Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/kjzgX1Xeq51wTxh6Ldng3Jvivrw.roa
File: kjzgX1Xeq51wTxh6Ldng3Jvivrw.roa (raw, json)
Hash identifier: 6tOyXxt+GDyfXBZO4hT8gK5aHK4+Dhvg4u05inn3qb4=
Subject key identifier: 92:3C:E0:5F:55:DE:AB:9D:70:4F:18:7A:2D:D9:E0:DC:9B:E2:BE:BC
Certificate issuer: /CN=d881e5777cce990c0b2b0f4c29cc8d2cf9afe83b
Certificate serial: 10675D8D
Authority key identifier: D8:81:E5:77:7C:CE:99:0C:0B:2B:0F:4C:29:CC:8D:2C:F9:AF:E8:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2IHld3zOmQwLKw9MKcyNLPmv6Ds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/kjzgX1Xeq51wTxh6Ldng3Jvivrw.roa
Signing time: Sat 01 Jan 2022 07:57:59 +0000
ROA not before: Sat 01 Jan 2022 07:57:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 141.33.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 275209613 (0x10675d8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d881e5777cce990c0b2b0f4c29cc8d2cf9afe83b
Validity
Not Before: Jan 1 07:57:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=923ce05f55deab9d704f187a2dd9e0dc9be2bebc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a2:57:64:a0:3a:ca:96:13:f0:89:ff:de:05:
3e:9e:c8:da:3a:08:28:cc:45:0e:92:16:7e:a2:0a:
98:46:12:63:76:1c:0f:23:c6:64:1b:2d:f7:b5:9b:
a7:a4:15:11:30:85:64:82:58:7c:f2:91:8a:b4:3b:
03:02:83:f3:0c:61:21:f4:fb:dc:58:0b:01:b7:c4:
72:1a:67:61:71:53:85:f5:b4:69:27:d2:cf:48:11:
e0:2b:a8:fb:2a:ec:29:01:9d:44:f4:d5:39:d5:c4:
9c:c5:1c:56:91:b8:d5:bc:68:e0:f1:01:dc:0c:fe:
13:05:96:ea:ea:ec:5d:28:b0:e6:99:e0:ef:b1:9b:
1a:8e:b4:4f:a1:6e:e4:0f:80:43:4d:22:fe:2f:3d:
2a:4e:26:b4:af:c0:24:92:c5:e2:1b:bd:42:da:10:
b8:b7:fb:99:7f:75:2c:a8:09:28:ad:9f:5d:e5:a7:
c1:8a:bc:84:5c:f4:76:b9:59:c0:0e:75:7f:64:c2:
da:71:1f:dc:06:60:e6:44:81:97:1d:ac:2f:55:ba:
6f:2f:05:8f:09:13:71:20:1c:f0:64:f6:d4:8b:17:
c7:32:c1:20:62:4a:eb:9a:c4:b1:ab:60:8f:3a:57:
0d:2c:34:c1:fd:12:13:00:00:22:fb:10:20:80:3b:
99:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:3C:E0:5F:55:DE:AB:9D:70:4F:18:7A:2D:D9:E0:DC:9B:E2:BE:BC
X509v3 Authority Key Identifier:
keyid:D8:81:E5:77:7C:CE:99:0C:0B:2B:0F:4C:29:CC:8D:2C:F9:AF:E8:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2IHld3zOmQwLKw9MKcyNLPmv6Ds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/kjzgX1Xeq51wTxh6Ldng3Jvivrw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.33.0.0/16
Signature Algorithm: sha256WithRSAEncryption
08:2e:71:e8:4e:73:c9:9e:77:60:62:83:20:4a:58:c7:02:1c:
5e:be:d6:0f:15:33:c5:da:ee:4a:c8:81:f9:a0:d4:71:ce:85:
35:6b:e4:78:79:10:6a:39:3e:5d:ca:ab:13:53:7f:ca:9f:2a:
fa:5e:f8:5a:50:80:6d:16:2b:a1:cb:17:09:09:1c:8a:c2:34:
28:dd:99:72:93:b6:12:b7:f3:bd:d6:ea:db:c6:1e:79:26:a1:
39:09:52:72:3c:fe:d5:fb:c2:d1:ca:ce:56:0f:9e:a9:54:58:
cc:01:4c:83:95:1a:cf:ed:70:1c:b7:fe:81:d4:59:97:65:e5:
eb:73:e6:ef:fb:c6:50:58:8f:4b:1c:fd:37:2a:df:ae:09:53:
a5:f4:72:4c:f3:b3:3a:ae:a0:02:09:d6:86:18:8f:66:72:04:
52:3c:57:11:b8:1e:77:a2:d6:b1:d0:ec:bd:6d:d0:13:71:05:
32:90:65:46:e2:d6:14:02:ed:a4:85:0d:2a:f7:42:db:85:a7:
5f:f2:ef:90:7f:4d:6c:d8:c4:e8:c6:65:12:3f:ca:a0:35:cb:
34:b8:ab:56:cf:b7:32:76:95:72:08:ef:9a:77:7a:65:d3:e7:
69:5f:e7:d7:ef:9b:3c:f8:d5:06:8a:4a:f3:ef:ff:b2:bb:0d:
16:c0:2a:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:55 2023 by rpki-client on console-fra.rpki-client.org