Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/kbNOFZn4iHYlbTXdvauuB144TVg.roa
File: kbNOFZn4iHYlbTXdvauuB144TVg.roa (raw, json)
Hash identifier: yP6KN6ty38h13Z7mx9csT7kCVAmytHu6Js9k4T/eqt0=
Subject key identifier: 91:B3:4E:15:99:F8:88:76:25:6D:35:DD:BD:AB:AE:07:5E:38:4D:58
Certificate issuer: /CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Certificate serial: 0183B29781D070B11CBAA152767B51B5BEB5
Authority key identifier: 74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/kbNOFZn4iHYlbTXdvauuB144TVg.roa
Signing time: Fri 07 Oct 2022 13:16:57 +0000
ROA not before: Fri 07 Oct 2022 13:16:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202437
IP address blocks: 2a12:4946:4020::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:b2:97:81:d0:70:b1:1c:ba:a1:52:76:7b:51:b5:be:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Validity
Not Before: Oct 7 13:16:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91b34e1599f88876256d35ddbdabae075e384d58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:5f:f6:d4:f9:f8:b5:a2:ec:04:27:85:a8:3e:
f9:11:a3:9c:88:45:e1:7c:88:05:c5:7f:7b:dc:0b:
22:81:b9:cf:21:87:f5:53:2a:23:3f:7e:a8:1b:bf:
16:a8:00:35:98:54:a4:84:e3:73:de:be:63:86:fc:
d8:e0:45:ff:c2:df:0f:52:71:75:06:cb:5f:6c:7b:
5f:2b:ab:d2:ba:e3:d1:b1:6a:00:a8:72:fa:8e:2f:
f6:15:15:48:42:50:70:7a:58:e6:8a:37:7a:aa:16:
97:08:95:14:71:76:4c:ef:d8:ff:5f:8c:4c:1f:e1:
e6:be:02:1f:78:a6:6e:db:14:db:e8:fb:61:07:65:
ce:28:19:1e:9c:5d:54:b8:6a:60:49:48:40:65:99:
37:8e:17:b0:8b:18:65:d8:cc:f0:63:15:a1:7b:a3:
88:97:6d:81:2b:01:9d:46:8b:77:18:fc:ae:2a:91:
48:a6:f2:f4:42:e7:82:73:0d:62:cc:1c:b6:f0:1d:
ab:6d:8b:4c:38:34:86:26:82:68:0c:b4:88:5d:61:
19:77:9a:8f:b3:0d:36:3f:d1:5b:aa:ab:77:21:e7:
a2:0e:d9:db:d6:d4:46:02:68:2f:19:be:05:d4:af:
8c:ec:22:53:ed:c7:8c:8c:66:1a:b2:49:94:92:b4:
0c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:B3:4E:15:99:F8:88:76:25:6D:35:DD:BD:AB:AE:07:5E:38:4D:58
X509v3 Authority Key Identifier:
keyid:74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/kbNOFZn4iHYlbTXdvauuB144TVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:4946:4020::/44
Signature Algorithm: sha256WithRSAEncryption
16:d8:ec:5d:86:66:3b:ae:1f:5f:56:33:55:6a:9d:1b:0e:0b:
35:1d:3a:d1:bd:07:7c:06:9f:8b:9f:76:e3:ea:80:7c:96:7a:
ea:f1:92:31:b5:a3:6e:d9:59:20:59:47:b0:45:96:53:b0:9a:
8e:d2:93:2d:c9:76:9d:e3:4d:de:4b:53:75:7b:14:d7:a1:01:
28:b0:83:01:36:d0:2b:fc:53:ec:e1:31:40:50:eb:6f:a7:29:
4e:a2:f0:65:db:f6:49:25:5f:9f:5a:a8:cb:a7:15:18:56:5b:
21:02:39:86:9b:90:cd:b1:62:80:c5:52:1e:c8:93:c4:c0:46:
33:e4:c7:59:6c:bd:2b:48:05:08:4c:53:ef:ef:0d:67:a0:7e:
fd:50:00:d9:60:ec:00:b2:3f:a5:a2:0d:ed:aa:2f:af:38:bd:
61:ad:77:cc:1f:46:dc:5d:b5:2f:3c:76:af:6b:67:4b:ac:00:
76:db:ac:95:80:8c:06:44:db:4a:65:27:c7:6e:de:ce:11:da:
fc:96:88:00:74:58:d3:8d:e9:2d:e6:8a:6c:08:01:cf:60:e6:
34:c7:e1:03:7b:54:21:81:25:c5:fb:0a:ef:3c:a2:64:81:d1:
ca:b6:4c:18:e5:cc:2d:94:54:85:82:a2:04:7a:18:2f:9f:cb:
24:b1:88:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:44 2023 by rpki-client on console-ams.rpki-client.org