Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/kS8YLv8hYFHZthXa1Yz8BvUlDS0.roa
File: kS8YLv8hYFHZthXa1Yz8BvUlDS0.roa (raw, json)
Hash identifier: jCpJhYxBjuTbOU2fw9ebiLiA+tOFUxExpG5SE3g6dqU=
Subject key identifier: 91:2F:18:2E:FF:21:60:51:D9:B6:15:DA:D5:8C:FC:06:F5:25:0D:2D
Certificate issuer: /CN=d673d849b7d5047376d57e6f796f0018b70b4506
Certificate serial: 0899BF82
Authority key identifier: D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/kS8YLv8hYFHZthXa1Yz8BvUlDS0.roa
Signing time: Sat 01 Jan 2022 02:51:47 +0000
ROA not before: Sat 01 Jan 2022 02:51:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28771
IP address blocks: 2a01:190:167b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144293762 (0x899bf82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d673d849b7d5047376d57e6f796f0018b70b4506
Validity
Not Before: Jan 1 02:51:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=912f182eff216051d9b615dad58cfc06f5250d2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ae:40:f5:8a:6d:f7:31:3c:dc:bb:85:ec:ce:
3d:cd:96:cd:40:59:95:8d:83:78:dd:a6:74:85:d1:
a3:fb:9d:ec:06:ee:c9:41:4e:32:23:d3:68:ea:d9:
12:98:89:41:13:d9:4d:6b:53:be:11:a6:29:34:98:
c2:af:a5:87:f5:fb:be:3e:21:24:91:8c:0c:74:e0:
39:fe:be:47:a4:f8:62:d5:db:78:f9:02:a7:4d:50:
ed:f7:a6:6f:05:05:dd:74:e5:20:0f:b2:8c:34:3d:
df:b8:fc:98:da:32:4e:85:6c:15:e0:e8:43:58:ee:
27:79:a8:37:9c:3c:ba:e0:fe:b4:62:b2:53:02:91:
a4:cb:7c:06:ca:50:0a:42:dc:f6:8b:4a:0a:ad:74:
2b:56:f3:3d:8c:b9:a4:b8:4f:0b:bc:ee:52:de:ed:
65:96:ea:60:93:cf:f4:a6:fb:fe:7a:c9:55:a7:c0:
c1:1b:c5:11:ae:b1:37:ea:4e:9a:f5:9d:fc:1c:6f:
c6:b2:05:49:70:79:9c:6a:6d:e9:32:52:08:69:f4:
6f:15:2a:fc:80:82:be:b1:77:ae:db:a1:e3:44:c5:
47:e5:fb:bd:21:1d:15:5e:4f:b3:ef:07:41:65:5a:
ad:cc:b0:f2:e6:0a:af:cb:45:71:ea:81:c0:fe:44:
d4:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:2F:18:2E:FF:21:60:51:D9:B6:15:DA:D5:8C:FC:06:F5:25:0D:2D
X509v3 Authority Key Identifier:
keyid:D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/kS8YLv8hYFHZthXa1Yz8BvUlDS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/1nPYSbfVBHN21X5veW8AGLcLRQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:190:167b::/48
Signature Algorithm: sha256WithRSAEncryption
27:4d:b7:91:d4:7f:94:65:52:4f:6c:7d:29:2b:0c:4c:b0:78:
2e:49:84:47:9c:ea:e5:5a:df:22:84:6e:d9:31:dd:19:d1:6d:
ee:76:34:c3:cc:55:dc:a6:17:25:81:2c:66:0d:fa:2c:99:bd:
b0:01:df:80:37:77:e6:28:7a:65:8a:94:08:e9:32:12:82:1f:
9f:67:3a:99:0c:e5:6c:b3:40:a1:c0:5f:91:f6:1d:ba:cb:9d:
f6:6f:f5:97:43:cf:18:ea:84:c5:98:de:4f:bd:12:06:9d:78:
88:fd:08:ee:3d:fb:7b:5a:f6:52:31:73:27:e0:96:52:b5:57:
b5:97:28:b4:27:e0:9e:62:1c:5d:35:ee:3b:25:e5:90:e5:48:
0f:2d:7d:08:79:ad:d3:62:49:d2:8c:bb:7c:42:71:0f:42:8f:
d6:4d:42:76:51:cd:39:f6:5d:e2:d3:c3:62:c3:dd:7a:98:4f:
a2:97:7a:ec:dc:59:25:b5:34:99:5f:d8:9a:5a:ac:c0:9e:19:
8b:1f:b0:47:b5:5c:c3:c3:ec:ff:78:25:95:03:b8:31:a1:40:
94:1e:7f:12:13:72:5b:96:3b:8e:9f:d4:30:2c:72:b9:4e:44:
81:37:d0:93:27:92:21:be:67:3a:ea:7f:4c:e7:99:d1:92:33:
00:ea:b8:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:20 2024 by rpki-client on console-fra.rpki-client.org