Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/kPR0WSxL1EGHmb6O9lIlOBGvMng.roa
File: kPR0WSxL1EGHmb6O9lIlOBGvMng.roa (raw, json)
Hash identifier: hjvDn2x+co4N55m176cawNopBQ382sqZJO6aSgrYbVQ=
Subject key identifier: 90:F4:74:59:2C:4B:D4:41:87:99:BE:8E:F6:52:25:38:11:AF:32:78
Certificate issuer: /CN=fb987244611b5230536744b6a89f044f32f462ea
Certificate serial: 091D3F00
Authority key identifier: FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/kPR0WSxL1EGHmb6O9lIlOBGvMng.roa
Signing time: Fri 18 Mar 2022 06:44:28 +0000
ROA not before: Fri 18 Mar 2022 06:44:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47583
IP address blocks: 2a00:1eb8:c006::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152911616 (0x91d3f00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb987244611b5230536744b6a89f044f32f462ea
Validity
Not Before: Mar 18 06:44:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90f474592c4bd4418799be8ef652253811af3278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:9c:85:0a:47:26:0b:56:74:13:7b:ab:4a:17:
53:72:43:71:0e:a7:01:c6:42:e4:25:f8:10:4d:78:
cc:9a:82:7f:fa:b0:0f:62:7a:e2:83:18:c8:06:76:
ac:04:b7:6f:6a:03:fa:73:13:6d:b2:84:b2:55:d5:
17:9c:cb:c8:4a:bb:d3:0a:a1:3c:c7:64:c3:d4:2b:
50:d0:bf:d9:cb:28:5f:f9:06:4e:1b:90:54:f5:a7:
74:50:97:10:3d:e4:68:8d:31:9a:13:a7:13:d5:35:
8a:3a:c5:3a:49:46:bb:72:05:9b:0e:b5:de:4c:66:
94:f9:3f:ee:ee:e4:41:46:27:6c:b1:98:b0:57:76:
81:34:11:45:21:be:e2:5b:5d:c2:5f:11:f7:a4:f7:
0b:ab:80:01:47:62:f6:fe:20:f4:a9:8e:1a:86:08:
0e:63:1f:02:a9:e6:94:3b:e3:68:10:98:e8:43:ca:
9b:c5:a3:46:b7:c9:d0:64:02:73:53:b2:1b:2f:29:
d3:c0:be:55:7e:f1:fd:e4:42:36:a7:d0:75:de:50:
81:76:50:7d:90:29:21:58:a7:85:4e:d4:76:8a:11:
1f:ea:f5:f5:84:3f:82:12:b5:38:07:0a:7b:e4:09:
e7:3a:10:96:e3:c7:8b:75:ef:17:86:ab:e1:0b:e8:
cf:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:F4:74:59:2C:4B:D4:41:87:99:BE:8E:F6:52:25:38:11:AF:32:78
X509v3 Authority Key Identifier:
keyid:FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/kPR0WSxL1EGHmb6O9lIlOBGvMng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1eb8:c006::/48
Signature Algorithm: sha256WithRSAEncryption
86:5e:37:24:42:5b:3e:ee:24:60:0a:de:86:cb:99:99:72:34:
de:e6:da:91:e0:b8:d3:45:19:85:03:c2:e6:d9:66:fb:db:d3:
c5:77:5f:5a:31:82:60:e7:3f:23:53:07:18:ec:da:7b:43:67:
3a:99:da:00:53:22:d1:f4:e7:16:db:64:2c:11:13:cc:eb:ae:
f1:0b:91:87:e1:52:3b:72:6e:44:4c:ba:5d:b0:78:c3:1d:67:
98:9c:37:ea:1c:f4:e0:62:67:81:d9:29:48:18:2a:4f:af:ce:
ec:22:a8:c1:10:13:6d:c1:46:ab:bb:b2:85:6b:17:8d:43:41:
3e:94:e6:e9:d6:8d:ec:de:c3:86:d0:e3:bd:86:bc:6a:85:c9:
54:5c:6d:dd:07:3d:39:d1:b9:16:e0:15:6c:ed:ae:7c:90:69:
2a:b7:73:37:a9:ff:7f:73:60:d0:ee:61:1d:93:e0:91:fb:35:
33:48:e4:e8:17:3b:b3:18:3f:0a:3d:92:10:96:3c:57:66:fb:
da:73:42:dc:8d:c3:ab:e7:8e:ed:87:d1:e4:8b:47:cc:2d:a3:
7f:61:5a:0d:1b:a3:42:db:0c:37:4d:7f:eb:b7:dd:8d:5d:68:
d7:6d:03:5b:15:d6:dd:62:28:d8:8e:9e:90:e0:a2:08:bb:43:
a4:b0:36:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:14 2023 by rpki-client on console-fra.rpki-client.org