Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/kwV8Gr4gwLI3mlThPGoazN7cl9k.roa
File: kwV8Gr4gwLI3mlThPGoazN7cl9k.roa (raw, json)
Hash identifier: 6MgZivi8SJIsksqYAwZRD1/pF7+3ZeU0hoH1cNhJ7n8=
Subject key identifier: 93:05:7C:1A:BE:20:C0:B2:37:9A:54:E1:3C:6A:1A:CC:DE:DC:97:D9
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 07A5B35A
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/kwV8Gr4gwLI3mlThPGoazN7cl9k.roa
Signing time: Sat 01 Jan 2022 08:01:45 +0000
ROA not before: Sat 01 Jan 2022 08:01:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39220
IP address blocks: 2a09:7:2000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128299866 (0x7a5b35a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jan 1 08:01:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93057c1abe20c0b2379a54e13c6a1accdedc97d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:bd:a3:18:a6:59:e5:59:bf:18:ad:30:51:9f:
98:cd:f2:75:b2:b8:96:7a:8e:8d:b3:8e:fd:d5:5c:
f6:fb:bb:7e:18:7b:8b:06:1f:67:cc:d8:2b:ec:70:
71:33:9b:58:ce:f8:3c:d0:52:78:7f:62:a4:39:15:
1e:58:1e:19:64:0b:f8:99:4f:0c:dc:94:8e:86:7a:
4c:8a:fd:e0:02:24:5e:d0:d0:7c:26:1b:b8:1d:b8:
9f:17:d9:ff:c9:23:89:ba:f1:47:cf:94:b0:94:db:
52:b8:ee:7c:e5:39:d4:e7:e5:f9:ef:c0:6a:f1:83:
ed:1e:a2:93:71:58:e2:a3:42:d4:3e:3a:25:6d:cb:
61:b8:97:0e:ee:63:c9:50:67:c7:e0:47:e3:ab:ad:
09:28:85:20:5b:3d:93:df:c3:e2:3b:4f:9a:12:64:
17:62:28:b1:d4:1e:b3:6d:57:1c:a6:bf:47:46:86:
12:0b:c8:b8:b7:31:09:05:45:92:34:72:76:8e:02:
3d:63:9b:7b:56:01:dd:6e:dc:90:03:61:9a:cf:d1:
85:8b:80:51:4d:77:a1:73:0b:b9:e4:39:e9:c9:b5:
ba:26:db:d0:16:57:ec:2f:2d:4b:45:01:e8:80:6c:
31:2b:d0:9a:bb:50:2a:34:60:b4:aa:95:9d:0c:91:
a4:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:05:7C:1A:BE:20:C0:B2:37:9A:54:E1:3C:6A:1A:CC:DE:DC:97:D9
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/kwV8Gr4gwLI3mlThPGoazN7cl9k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:7:2000::/48
Signature Algorithm: sha256WithRSAEncryption
47:a6:84:6b:60:46:e8:9a:9f:3c:29:55:6d:88:f5:9b:9a:2a:
d9:3c:ad:05:0c:a6:ac:71:34:6c:06:9e:bf:eb:df:df:34:1c:
db:09:b6:82:25:c1:ad:cc:00:75:fd:b4:54:2e:37:b2:15:1d:
25:fd:c3:ae:c9:a8:99:95:23:d5:9c:7a:3f:99:2c:3d:8e:71:
f2:08:d7:44:73:2d:28:a8:a1:71:d3:70:23:93:a9:33:17:bf:
c2:2a:de:f5:d1:4c:e4:83:55:6e:19:da:a9:6c:63:ef:e9:04:
40:07:dd:e7:02:b5:7c:9b:26:71:ee:4b:70:15:0d:9c:75:2b:
4b:28:b8:19:27:7b:26:b9:47:4f:9e:04:75:4b:06:73:e7:5c:
e2:e0:0b:93:16:76:64:31:9f:73:ec:47:49:87:a4:d3:a4:3b:
07:2e:c4:37:0b:a7:d9:1e:28:a2:18:04:06:65:e2:8d:94:06:
48:eb:8c:38:84:73:60:ab:28:db:07:23:de:26:ba:aa:38:af:
fd:a7:0e:29:9a:85:49:c3:0a:b3:88:e3:9b:4c:73:f4:7e:03:
fd:a8:0a:ee:75:6b:1e:1e:1b:d0:d0:c1:18:02:f2:d7:60:20:
cd:27:40:d0:0c:8a:a8:ff:96:9a:e3:6e:86:4b:92:b9:0a:d9:
ad:0f:d0:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org