Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/dBFQwkAwkcrItduWAH5_9-IgkCs.roa
File: dBFQwkAwkcrItduWAH5_9-IgkCs.roa (raw, json)
Hash identifier: Plpqx33XJ/KE5IkzzwjTdrO4NpMrkps6vb2lI4NdZkw=
Subject key identifier: 74:11:50:C2:40:30:91:CA:C8:B5:DB:96:00:7E:7F:F7:E2:20:90:2B
Certificate issuer: /CN=35ac308c94f57b11cee1ba84ef1278447c6785eb
Certificate serial: 14AE19FD
Authority key identifier: 35:AC:30:8C:94:F5:7B:11:CE:E1:BA:84:EF:12:78:44:7C:67:85:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NawwjJT1exHO4bqE7xJ4RHxnhes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/dBFQwkAwkcrItduWAH5_9-IgkCs.roa
Signing time: Sat 01 Jan 2022 14:02:50 +0000
ROA not before: Sat 01 Jan 2022 14:02:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12337
IP address blocks: 2001:67c:1933::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 346954237 (0x14ae19fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35ac308c94f57b11cee1ba84ef1278447c6785eb
Validity
Not Before: Jan 1 14:02:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=741150c2403091cac8b5db96007e7ff7e220902b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:cf:96:3a:7a:59:8c:7d:b0:c5:02:c8:89:b7:
10:97:10:86:c0:cc:bf:ca:29:25:45:48:b3:cf:30:
8d:e5:7b:45:fd:b3:d0:ad:e5:f8:d3:03:c9:4d:9a:
26:03:ae:a7:3b:fc:07:42:c5:f0:e2:b5:08:b5:c4:
d3:ce:e3:6e:d7:67:b9:00:0c:23:ec:0c:c6:f5:41:
d8:ad:9c:24:21:a7:e9:b5:a8:e6:ef:28:04:23:fa:
3c:0a:8a:ec:40:8d:6e:88:11:94:82:58:fe:a0:cd:
3b:cf:c8:b8:79:f4:f7:e0:d4:c5:30:0e:7e:39:80:
14:9d:f6:4c:ec:0b:a6:ce:f2:59:f5:26:14:ad:de:
7b:1f:c7:ff:29:00:47:03:5f:3f:fa:cb:81:9e:40:
13:79:19:f0:34:59:4b:c2:eb:8a:a7:3d:01:d1:8f:
09:fc:63:89:f6:11:a0:4f:a3:ad:72:5d:35:96:5b:
33:72:4e:e6:ce:6b:79:26:09:af:9b:74:e1:58:4d:
86:7a:26:88:bc:da:81:d2:96:26:47:f8:83:cd:b2:
01:04:97:e4:dc:c4:7a:99:41:37:ee:10:4b:11:df:
dd:60:38:6b:81:37:8b:c8:e4:f7:4a:27:67:6d:f5:
62:03:f1:a6:72:82:e5:02:0e:5a:d6:bc:11:07:0a:
9f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:11:50:C2:40:30:91:CA:C8:B5:DB:96:00:7E:7F:F7:E2:20:90:2B
X509v3 Authority Key Identifier:
keyid:35:AC:30:8C:94:F5:7B:11:CE:E1:BA:84:EF:12:78:44:7C:67:85:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NawwjJT1exHO4bqE7xJ4RHxnhes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/dBFQwkAwkcrItduWAH5_9-IgkCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1933::/48
Signature Algorithm: sha256WithRSAEncryption
12:bc:4b:5d:09:64:ac:1a:08:bc:f4:77:5d:68:07:ab:d4:c5:
05:fb:09:a0:c2:25:84:29:13:05:ad:0e:19:c6:41:f2:b5:ce:
f3:1e:e8:52:f2:d6:a7:36:ec:50:0e:20:ff:27:43:1c:92:2c:
e3:a0:97:a4:ad:8d:11:df:d5:6c:d9:a5:3d:c6:52:b4:2d:62:
62:65:e6:8b:36:ee:a1:94:2c:80:17:9f:39:6a:63:99:7a:48:
a5:32:bc:99:19:99:3a:fd:1f:18:5c:03:0b:b6:e6:72:04:ad:
9e:f5:5c:ce:13:5e:c4:c0:d8:98:43:1d:ad:3d:a4:6e:43:05:
77:3b:32:f8:ad:12:8b:d2:23:de:e7:a9:7d:55:75:48:03:8f:
d6:61:26:a2:7e:1f:1e:52:0d:c9:7d:5e:e9:2e:c7:6e:38:86:
b5:da:2c:f5:91:d3:33:b5:ad:40:3e:78:b0:9a:50:3e:d1:29:
d0:74:8f:53:c8:95:fd:62:30:4b:06:2b:1f:05:be:63:c3:93:
77:44:77:70:f8:a5:c9:88:1d:7c:42:e8:b7:4b:44:8c:72:a7:
7a:10:da:6a:c6:e4:f2:7d:e8:a9:e2:bd:c4:16:cd:85:4e:03:
56:84:48:8b:d6:ac:2d:86:92:d3:9d:3c:47:64:50:ae:89:ed:
58:25:be:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:46 2024 by rpki-client on console-fra.rpki-client.org