Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/s5L4sSgtaGy2Ob_PLAhO2MmcrjI.roa
File: s5L4sSgtaGy2Ob_PLAhO2MmcrjI.roa (raw, json)
Hash identifier: TEQIdjpFPZ1+gibULUQKUyomSvLwGD/6SMOqkIW2T7I=
Subject key identifier: B3:92:F8:B1:28:2D:68:6C:B6:39:BF:CF:2C:08:4E:D8:C9:9C:AE:32
Certificate issuer: /CN=0bac82804700ad36538bf86f34c073e971430da5
Certificate serial: 182BD50B
Authority key identifier: 0B:AC:82:80:47:00:AD:36:53:8B:F8:6F:34:C0:73:E9:71:43:0D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C6yCgEcArTZTi_hvNMBz6XFDDaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/s5L4sSgtaGy2Ob_PLAhO2MmcrjI.roa
Signing time: Sat 01 Jan 2022 04:52:43 +0000
ROA not before: Sat 01 Jan 2022 04:52:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39871
IP address blocks: 2001:67c:254c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 405525771 (0x182bd50b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bac82804700ad36538bf86f34c073e971430da5
Validity
Not Before: Jan 1 04:52:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b392f8b1282d686cb639bfcf2c084ed8c99cae32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ea:44:b4:09:94:26:ff:34:03:a5:44:38:24:
68:af:ee:35:db:a7:4b:27:40:35:ca:2f:de:9d:c7:
13:91:18:0d:0c:e4:07:ce:c0:52:a2:b3:45:c1:9b:
ff:c9:d3:59:fc:a1:d4:e0:e0:f1:bb:67:bc:46:08:
d0:47:64:57:49:ad:50:38:f7:c2:00:8d:21:d7:5e:
18:c8:5f:6e:97:9a:f4:6f:51:27:a0:b0:3b:68:47:
e1:03:dc:92:ac:40:a3:ad:73:61:6d:32:3a:43:0a:
7a:e2:9a:80:eb:59:69:af:ac:b2:d2:c8:9c:6f:6e:
1e:2c:7d:95:3b:e0:c1:36:07:bd:83:4b:82:88:ec:
07:d0:f3:4a:a3:2a:6e:32:22:cb:a7:cc:24:62:79:
d6:19:89:77:57:6a:fc:7c:4d:08:f3:11:28:23:bf:
a8:41:89:fe:d4:a8:54:ae:de:2b:c5:b7:bf:ae:58:
f2:08:65:52:79:a3:c6:e8:99:f0:20:00:ee:3b:0b:
04:8d:5a:d8:6e:b3:18:d4:7c:a5:0a:cf:83:f9:5b:
c5:24:e8:09:5b:72:d4:e8:9d:96:c5:38:95:2a:13:
c5:65:c2:30:87:0a:d5:09:b7:6b:91:6b:82:5b:05:
1f:79:f4:e0:ca:f6:85:b2:24:ba:fe:80:b3:02:56:
9a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:92:F8:B1:28:2D:68:6C:B6:39:BF:CF:2C:08:4E:D8:C9:9C:AE:32
X509v3 Authority Key Identifier:
keyid:0B:AC:82:80:47:00:AD:36:53:8B:F8:6F:34:C0:73:E9:71:43:0D:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C6yCgEcArTZTi_hvNMBz6XFDDaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/s5L4sSgtaGy2Ob_PLAhO2MmcrjI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/C6yCgEcArTZTi_hvNMBz6XFDDaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:254c::/48
Signature Algorithm: sha256WithRSAEncryption
9e:b6:c7:74:bd:dd:7b:13:34:40:79:0c:93:6a:80:1d:43:41:
ef:77:df:3c:44:b2:39:24:af:58:7e:21:da:0a:bf:b0:66:4f:
95:3e:e6:b4:e3:6b:6f:61:b5:d2:6e:67:93:63:61:73:e7:0a:
e5:5b:31:25:bb:ab:fd:05:ca:34:bd:39:0f:fb:e8:6c:ea:46:
bd:bd:13:0c:03:30:c1:a1:fb:c6:02:be:87:07:84:c0:61:04:
5b:9b:f8:61:e7:14:b0:15:98:06:e8:c8:ee:75:b6:1b:fe:d2:
9c:9a:2a:70:1a:44:3d:48:73:c0:25:37:d1:7b:31:dd:a8:73:
61:92:3d:36:cb:a5:83:91:c8:2a:31:9c:c9:19:d3:5a:c1:d5:
11:ba:c0:81:48:4b:d2:15:c6:c3:34:1f:82:61:c9:cf:e9:11:
f3:fd:2b:4c:c7:e0:fa:da:81:31:8f:18:aa:ae:48:22:f5:0c:
1b:c1:f9:58:de:f2:83:86:d2:30:b4:a4:fb:ff:74:f5:9b:75:
19:6a:71:81:67:ed:71:ec:4d:58:b8:7b:26:93:a5:10:7a:76:
ca:d4:00:78:45:4a:1e:8c:88:24:6f:a9:c3:35:68:8a:e1:1e:
ab:57:50:65:54:79:53:be:2d:e9:e3:6f:4e:06:ad:25:af:60:
9e:db:e6:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:40 2023 by rpki-client on console-ams.rpki-client.org