Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/S90EAfum51NHaGfZfpMW8jZ5tVo.roa
File: S90EAfum51NHaGfZfpMW8jZ5tVo.roa (raw, json)
Hash identifier: Vr5vfUmxptG3qos+crjWRIZ/95GoSiYKXEZtmSG7jWc=
Subject key identifier: 4B:DD:04:01:FB:A6:E7:53:47:68:67:D9:7E:93:16:F2:36:79:B5:5A
Certificate issuer: /CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Certificate serial: 04037F36
Authority key identifier: D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/S90EAfum51NHaGfZfpMW8jZ5tVo.roa
Signing time: Sat 01 Jan 2022 13:54:44 +0000
ROA not before: Sat 01 Jan 2022 13:54:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59922
IP address blocks: 2a0a:8887:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67338038 (0x4037f36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Validity
Not Before: Jan 1 13:54:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bdd0401fba6e753476867d97e9316f23679b55a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b5:be:53:bf:23:90:d8:aa:64:db:94:bf:35:
2f:7d:f4:40:52:75:e9:6a:62:0c:31:fe:13:38:e9:
f5:79:24:0a:0a:ee:f8:dc:d7:61:55:c4:52:58:29:
7f:66:f6:a8:35:91:79:b0:c6:25:82:00:a7:3a:e6:
7c:9f:d3:be:c2:b7:3b:f1:f4:b2:e2:81:72:f9:0d:
4d:e4:a0:5a:ba:86:06:a9:4d:49:c4:9b:70:67:92:
b5:4b:75:5c:6c:4a:ae:b4:be:74:04:c6:b6:15:49:
cf:98:d8:c1:85:63:a4:c0:fa:eb:7b:68:8c:6c:b3:
7b:34:cb:0f:7e:dc:d0:ec:e4:ee:e3:6f:52:83:e9:
a1:3b:dc:08:e7:c8:31:3f:5a:3e:71:e3:db:c1:92:
2f:68:3c:27:11:71:c1:b3:d6:cc:e5:a3:68:3a:99:
38:5c:0f:6c:c9:74:88:59:46:91:06:17:9f:9e:c7:
7d:99:82:54:a2:c4:01:3f:a7:13:16:e7:1c:fc:de:
43:90:e6:1d:d0:a4:df:1a:18:d9:60:c9:72:06:b6:
12:37:d0:8b:23:c5:19:d6:86:f2:e8:f3:12:d1:d9:
f6:e8:3d:05:b0:fe:29:68:be:bd:3c:5a:59:78:96:
64:2d:be:e8:b0:34:6b:74:02:c7:c8:f7:40:9e:58:
ea:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:DD:04:01:FB:A6:E7:53:47:68:67:D9:7E:93:16:F2:36:79:B5:5A
X509v3 Authority Key Identifier:
keyid:D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/S90EAfum51NHaGfZfpMW8jZ5tVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/2YJH0_gUctu6Btvqm9GceF0Yur4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:8887:1::/48
Signature Algorithm: sha256WithRSAEncryption
01:1d:cf:23:38:22:a3:3e:a1:56:bb:87:4d:a1:77:94:a7:75:
59:b5:12:a1:bc:45:fd:24:79:97:2e:3a:0d:47:13:fa:63:b2:
43:06:c2:50:2d:f5:1a:2b:43:f5:cc:c5:bf:89:4e:ac:87:fa:
13:fd:15:1b:ae:a3:3f:8c:07:95:48:a0:bb:ce:4c:40:e1:7a:
a5:99:0e:94:ce:4a:60:38:fa:b4:0b:39:63:73:19:de:7e:00:
21:07:6f:8d:9f:8d:9f:d0:8f:9c:85:15:37:f2:8f:47:a6:0c:
8f:88:ed:f4:d5:b6:cb:19:91:c3:a6:6a:77:26:52:f9:81:1e:
6d:4a:7c:27:1c:e3:58:90:35:76:a3:76:8b:2d:a0:63:f0:6e:
64:51:99:5b:67:71:ff:c2:e8:82:04:f4:8c:c7:3d:d6:dc:2e:
ab:46:72:1a:35:6e:5f:37:6c:8c:11:1c:85:ca:6c:1b:ce:2b:
54:36:e8:dc:1e:3f:55:8e:41:94:a7:95:51:a8:65:30:9f:82:
1f:89:f7:93:10:85:df:58:a8:de:20:46:9b:f9:0b:12:f7:57:
14:c8:cf:52:89:8d:d1:4c:0c:af:1e:08:6d:20:7b:b1:2e:50:
a0:bb:a8:ef:2d:3c:4c:0c:63:7f:ac:96:ec:b9:26:05:31:e6:
e7:ae:7f:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:00 2023 by rpki-client on console-ams.rpki-client.org