Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/6a3bb7-7067-42e8-8097-89620c25150e/1/KgfcdAmZQpND1YVhGPy4gRd9o5U.roa
File: KgfcdAmZQpND1YVhGPy4gRd9o5U.roa (raw, json)
Hash identifier: 1mQm/+zn5Yy8WmEGWuDrTBkritxd8s9yaJZzd3v6Eu8=
Subject key identifier: 2A:07:DC:74:09:99:42:93:43:D5:85:61:18:FC:B8:81:17:7D:A3:95
Certificate issuer: /CN=4b0cde4c4f93299963680d6c4fc0604f7c84243b
Certificate serial: 105214E1
Authority key identifier: 4B:0C:DE:4C:4F:93:29:99:63:68:0D:6C:4F:C0:60:4F:7C:84:24:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SwzeTE-TKZljaA1sT8BgT3yEJDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/6a3bb7-7067-42e8-8097-89620c25150e/1/KgfcdAmZQpND1YVhGPy4gRd9o5U.roa
Signing time: Sat 01 Jan 2022 02:58:28 +0000
ROA not before: Sat 01 Jan 2022 02:58:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 141.43.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 273814753 (0x105214e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b0cde4c4f93299963680d6c4fc0604f7c84243b
Validity
Not Before: Jan 1 02:58:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a07dc740999429343d5856118fcb881177da395
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:87:bd:ec:12:f8:e0:6d:f0:a8:c1:2f:b3:d5:
27:c2:ee:b9:92:f9:21:6f:a4:2d:15:4c:d1:5b:99:
7a:fb:2c:a6:07:23:ff:74:c0:3a:1f:08:b1:f0:21:
0c:69:fd:d6:7f:72:e8:19:2b:11:76:69:ec:8e:76:
2f:69:ba:18:2c:59:4b:7f:20:17:ad:6f:0d:9b:04:
1c:46:da:cb:9c:4b:73:7c:4d:ef:b4:e4:38:48:e2:
d4:67:1f:ad:a0:98:a6:5f:98:40:2c:a1:e9:1f:f2:
aa:1a:90:f5:a3:b8:f4:ff:12:60:db:a1:fb:61:9a:
b2:b9:69:d3:e6:b7:0e:22:7b:db:e8:76:0f:60:b5:
93:29:03:9d:0c:bd:c2:b9:d6:1d:61:e5:91:67:6f:
5f:31:3b:d3:12:96:62:2d:e4:45:3b:05:7a:e2:0d:
7f:17:e8:71:b9:0f:5a:9f:fa:5e:3e:3e:dc:c3:f8:
ba:00:50:82:98:87:5d:37:37:f8:b9:f5:e5:12:55:
3a:10:61:7a:31:c6:89:b1:bc:3f:4b:57:4d:76:32:
80:cf:ff:d7:75:ca:84:7c:8d:eb:fd:72:ee:39:81:
d7:53:a9:8c:b5:80:41:2c:83:ee:6c:8b:02:12:98:
35:95:04:d5:a4:19:fe:73:79:5d:ab:97:11:06:59:
95:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:07:DC:74:09:99:42:93:43:D5:85:61:18:FC:B8:81:17:7D:A3:95
X509v3 Authority Key Identifier:
keyid:4B:0C:DE:4C:4F:93:29:99:63:68:0D:6C:4F:C0:60:4F:7C:84:24:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SwzeTE-TKZljaA1sT8BgT3yEJDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/6a3bb7-7067-42e8-8097-89620c25150e/1/KgfcdAmZQpND1YVhGPy4gRd9o5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/6a3bb7-7067-42e8-8097-89620c25150e/1/SwzeTE-TKZljaA1sT8BgT3yEJDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.43.0.0/16
Signature Algorithm: sha256WithRSAEncryption
33:32:41:19:83:e0:e4:0e:f2:d5:79:05:fb:95:7b:df:41:29:
02:d4:65:97:c3:f0:27:cc:ea:12:af:97:ae:cc:ba:52:e7:4a:
cf:72:de:7f:fc:b2:82:9c:5a:05:3b:b9:b3:56:57:85:c6:3c:
84:49:ec:a5:4e:8d:8b:19:c3:70:dc:dd:40:8e:25:92:55:38:
c4:38:d6:58:5d:0c:b7:c7:e1:ba:fb:1b:51:6d:16:f1:75:43:
a9:5c:17:1f:04:a2:b3:e5:c8:97:ef:0d:b7:d0:5f:e5:fb:dd:
ab:52:f8:7c:1c:9f:f4:c1:67:52:2f:40:fd:b1:8c:9b:ac:c0:
13:c1:98:f4:be:9e:2b:f3:2b:9d:df:f3:fd:45:b9:75:5c:70:
6f:6b:fb:46:13:63:95:10:cf:ab:a5:cf:67:6e:28:13:60:b3:
0e:a1:14:b7:86:33:77:cc:41:81:49:66:95:d2:f8:3c:96:dc:
c0:fe:1a:69:89:5b:ed:f9:d2:9a:ff:a1:d0:37:6a:73:52:ec:
09:5f:db:a3:4b:1b:c4:ba:7f:0f:cd:51:92:52:7c:6c:a8:15:
6f:4c:04:a0:f6:34:ba:fc:bc:e3:51:70:d5:56:5d:fe:08:a6:
c4:92:a9:c4:3d:99:8b:79:92:81:fa:e4:58:4c:e8:83:1c:44:
6e:27:5f:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:53 2024 by rpki-client on console-fra.rpki-client.org