Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/9a18ad-087b-4d12-9f69-8cbf903e91cd/1/KbgBHr257KCsmIlaEghxVsXMuPc.roa
File: KbgBHr257KCsmIlaEghxVsXMuPc.roa (raw, json)
Hash identifier: ZB/k5Nt0Sw1HMWN4ok9Yan0F0QcHUd/iNZPt3MbWNOQ=
Subject key identifier: 29:B8:01:1E:BD:B9:EC:A0:AC:98:89:5A:12:08:71:56:C5:CC:B8:F7
Certificate issuer: /CN=f1f4609d0d053aec0307da44b0e678c388f641a4
Certificate serial: 0183CD8D5B6A1BD2E2B50905CB808F47338A
Authority key identifier: F1:F4:60:9D:0D:05:3A:EC:03:07:DA:44:B0:E6:78:C3:88:F6:41:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8fRgnQ0FOuwDB9pEsOZ4w4j2QaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/9a18ad-087b-4d12-9f69-8cbf903e91cd/1/KbgBHr257KCsmIlaEghxVsXMuPc.roa
Signing time: Wed 12 Oct 2022 18:55:36 +0000
ROA not before: Wed 12 Oct 2022 18:55:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 2a13:2c0:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cd:8d:5b:6a:1b:d2:e2:b5:09:05:cb:80:8f:47:33:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1f4609d0d053aec0307da44b0e678c388f641a4
Validity
Not Before: Oct 12 18:55:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29b8011ebdb9eca0ac98895a12087156c5ccb8f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:bf:68:47:50:59:16:1e:88:60:c7:07:75:a8:
ab:6b:43:d5:2b:fa:c0:6d:7a:5d:79:28:ae:93:e6:
02:46:0e:2b:f9:ab:7f:7b:92:6e:9f:17:69:e4:66:
c0:37:d8:fe:5d:fa:15:00:ee:bd:3b:62:92:2c:e4:
99:eb:39:df:8f:e4:61:79:98:e8:10:1b:8f:85:a9:
24:68:c3:70:e3:e5:b7:f2:51:ae:72:ca:bf:a9:33:
71:1a:8f:59:7d:63:5d:01:8d:6e:14:08:e8:80:92:
33:9d:01:3d:14:0c:eb:8a:40:14:90:96:fa:b2:f1:
e7:a7:8c:d6:f6:4c:74:fa:c0:09:a6:b9:ae:7e:c4:
01:7c:91:0b:fc:bc:6d:1d:06:fc:d7:01:c4:a4:e9:
ac:ed:2a:18:a4:f8:c6:2d:2c:3e:dc:a9:bb:d1:3f:
cf:a9:d3:1b:8a:31:46:5b:f9:aa:56:09:f8:d2:85:
8c:ff:3a:b5:f4:f0:c3:ca:ae:d5:94:ee:08:7d:26:
3d:40:20:67:4b:aa:c0:36:cd:43:ff:05:6e:35:f0:
cd:6b:71:93:16:94:46:f6:67:56:a5:9e:18:b2:c1:
fc:73:0c:4e:5f:76:e1:cc:0a:07:18:15:63:dc:3f:
7d:71:96:4f:02:ab:70:84:d5:87:d8:3e:a2:a2:61:
55:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:B8:01:1E:BD:B9:EC:A0:AC:98:89:5A:12:08:71:56:C5:CC:B8:F7
X509v3 Authority Key Identifier:
keyid:F1:F4:60:9D:0D:05:3A:EC:03:07:DA:44:B0:E6:78:C3:88:F6:41:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8fRgnQ0FOuwDB9pEsOZ4w4j2QaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/9a18ad-087b-4d12-9f69-8cbf903e91cd/1/KbgBHr257KCsmIlaEghxVsXMuPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/9a18ad-087b-4d12-9f69-8cbf903e91cd/1/8fRgnQ0FOuwDB9pEsOZ4w4j2QaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:2c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
82:d1:d9:e1:99:3c:0a:56:f7:14:36:a3:f6:47:29:88:8c:5f:
36:db:29:3b:61:e5:8f:30:bc:8c:b1:8a:d4:4e:a1:2c:8c:f4:
0c:aa:b0:31:86:20:50:79:15:87:ac:3b:d8:cb:be:70:1e:1f:
79:af:c9:81:f2:45:cc:3f:6b:42:60:f1:9e:50:78:1c:2f:91:
a9:2b:55:23:80:7b:03:e9:7d:85:12:af:2c:57:f6:11:b1:a0:
ce:91:ae:20:cf:4c:b0:28:ac:ca:98:18:17:74:e4:37:d0:17:
4f:15:bb:c2:4a:4d:ba:f7:ad:67:74:5c:2e:fb:f1:27:56:f4:
1c:62:25:0d:61:be:9c:ef:d2:1f:a7:02:f0:8c:08:29:ee:a1:
a6:80:09:36:d6:55:d5:19:d9:6e:33:d2:72:45:01:65:b0:f9:
b5:d1:e0:77:4d:da:0e:1d:d9:60:83:35:84:c4:0d:16:2b:07:
cb:20:52:04:e4:e7:df:02:cb:d9:11:7a:f7:dc:0c:2e:4b:04:
42:e8:90:52:6f:22:2c:e0:80:d4:cc:4b:6b:87:6c:05:51:60:
4b:37:79:e7:b1:aa:2d:d0:23:77:30:b2:37:bc:1f:ce:81:ae:
8c:70:91:56:f9:8c:ea:14:d9:72:dc:d8:f8:03:88:d5:b6:de:
2c:4d:c4:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:24 2024 by rpki-client on console-fra.rpki-client.org