Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/KDnCsHWVshCyJb_ScNnceyy2mdw.roa
File: KDnCsHWVshCyJb_ScNnceyy2mdw.roa (raw, json)
Hash identifier: jUKWG4mN3dwOaeNWydqVz6MVqX9scYYVnA2PtOy4H/s=
Subject key identifier: 28:39:C2:B0:75:95:B2:10:B2:25:BF:D2:70:D9:DC:7B:2C:B6:99:DC
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 0FE92950
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/KDnCsHWVshCyJb_ScNnceyy2mdw.roa
Signing time: Sat 01 Jan 2022 14:59:46 +0000
ROA not before: Sat 01 Jan 2022 14:59:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206479
IP address blocks: 2a06:e881:2100::/44 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 266938704 (0xfe92950)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 1 14:59:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2839c2b07595b210b225bfd270d9dc7b2cb699dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a3:d7:fb:e4:fb:e1:57:ad:1c:a0:0f:8f:4d:
c1:86:40:53:b3:7d:c3:6b:92:e1:17:1f:43:d9:17:
35:78:3b:d7:2c:a0:a7:39:6b:e6:71:c6:c1:dc:61:
ac:0d:de:df:f6:18:38:48:79:85:ca:04:eb:a1:90:
91:af:74:83:eb:71:28:30:17:5b:34:7f:b6:f8:e4:
e2:f4:4b:ea:0f:ff:bd:f2:c4:fe:25:65:36:b4:bf:
cd:a4:b4:e1:ec:c6:b6:9c:2a:44:75:c7:39:17:53:
94:38:9f:f9:91:fc:d1:e8:eb:ba:a4:d0:76:90:7e:
e5:4c:da:97:e9:cb:33:8d:ba:93:9e:25:b6:b1:47:
5c:a0:e1:7a:ed:2a:b5:ef:f0:4d:e0:fb:cd:50:46:
71:98:21:bf:31:73:42:e5:e7:3f:05:31:e3:8a:9a:
1f:6a:0e:cc:d1:eb:98:5c:8e:32:e9:4c:20:77:0b:
82:c7:d7:d3:59:18:d2:e0:50:06:79:ca:93:0d:d7:
36:f2:f7:c2:b7:70:05:69:74:4d:98:3e:e6:57:40:
54:8e:89:52:ea:ff:79:38:9a:f3:51:65:f5:f6:9a:
53:39:30:a8:e4:fb:fe:04:c8:00:e2:a1:3f:5d:e2:
ae:61:cc:2a:1c:51:fd:3a:d9:9f:9f:83:84:4f:1b:
71:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:39:C2:B0:75:95:B2:10:B2:25:BF:D2:70:D9:DC:7B:2C:B6:99:DC
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/KDnCsHWVshCyJb_ScNnceyy2mdw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:2100::/44
Signature Algorithm: sha256WithRSAEncryption
b5:14:c7:c1:53:45:9a:a2:db:9d:20:82:ab:c1:65:bd:38:30:
02:80:b1:89:76:e9:1c:19:22:00:60:58:39:0c:85:0f:60:07:
2e:cf:d9:8d:b5:d9:24:a5:e5:c9:7f:99:86:d9:b6:8a:bf:38:
15:e7:d4:08:31:62:98:75:81:ef:bd:b2:2c:3f:4a:25:7d:8b:
c6:45:55:ef:bc:8e:84:38:86:ca:df:ca:e4:50:94:be:51:9e:
91:99:4e:21:36:69:02:b7:93:95:07:fb:37:8d:c8:0a:db:12:
10:97:de:a9:53:ae:e4:72:86:45:bb:6d:0e:21:31:02:6b:ef:
e5:69:a3:b4:e2:0e:82:6b:0c:a0:04:44:f2:b3:b7:b6:03:74:
cc:a2:b4:96:95:b8:87:90:3c:0c:e1:a1:6b:2e:a7:67:9f:ba:
b1:ce:6c:33:ab:bb:56:98:40:16:60:03:2c:2d:7c:4b:be:a0:
2a:3b:50:89:99:01:6f:08:5d:b7:b7:82:15:20:13:f5:42:54:
ed:f1:3c:45:ed:5e:92:58:d0:7f:ef:bd:b8:b6:3e:58:a8:eb:
f9:bb:cd:a7:25:19:04:64:82:f8:ec:43:34:7b:00:2c:08:28:
ce:04:e4:87:64:65:80:86:8c:64:74:9c:78:8c:e7:1b:8b:13:
8d:01:1f:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:42 2023 by rpki-client on console-ams.rpki-client.org