Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/393842-e7ef-4893-9c1b-1e842118db6f/1/92MtVO_OjXl8Ef3EyYKX4yJf5ks.roa
File: 92MtVO_OjXl8Ef3EyYKX4yJf5ks.roa (raw, json)
Hash identifier: fQj5BTLQiqvrmz/mRBE9ZUXDiUJtH9HmOQAKivUcztc=
Subject key identifier: F7:63:2D:54:EF:CE:8D:79:7C:11:FD:C4:C9:82:97:E3:22:5F:E6:4B
Certificate issuer: /CN=29b79380fe407439cc2ecd3fac18157db36cf768
Certificate serial: 0406D14C
Authority key identifier: 29:B7:93:80:FE:40:74:39:CC:2E:CD:3F:AC:18:15:7D:B3:6C:F7:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KbeTgP5AdDnMLs0_rBgVfbNs92g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/393842-e7ef-4893-9c1b-1e842118db6f/1/92MtVO_OjXl8Ef3EyYKX4yJf5ks.roa
Signing time: Mon 04 Jul 2022 11:00:25 +0000
ROA not before: Mon 04 Jul 2022 11:00:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204550
IP address blocks: 2a05:6740:40c4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67555660 (0x406d14c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29b79380fe407439cc2ecd3fac18157db36cf768
Validity
Not Before: Jul 4 11:00:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f7632d54efce8d797c11fdc4c98297e3225fe64b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:7e:db:2f:63:ba:5e:f7:2b:2d:d7:d2:24:7f:
a7:95:68:a4:9a:a9:ff:c1:6d:48:0e:d8:9c:d1:72:
96:d7:c0:db:7c:83:60:74:79:78:d7:df:cf:31:d7:
5a:30:65:9c:20:3f:4b:d6:d5:6b:73:17:ad:c7:f3:
bb:a6:49:3d:14:a7:04:ec:be:b0:c7:06:d6:3d:e9:
7d:50:da:6c:b7:1b:df:c7:ca:4f:ff:8c:73:4b:bc:
8d:ec:7f:ac:67:ff:94:d1:e5:f5:63:f6:c9:97:a2:
4b:0b:f7:70:54:00:2c:b8:69:c4:6f:83:ec:0b:5e:
f5:f7:fb:56:22:bf:a1:35:24:06:6c:ca:b3:12:18:
d1:55:64:0c:4c:04:72:1c:bf:f9:ff:ba:2f:b8:14:
e8:2e:f2:d0:74:0d:0c:b1:fb:9e:76:43:7d:99:80:
3d:9a:4c:94:c5:b0:20:42:ee:29:9c:94:e1:da:1d:
a3:15:fc:10:5e:cb:eb:e8:4b:4e:7d:b2:a3:08:8c:
bc:f7:91:de:f8:76:04:30:84:86:04:9d:ab:c2:94:
37:21:43:b0:4d:2f:7b:86:97:6c:5d:d1:93:43:59:
d1:41:b2:82:16:88:0c:e6:e0:82:67:5b:84:bd:d7:
49:24:54:0b:0f:1c:61:9d:44:5d:16:6b:44:73:9f:
99:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:63:2D:54:EF:CE:8D:79:7C:11:FD:C4:C9:82:97:E3:22:5F:E6:4B
X509v3 Authority Key Identifier:
keyid:29:B7:93:80:FE:40:74:39:CC:2E:CD:3F:AC:18:15:7D:B3:6C:F7:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KbeTgP5AdDnMLs0_rBgVfbNs92g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/393842-e7ef-4893-9c1b-1e842118db6f/1/92MtVO_OjXl8Ef3EyYKX4yJf5ks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/393842-e7ef-4893-9c1b-1e842118db6f/1/KbeTgP5AdDnMLs0_rBgVfbNs92g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:6740:40c4::/48
Signature Algorithm: sha256WithRSAEncryption
54:43:fb:38:f3:65:2d:cc:24:07:e8:ef:cc:b6:ea:08:a9:fb:
18:ca:bf:60:8a:55:26:7d:f4:2f:a9:64:ca:39:6a:0e:06:64:
8e:ff:ff:45:58:8b:c9:d5:fa:de:e6:4e:bd:97:ff:4f:4a:72:
26:59:b1:8b:75:0e:95:ab:f0:f8:fd:91:67:16:ff:da:b8:13:
56:aa:9d:0a:57:fd:46:8d:56:72:6d:2d:ba:ec:8a:ed:c4:ce:
c8:1c:58:63:4a:52:fe:45:0a:f0:2e:a9:0f:bc:56:ae:ef:49:
50:43:cb:c7:1a:bd:5c:b7:1b:d9:a2:7a:d6:5b:68:87:cd:84:
32:54:51:9c:a9:a2:ac:54:3b:a5:20:e9:21:6f:d4:96:51:0e:
9f:b9:fb:d2:9a:bb:c4:7f:ed:25:58:15:8b:8d:df:19:79:ce:
c8:71:b2:1e:0e:56:49:14:83:bd:6b:56:17:77:8f:07:27:c4:
e7:1a:80:7f:6d:87:b7:65:15:5b:8c:68:71:8f:15:fa:cf:3a:
c0:ce:22:5c:78:ba:90:d4:10:8b:73:fd:7b:7a:db:90:90:95:
99:a7:17:a1:de:33:98:f0:59:1f:16:ae:45:7f:eb:bb:48:6e:
cf:24:e3:4d:0b:fd:9f:ef:c7:c6:48:77:1e:1b:ad:96:f4:d9:
3e:38:ad:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:02 2023 by rpki-client on console-fra.rpki-client.org