Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/Tkdb35uohaiJoNSUTDWK35UInTk.roa
File: Tkdb35uohaiJoNSUTDWK35UInTk.roa (raw, json)
Hash identifier: 22LX9fSIKOAQvdpA5xC+dEkK9W97rkH5/x9D8/r5i/Q=
Subject key identifier: 4E:47:5B:DF:9B:A8:85:A8:89:A0:D4:94:4C:35:8A:DF:95:08:9D:39
Certificate issuer: /CN=67ce179cbe13ddb14012985a067100ef98a55601
Certificate serial: 01844A5BA3810F8D69E3A4980B73EA7F5C44
Authority key identifier: 67:CE:17:9C:BE:13:DD:B1:40:12:98:5A:06:71:00:EF:98:A5:56:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z84XnL4T3bFAEphaBnEA75ilVgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/Tkdb35uohaiJoNSUTDWK35UInTk.roa
Signing time: Sun 06 Nov 2022 00:33:50 +0000
ROA not before: Sun 06 Nov 2022 00:33:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51345
IP address blocks: 2a13:1c47:ffff::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:4a:5b:a3:81:0f:8d:69:e3:a4:98:0b:73:ea:7f:5c:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67ce179cbe13ddb14012985a067100ef98a55601
Validity
Not Before: Nov 6 00:33:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e475bdf9ba885a889a0d4944c358adf95089d39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b3:90:42:97:87:22:db:ab:7a:21:46:6d:69:
39:29:ad:ac:38:f7:21:e5:36:27:f8:8f:70:b8:94:
b9:52:6d:8b:d8:2c:d4:ab:2a:59:de:1d:64:cb:97:
16:18:49:27:86:59:37:c1:fe:d1:54:7f:0b:bf:5c:
5f:18:76:e7:67:d6:ad:e1:6f:d6:33:b6:0b:ca:e6:
1a:5d:f5:28:52:cb:1a:4f:30:a2:7a:f4:21:b8:75:
ec:b9:9b:87:05:d2:dc:eb:52:f6:ca:dd:60:67:51:
37:8b:a8:f1:cf:e1:a6:93:98:49:0f:71:be:35:4c:
e0:c6:ac:12:0a:1c:ec:41:42:c0:75:b4:a5:b6:bf:
a0:da:db:f6:81:c6:f8:c9:db:b0:21:7c:37:59:21:
ce:44:2f:13:b2:89:1c:93:35:45:d5:7f:56:17:6d:
8f:1c:0f:3c:7a:3c:a9:d3:8f:3e:20:d2:54:31:88:
4c:49:dc:b9:e7:62:74:15:a3:a0:13:2b:9d:89:8e:
e5:d6:ab:e6:56:9c:52:4b:06:3f:69:73:e8:ba:a4:
22:ec:bf:2e:e7:37:28:cb:b5:01:a0:9d:72:39:1c:
5a:19:5f:cc:54:c5:32:30:6f:11:fd:b2:c6:08:fd:
e6:c4:8a:84:12:37:31:5b:73:b5:f1:cb:7d:8e:76:
ed:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:47:5B:DF:9B:A8:85:A8:89:A0:D4:94:4C:35:8A:DF:95:08:9D:39
X509v3 Authority Key Identifier:
keyid:67:CE:17:9C:BE:13:DD:B1:40:12:98:5A:06:71:00:EF:98:A5:56:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z84XnL4T3bFAEphaBnEA75ilVgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/Tkdb35uohaiJoNSUTDWK35UInTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/Z84XnL4T3bFAEphaBnEA75ilVgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1c47:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
14:b8:a3:e2:9d:54:05:65:1c:82:24:f4:2e:a0:dc:ae:6f:82:
98:ff:23:6b:51:ec:45:2f:a2:98:b1:dd:c5:64:7b:5c:57:cf:
82:11:e1:21:77:d9:b4:d4:13:a1:0c:3b:80:43:ed:f4:ca:70:
17:7b:22:80:09:d4:2b:fe:c6:fd:d6:47:05:33:79:7d:68:c3:
89:1e:e3:72:e6:59:92:86:68:24:c2:4b:e6:d8:db:b1:3c:ac:
e2:e9:94:a2:76:84:07:91:f0:90:b1:66:95:57:ed:dc:58:8e:
14:dc:67:90:2d:70:2e:99:a5:a9:33:06:29:e0:59:59:b5:5a:
a2:f3:92:0c:cc:10:c3:26:fb:c8:83:e0:93:cf:b7:b8:cf:e7:
c8:e7:9a:7e:3d:0b:4f:20:73:c4:df:d3:ee:22:27:31:60:1b:
6f:74:22:b3:24:94:d0:10:b1:85:a2:69:cf:93:01:d5:8e:76:
7d:79:6b:94:91:5a:49:24:0d:0e:09:df:27:90:e5:5a:a4:ee:
68:e3:d0:28:3c:08:fd:87:c3:47:2f:8f:ed:1f:54:1b:97:d9:
d1:ec:25:f6:f3:f6:75:a1:0f:e4:39:f3:88:f8:fe:9b:9e:b8:
60:3f:3c:5f:f0:b3:d2:9c:f3:fe:d0:64:ec:eb:28:ad:1f:64:
f4:bf:e0:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:25 2023 by rpki-client on console-fra.rpki-client.org