Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/566cb1-7915-4ffd-8570-6b93af613d7d/1/83mFfdwb5I2h_Ykn3acZEAImqkk.roa
File: 83mFfdwb5I2h_Ykn3acZEAImqkk.roa (raw, json)
Hash identifier: NNwNL/sD3W2OWtxl5C1aXE08TX7iKJJZ0CYAdh8VZjk=
Subject key identifier: F3:79:85:7D:DC:1B:E4:8D:A1:FD:89:27:DD:A7:19:10:02:26:AA:49
Certificate issuer: /CN=8d3f356a02d9679ce890b5d51e0dec2f3f363361
Certificate serial: 01879A61
Authority key identifier: 8D:3F:35:6A:02:D9:67:9C:E8:90:B5:D5:1E:0D:EC:2F:3F:36:33:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jT81agLZZ5zokLXVHg3sLz82M2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/566cb1-7915-4ffd-8570-6b93af613d7d/1/83mFfdwb5I2h_Ykn3acZEAImqkk.roa
Signing time: Sat 01 Jan 2022 01:59:11 +0000
ROA not before: Sat 01 Jan 2022 01:59:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210940
IP address blocks: 2a11:4e07:f001::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25664097 (0x1879a61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d3f356a02d9679ce890b5d51e0dec2f3f363361
Validity
Not Before: Jan 1 01:59:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f379857ddc1be48da1fd8927dda719100226aa49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:8d:16:a1:44:02:cb:e6:72:3c:ab:6e:cb:ac:
e8:d4:06:c6:7b:71:66:aa:98:1d:3c:77:ef:65:4e:
13:8e:b8:66:43:65:fc:ab:df:0a:0f:c1:df:2b:a4:
e1:9e:08:11:ae:03:c8:62:cc:8b:0e:00:b7:93:75:
19:8e:bd:81:48:17:f9:8f:33:78:f0:51:53:4c:50:
a3:e9:7a:e0:12:6a:b9:cb:30:24:be:33:bb:ec:91:
7f:d4:bf:98:70:66:c4:91:9f:f0:2a:fa:9e:58:c6:
f0:b0:75:55:3d:99:66:3e:da:d1:1a:9b:85:f4:5b:
26:74:70:c5:89:6e:a4:05:62:70:55:ee:3c:9b:d6:
2a:d9:d2:70:db:ab:55:c7:fb:0f:b4:33:c3:29:82:
41:66:65:0c:76:f4:93:da:80:1d:f3:35:fd:25:3c:
9e:b1:8c:94:db:46:d5:88:bd:e8:b0:18:2c:5e:41:
41:cb:4b:c9:88:92:4a:d2:46:a1:69:50:df:3a:58:
3e:72:01:58:a9:88:d8:96:9b:bc:23:c4:d2:be:54:
8c:ba:74:0e:5c:6a:a4:f5:48:70:25:d1:f9:10:c0:
82:0f:87:e7:38:39:69:09:d8:c7:ca:b0:83:6d:ed:
84:da:8a:2b:ce:5b:cd:06:87:03:d5:e1:08:16:d0:
89:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:79:85:7D:DC:1B:E4:8D:A1:FD:89:27:DD:A7:19:10:02:26:AA:49
X509v3 Authority Key Identifier:
keyid:8D:3F:35:6A:02:D9:67:9C:E8:90:B5:D5:1E:0D:EC:2F:3F:36:33:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jT81agLZZ5zokLXVHg3sLz82M2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/566cb1-7915-4ffd-8570-6b93af613d7d/1/83mFfdwb5I2h_Ykn3acZEAImqkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/566cb1-7915-4ffd-8570-6b93af613d7d/1/jT81agLZZ5zokLXVHg3sLz82M2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:4e07:f001::/48
Signature Algorithm: sha256WithRSAEncryption
3b:27:ec:af:1e:a6:f8:7d:cc:09:44:bf:ce:6f:55:7c:44:f7:
73:fa:18:64:c7:e9:ba:51:1a:3e:72:d8:8b:d1:8b:e0:da:9d:
c2:be:49:aa:be:6b:34:a5:29:0a:1c:53:2c:ad:94:6d:8f:e3:
f3:4d:c4:65:5a:40:38:33:d9:ee:3e:32:b1:86:4d:32:bb:80:
c7:db:08:b3:61:c3:67:28:43:7e:50:e9:de:0b:2a:55:2e:f1:
be:3a:d0:4b:34:a3:cc:fe:f8:c1:fa:4e:35:17:74:45:ee:29:
7e:2f:ee:9e:33:68:df:ee:25:22:26:cb:65:57:00:23:61:b8:
94:99:db:3a:67:c5:db:d8:21:bb:82:9a:1a:b7:10:65:ff:25:
b2:6d:69:80:c8:36:32:43:57:83:37:d7:c1:eb:b5:3e:bf:e7:
00:94:de:de:60:91:78:1c:5b:15:7c:40:e6:e6:75:9f:b9:07:
27:80:5b:0b:ec:0b:bc:08:e4:13:5c:7a:d2:dd:75:87:14:86:
bb:20:87:26:b3:e0:4c:f6:14:20:69:74:c0:b6:44:52:00:aa:
b3:4e:0b:1b:13:0b:27:9d:75:02:6c:38:5e:cc:e5:51:fd:3c:
82:94:09:5c:bf:64:46:71:dd:a0:6f:ad:73:06:14:0f:bb:54:
71:c3:2b:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:26 2024 by rpki-client on console-ams.rpki-client.org