Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/5e5c30-8aa4-47e8-bd8f-fbe1a0d0aa98/1/4KH_vZMF_fTrRkIDJ9rSG8v8-ZM.roa
File: 4KH_vZMF_fTrRkIDJ9rSG8v8-ZM.roa (raw, json)
Hash identifier: 1dupkr5RxFWiYO9b+XgutSB0v1Sb7kiVfj3HeEMc/w0=
Subject key identifier: E0:A1:FF:BD:93:05:FD:F4:EB:46:42:03:27:DA:D2:1B:CB:FC:F9:93
Certificate issuer: /CN=557b0ac10b8642a27dd3d74ed6cb5ee045e67b97
Certificate serial: 01851104038A13D8BF8A2B46EC3B8DD97D08
Authority key identifier: 55:7B:0A:C1:0B:86:42:A2:7D:D3:D7:4E:D6:CB:5E:E0:45:E6:7B:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VXsKwQuGQqJ909dO1ste4EXme5c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/5e5c30-8aa4-47e8-bd8f-fbe1a0d0aa98/1/4KH_vZMF_fTrRkIDJ9rSG8v8-ZM.roa
Signing time: Wed 14 Dec 2022 14:22:33 +0000
ROA not before: Wed 14 Dec 2022 14:22:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44814
IP address blocks: 2a01:4a40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:11:04:03:8a:13:d8:bf:8a:2b:46:ec:3b:8d:d9:7d:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=557b0ac10b8642a27dd3d74ed6cb5ee045e67b97
Validity
Not Before: Dec 14 14:22:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0a1ffbd9305fdf4eb46420327dad21bcbfcf993
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:d6:a5:19:a6:06:01:2b:12:d2:75:47:02:2a:
3f:ef:c3:ff:05:a7:00:f9:bd:fe:e9:57:99:01:bb:
3e:8a:32:8b:39:2a:f5:00:60:7c:c3:fb:d5:e6:4a:
5f:b2:0e:b5:7d:01:56:71:9c:27:a6:2c:03:21:b6:
9a:81:5a:6e:fb:62:43:20:6b:29:19:a7:d8:f2:d3:
a2:ce:0d:1a:36:94:73:84:c9:f3:4b:46:4a:45:87:
fa:6c:af:06:b7:46:c7:ad:0d:40:ab:d1:07:52:f2:
bd:1b:f0:1f:c9:cf:24:e6:4f:df:6e:86:15:0d:7f:
2a:d6:30:cd:a8:b0:39:0b:00:5b:38:9b:73:46:7d:
5c:76:ae:5e:bc:12:45:0a:8b:4b:bc:27:4e:47:e9:
de:68:bb:82:d3:f0:56:cc:dc:94:61:12:85:f2:8d:
f7:40:eb:9f:d0:26:bc:da:23:21:5b:c8:ef:63:b8:
d9:50:1f:e8:88:04:52:75:1c:9d:7d:02:e7:14:f3:
12:db:de:3f:c7:bb:31:fe:35:f8:25:c4:af:34:7d:
6b:32:94:69:e7:0b:0d:5b:99:cb:f3:b4:a1:6b:48:
5c:c9:fd:a4:d3:de:52:82:fc:6c:79:eb:3e:dd:1a:
05:9e:8b:63:44:87:ad:e4:f4:a6:53:51:39:cc:2a:
b7:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:A1:FF:BD:93:05:FD:F4:EB:46:42:03:27:DA:D2:1B:CB:FC:F9:93
X509v3 Authority Key Identifier:
keyid:55:7B:0A:C1:0B:86:42:A2:7D:D3:D7:4E:D6:CB:5E:E0:45:E6:7B:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VXsKwQuGQqJ909dO1ste4EXme5c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/5e5c30-8aa4-47e8-bd8f-fbe1a0d0aa98/1/4KH_vZMF_fTrRkIDJ9rSG8v8-ZM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/5e5c30-8aa4-47e8-bd8f-fbe1a0d0aa98/1/VXsKwQuGQqJ909dO1ste4EXme5c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:4a40::/32
Signature Algorithm: sha256WithRSAEncryption
3c:7c:4b:74:bf:97:14:27:61:c3:82:1f:ff:22:69:55:15:52:
dd:4c:f8:8d:47:c6:59:5b:71:95:47:8a:b8:c8:bc:e9:af:f4:
3c:9f:9d:f2:df:7e:21:f0:06:c0:85:2d:99:8c:a0:2f:45:11:
2a:de:eb:df:7e:79:b7:af:c9:8b:de:43:2f:49:28:b9:ba:0f:
5a:38:65:a8:0f:a8:aa:3e:bd:f1:73:24:fb:e4:21:95:e0:77:
5c:4c:fd:7a:78:e4:2f:f7:d1:66:21:77:34:2d:7a:6e:5f:04:
c6:8b:e9:8a:8a:a1:2b:a2:4d:18:19:1f:9c:25:0f:a8:9a:55:
82:cf:59:20:c1:dd:c4:9b:f6:a1:ca:fb:0d:ce:f6:d2:68:6d:
70:f5:75:3c:53:2e:ca:c7:00:91:dc:7d:f0:40:05:8d:12:93:
fe:59:08:ba:ef:3c:90:f1:13:21:1d:e8:06:2d:fc:13:a3:f6:
5a:7e:6e:78:c8:93:d2:29:dd:7a:0c:ef:ad:84:67:74:b4:18:
a1:5c:6b:50:a0:e0:0f:ba:a0:2c:17:f5:cd:2e:de:81:cc:c7:
6f:74:25:1f:d5:d4:c4:40:66:92:8f:48:34:99:a8:82:e1:08:
9a:80:08:b2:27:4d:c9:1d:31:7c:1b:6a:f7:0c:5e:ca:d0:bd:
03:76:19:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:49 2024 by rpki-client on console-ams.rpki-client.org