Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/KWsGX9AK6VoWwCuaaLCvuHPeWC0.roa
File: KWsGX9AK6VoWwCuaaLCvuHPeWC0.roa (raw, json)
Hash identifier: fEDVnuP9saGdlwyEVQ3aUmmetuvtUMOG8tALoQMycJ8=
Subject key identifier: 29:6B:06:5F:D0:0A:E9:5A:16:C0:2B:9A:68:B0:AF:B8:73:DE:58:2D
Certificate issuer: /CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Certificate serial: 073EAA2C
Authority key identifier: AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/KWsGX9AK6VoWwCuaaLCvuHPeWC0.roa
Signing time: Sat 01 Jan 2022 03:57:57 +0000
ROA not before: Sat 01 Jan 2022 03:57:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 2a09:da00::/32 maxlen: 32
2a0d:e841::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121547308 (0x73eaa2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Validity
Not Before: Jan 1 03:57:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=296b065fd00ae95a16c02b9a68b0afb873de582d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:6c:e1:35:43:e9:df:64:c8:54:3f:4c:ee:e2:
79:17:72:15:c5:8f:8c:3f:5f:0c:06:ec:1e:f3:62:
13:fc:ad:42:b4:9e:fe:79:c7:59:f3:e1:5c:97:a8:
06:b1:1e:74:d7:06:46:1f:66:30:86:44:1f:74:0c:
7e:71:0d:7c:82:49:2e:72:ca:d6:0d:d5:d0:59:e0:
56:5c:34:78:70:23:95:9f:a5:73:6e:86:04:50:ff:
ea:67:91:3c:c2:39:bd:de:9a:1a:e0:70:5d:d2:cb:
4f:fd:f5:9a:51:88:a0:5b:d0:84:65:9a:b9:f9:08:
14:dd:16:7a:9f:92:95:49:73:08:0f:c8:ed:7e:89:
be:27:2d:2a:96:fb:b4:6d:90:e2:4e:b6:5f:bc:be:
69:27:84:a4:86:32:77:d3:7d:9c:42:e3:ca:2b:e9:
d0:da:8c:72:be:83:5f:1f:ac:0d:b3:8f:21:2a:2d:
0b:81:e5:20:1b:fb:f6:f3:a4:6b:4b:34:18:e4:e9:
1f:24:bb:75:61:63:e8:21:44:44:ba:36:cc:02:82:
6e:29:11:37:5e:dc:07:33:6c:b8:76:8d:70:c3:c3:
4c:02:26:45:e8:d7:2b:c6:8d:0d:b7:b5:16:d5:40:
4a:49:21:27:d7:25:41:9f:c1:6b:d3:11:a6:02:8d:
ac:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:6B:06:5F:D0:0A:E9:5A:16:C0:2B:9A:68:B0:AF:B8:73:DE:58:2D
X509v3 Authority Key Identifier:
keyid:AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/KWsGX9AK6VoWwCuaaLCvuHPeWC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/raJar-Ophw6VJK-gJlmH7VpaTaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:da00::/32
2a0d:e841::/32
Signature Algorithm: sha256WithRSAEncryption
37:19:1c:e3:17:7b:45:9c:9a:aa:9b:a7:22:5e:66:05:1e:31:
70:88:25:b7:85:64:67:72:ac:7f:61:eb:d9:c1:e7:65:e0:62:
5b:12:bc:68:40:02:fa:13:75:03:50:55:16:81:f2:03:2c:a1:
3a:12:ab:ee:4f:df:83:42:0d:05:6e:77:7d:1c:4b:b3:72:4e:
34:0e:a1:86:0d:29:1c:d2:1e:9d:e4:7d:04:7b:75:ae:84:d5:
c4:6f:2e:d1:f4:08:f6:53:db:60:34:29:90:67:9b:6f:5d:8c:
68:d2:f5:48:7a:81:b5:9b:07:e7:74:fd:46:f0:b0:10:70:88:
c3:14:97:d1:40:f7:5b:90:9e:5d:eb:61:30:ce:cd:28:86:91:
ed:f2:8a:d5:0f:c3:e7:84:64:0d:d5:4f:37:c4:f9:5b:9f:47:
7e:1f:a4:88:0d:f4:42:23:ba:3e:1e:aa:30:74:71:14:49:65:
26:4b:0e:d6:b3:3f:41:7e:af:20:2b:4e:e8:c0:81:c2:b5:c1:
8c:7f:8e:b4:7b:93:7b:e9:ec:12:70:28:83:49:4e:1a:69:b7:
0b:6f:a4:fc:9b:ad:fd:f5:ec:b8:54:25:79:b4:a8:a3:08:53:
d0:5d:17:78:27:4d:a3:8e:72:79:f1:d3:92:4b:8c:64:4d:6f:
e0:e4:e8:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:41 2024 by rpki-client on console-ams.rpki-client.org