:8e:36:e5:97:26:07:c1:58:4d:
40:d1:62:bb:92:6d:d9:89:60:07:65:e3:ce:4d:cd:
c4:1d:2f:ea:52:da:bc:ff:f3:c0:f9:d6:0d:6b:91:
06:6f:8e:0e:18:22:52:61:3e:66:99:7c:ed:c5:c8:
e7:56:43:ce:52:b9:28:89:ce:ba:8b:a5:7a:dd:10:
5e:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:42:60:3A:F9:32:A8:27:20:70:D4:D2:63:22:78:C6:8E:07:1E:AF
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/3kJgOvkyqCcgcNTSYyJ4xo4HHq8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:b680:9::/48
Signature Algorithm: sha256WithRSAEncryption
0c:86:42:2a:25:17:5c:81:7c:3a:54:0a:fa:8d:7f:0e:66:0b:
05:43:ba:38:f7:7a:1b:a9:0c:31:13:f9:ae:4a:1a:48:f4:17:
16:ef:82:34:ff:bf:c1:ec:7a:c4:ef:7e:82:f6:2d:71:c2:42:
00:ca:63:f2:14:b0:a2:85:e4:dd:b6:93:60:b4:d4:a4:37:75:
ba:de:f0:4e:00:fd:a8:9d:61:00:72:8c:bf:91:28:5b:6a:a4:
13:55:00:dd:6b:b2:2c:eb:05:b1:13:bc:0e:94:e2:9e:7c:e4:
d1:c2:5c:08:f5:b1:e8:de:5a:1e:17:80:ef:96:ba:07:e6:92:
6a:0f:3d:83:0e:3e:1b:b2:11:df:2a:28:1b:a3:26:d0:32:06:
96:91:49:68:2d:37:10:46:d0:f0:5e:07:c8:39:86:61:33:e3:
af:01:67:00:1c:f4:ff:09:e0:2a:66:47:8c:d7:fd:2a:f8:70:
bd:11:60:46:ef:06:20:1e:72:cb:f4:6c:2b:cb:1d:34:c9:ec:
24:b6:29:14:ae:3d:2a:11:ee:24:f9:dc:ce:e0:76:b7:ba:0d:
1e:34:88:69:cb:1d:1a:3a:a7:4f:66:02:4d:e8:ec:a9:95:74:
8c:48:64:c9:cc:f7:b7:3b:f3:1f:10:ff:b8:e5:61:a9:7c:ca:
b9:8f:f9:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:08 2023 by rpki-client on console-fra.rpki-client.org