Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/16b7b4-bb21-4b3e-aeb4-b27ca291bd77/1/kUKemlCtS3osONenmVo1VTRptWo.roa
File: kUKemlCtS3osONenmVo1VTRptWo.roa (raw, json)
Hash identifier: 9W4nU4kW33sJXquY5SEKWAtN71g9fpYPURDN32FwXlA=
Subject key identifier: 91:42:9E:9A:50:AD:4B:7A:2C:38:D7:A7:99:5A:35:55:34:69:B5:6A
Certificate issuer: /CN=b817162877da9f4030bbcb9fe8ac143e6ab2871b
Certificate serial: 04D9E339
Authority key identifier: B8:17:16:28:77:DA:9F:40:30:BB:CB:9F:E8:AC:14:3E:6A:B2:87:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uBcWKHfan0Awu8uf6KwUPmqyhxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/16b7b4-bb21-4b3e-aeb4-b27ca291bd77/1/kUKemlCtS3osONenmVo1VTRptWo.roa
Signing time: Sat 01 Jan 2022 14:05:17 +0000
ROA not before: Sat 01 Jan 2022 14:05:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64484
IP address blocks: 2a0e:1e40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81388345 (0x4d9e339)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b817162877da9f4030bbcb9fe8ac143e6ab2871b
Validity
Not Before: Jan 1 14:05:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91429e9a50ad4b7a2c38d7a7995a35553469b56a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:3d:63:e8:ab:d6:90:a7:73:09:73:40:5c:ce:
99:9a:94:f4:42:ac:e5:bd:10:83:76:22:ee:7e:ff:
8c:dd:71:62:84:ec:f0:6d:15:8d:24:82:69:eb:9a:
84:d2:81:36:86:84:61:77:07:5a:ff:0f:00:bc:85:
a5:67:05:ec:ae:4c:4c:e3:c8:68:b5:01:21:46:f5:
33:5e:7f:c8:c0:af:1a:42:3f:5c:e9:7e:e8:32:4b:
bb:01:28:b8:94:c6:49:a7:2e:bc:c4:5d:f6:2a:47:
58:35:e3:e5:05:46:5a:cd:37:98:a8:fa:2b:e1:65:
bd:bd:a4:a6:6b:0c:35:05:48:7e:9e:79:72:f0:96:
0c:a4:ae:18:cf:d1:4b:40:c1:88:56:5f:a1:73:dc:
34:05:b8:5d:b7:28:61:23:8a:62:a6:80:21:4b:df:
8d:37:27:bb:b2:4d:e2:12:67:15:3c:72:88:07:00:
d6:ed:b0:81:d6:08:84:cd:cd:1b:22:ad:b8:e3:71:
91:32:32:fa:55:ce:49:29:4f:a9:01:19:19:e4:43:
23:05:33:44:45:ca:1e:99:fa:a1:aa:d6:88:9e:19:
97:33:33:18:ee:4c:b1:d2:bf:37:01:b2:3d:dd:ab:
ee:20:a4:20:2c:e1:d9:de:6e:ef:ef:48:9c:8b:ee:
63:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:42:9E:9A:50:AD:4B:7A:2C:38:D7:A7:99:5A:35:55:34:69:B5:6A
X509v3 Authority Key Identifier:
keyid:B8:17:16:28:77:DA:9F:40:30:BB:CB:9F:E8:AC:14:3E:6A:B2:87:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uBcWKHfan0Awu8uf6KwUPmqyhxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/16b7b4-bb21-4b3e-aeb4-b27ca291bd77/1/kUKemlCtS3osONenmVo1VTRptWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/16b7b4-bb21-4b3e-aeb4-b27ca291bd77/1/uBcWKHfan0Awu8uf6KwUPmqyhxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:1e40::/29
Signature Algorithm: sha256WithRSAEncryption
4e:2b:5a:a2:0a:aa:fa:6e:cb:46:95:2d:66:8f:4b:89:7f:cd:
65:60:b5:93:fd:84:58:0b:86:6a:74:c4:cf:d7:2e:75:7f:7d:
5f:87:ad:21:fe:0d:02:2c:a6:0e:13:9a:17:77:ad:f1:a9:86:
dc:e7:18:b7:7e:b6:75:8f:72:43:58:56:b3:af:35:e6:83:e2:
1a:29:ba:7e:be:07:49:00:23:da:75:7d:e7:05:e2:ec:b2:56:
fb:24:25:15:7e:83:12:2c:d0:01:9e:d6:e3:1f:39:24:30:35:
e5:d4:d4:7b:45:c6:9e:c1:cf:b7:3e:0f:e6:d7:c6:d2:ac:cf:
9b:d5:3b:59:28:f4:71:fe:8e:a3:26:4b:84:e5:ed:08:ba:e0:
35:57:52:24:39:df:57:5a:ee:cc:c2:68:e3:9e:74:71:f9:31:
db:02:9a:40:a4:00:0d:df:dd:ca:df:9f:c8:98:69:01:ee:ce:
0c:99:b8:96:27:0a:0d:0d:f0:f1:89:25:86:85:f8:5d:22:ca:
f7:31:12:01:b6:05:b0:0f:40:22:5b:47:fb:f7:fa:e3:d8:d2:
b6:e6:7e:4e:9e:9f:9a:7a:a0:e5:f3:0b:c2:b6:aa:d7:48:3b:
39:8d:17:54:17:38:44:c9:63:e7:53:10:4c:94:67:9b:77:ad:
53:62:00:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:18 2023 by rpki-client on console-ams.rpki-client.org