Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/kgL-UKCutsIoyP44atvVqXMkwNk.roa
File: kgL-UKCutsIoyP44atvVqXMkwNk.roa (raw, json)
Hash identifier: PB88UJLiTj6o0E8hPw7q/GX356MdcwsyswWYBbf764Y=
Subject key identifier: 92:02:FE:50:A0:AE:B6:C2:28:C8:FE:38:6A:DB:D5:A9:73:24:C0:D9
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01822610FBB2D33174BB38CEA659D9665F20
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/kgL-UKCutsIoyP44atvVqXMkwNk.roa
Signing time: Fri 22 Jul 2022 13:20:23 +0000
ROA not before: Fri 22 Jul 2022 13:20:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203874
IP address blocks: 2a0e:aa07:e046::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:26:10:fb:b2:d3:31:74:bb:38:ce:a6:59:d9:66:5f:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jul 22 13:20:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9202fe50a0aeb6c228c8fe386adbd5a97324c0d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c9:72:4c:27:71:ce:a8:e7:5b:e9:6d:c6:4a:
a3:c2:32:3b:33:c5:2f:84:32:6c:ed:99:e3:81:19:
a5:06:82:22:8f:af:cf:2b:92:44:e3:2e:ce:cc:ca:
6e:70:bf:b0:5b:35:98:37:a1:7f:21:00:77:88:47:
90:a7:32:cf:ad:05:cb:a5:b7:76:a2:27:e0:7d:e4:
ed:3f:e5:06:3c:ff:1b:b3:4a:a4:dc:70:e8:79:bc:
a9:f5:6f:3e:95:05:1b:cf:10:bf:90:29:5c:92:b0:
b0:bd:25:77:b8:e9:25:53:a6:78:4e:82:84:dc:dd:
cb:ec:b4:70:d4:c0:89:15:da:d0:99:f7:dc:49:90:
d3:f9:0d:30:35:f4:89:88:d5:74:e5:85:1a:de:d8:
57:f5:24:59:2d:94:c5:94:46:75:ad:ca:7a:e8:e6:
bf:ed:89:a8:5e:66:5b:da:cb:a8:70:7f:3b:cb:32:
1d:b7:cd:ab:d5:9b:f3:82:7a:2a:23:c4:f2:5d:eb:
98:36:4d:5c:42:3c:8e:c2:b4:51:2d:1d:45:43:ee:
62:16:9d:f2:ab:17:93:35:d0:8e:ea:57:d5:65:35:
cc:33:a5:0b:45:af:82:9d:74:b4:f8:0a:0b:5d:c4:
5b:3b:cc:9b:49:15:03:af:c2:1e:8e:3d:0c:21:d6:
ba:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:02:FE:50:A0:AE:B6:C2:28:C8:FE:38:6A:DB:D5:A9:73:24:C0:D9
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/kgL-UKCutsIoyP44atvVqXMkwNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e046::/48
Signature Algorithm: sha256WithRSAEncryption
05:62:27:41:f2:8b:ae:64:f6:9e:8a:dd:ad:60:d8:d4:bb:7f:
22:38:40:22:8a:2a:ad:ae:d7:c3:77:73:ca:70:ed:16:b2:6a:
d6:e2:26:d6:89:5f:74:45:54:4f:06:66:6d:d1:8c:af:31:8f:
8c:61:c4:00:aa:14:b5:e7:8b:d3:91:a3:a5:c9:5c:54:8e:ed:
37:70:91:f0:50:e3:3b:cd:73:51:bc:2f:a2:22:33:ce:c3:f3:
03:ce:e2:18:c7:e7:95:87:78:a7:67:38:d4:2b:df:5d:57:72:
48:dc:07:2d:c7:3b:27:76:0e:bd:6a:e1:6b:d3:da:25:4d:4f:
b5:4a:b0:4a:5a:5c:f4:7b:74:83:ac:18:2e:ef:2c:0f:f7:a3:
5d:32:3c:75:56:6a:61:71:7c:1c:b2:3b:80:00:85:b2:13:81:
7f:dd:04:a1:16:fa:c1:f0:96:b9:28:10:51:dc:f6:ad:42:6a:
89:25:7f:24:44:b6:6b:6f:fc:44:91:d1:fd:25:ce:37:18:bd:
eb:ef:5d:10:b5:26:0d:4a:9c:27:2c:56:d7:6a:bb:e2:7b:5f:
78:40:76:6d:82:3e:9a:6d:90:d9:ec:27:98:00:a0:4c:5d:fa:
1f:5f:1a:85:39:6f:4c:b2:f2:80:22:13:31:9c:55:6a:37:af:
18:af:76:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org