Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/64ce8b-ff7a-4744-9712-d9730f5b5867/1/XGkUtqMOoc8f2Mhh6eYONf8WRkI.roa
File: XGkUtqMOoc8f2Mhh6eYONf8WRkI.roa (raw, json)
Hash identifier: UMHlE9r3O1dZ7wkWs6yvFxzQMRdjqfIKoiFHeq2+rLw=
Subject key identifier: 5C:69:14:B6:A3:0E:A1:CF:1F:D8:C8:61:E9:E6:0E:35:FF:16:46:42
Certificate issuer: /CN=a9d988d1df0a6ccab2e93614951059960bad4342
Certificate serial: 04740140
Authority key identifier: A9:D9:88:D1:DF:0A:6C:CA:B2:E9:36:14:95:10:59:96:0B:AD:43:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qdmI0d8KbMqy6TYUlRBZlgutQ0I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/64ce8b-ff7a-4744-9712-d9730f5b5867/1/XGkUtqMOoc8f2Mhh6eYONf8WRkI.roa
Signing time: Sat 01 Jan 2022 01:02:02 +0000
ROA not before: Sat 01 Jan 2022 01:02:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15557
IP address blocks: 129.104.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74711360 (0x4740140)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9d988d1df0a6ccab2e93614951059960bad4342
Validity
Not Before: Jan 1 01:02:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c6914b6a30ea1cf1fd8c861e9e60e35ff164642
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a9:d6:5d:98:f0:a7:7c:92:7c:a0:a2:2d:dd:
12:2b:5a:f9:83:0d:1f:6f:7c:eb:d0:cc:22:d0:e8:
0e:91:21:8f:a3:fa:ca:8f:5e:82:57:d8:53:11:1c:
2f:6a:23:9f:94:e1:3a:f7:06:95:d7:19:17:1e:cc:
94:6f:67:61:3a:46:c2:f3:f6:f7:c8:29:f3:31:33:
84:49:b0:f3:d2:0a:34:7a:7c:32:48:65:c4:0c:c0:
65:23:6e:41:b5:26:13:ea:b7:fe:88:53:ea:47:b0:
6c:7c:41:5a:24:5e:f2:f3:ce:d5:13:f1:f4:eb:0a:
f8:47:05:c5:82:82:01:e8:5a:54:cf:b1:04:16:5b:
11:b9:88:37:ad:58:9c:70:f8:77:9a:eb:78:ef:bf:
f5:94:fa:3d:15:e7:4d:f8:48:69:4f:d5:15:a8:67:
2b:03:68:cc:ac:bd:a3:97:cf:88:03:53:70:44:54:
a4:a8:b4:bc:7e:9d:58:0e:90:21:e1:e2:29:4e:ed:
8f:16:54:a4:43:f6:42:f1:01:45:e6:69:fc:be:54:
9d:0f:24:9a:89:d8:ec:c0:8d:d0:a0:48:f8:a6:9b:
a6:5a:b1:99:12:f9:b0:76:5e:65:2c:b6:21:59:3f:
9e:32:28:34:fd:2c:63:75:41:38:fe:55:4a:ed:46:
01:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:69:14:B6:A3:0E:A1:CF:1F:D8:C8:61:E9:E6:0E:35:FF:16:46:42
X509v3 Authority Key Identifier:
keyid:A9:D9:88:D1:DF:0A:6C:CA:B2:E9:36:14:95:10:59:96:0B:AD:43:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qdmI0d8KbMqy6TYUlRBZlgutQ0I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/64ce8b-ff7a-4744-9712-d9730f5b5867/1/XGkUtqMOoc8f2Mhh6eYONf8WRkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/64ce8b-ff7a-4744-9712-d9730f5b5867/1/qdmI0d8KbMqy6TYUlRBZlgutQ0I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
129.104.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2d:6d:86:08:79:75:f7:5d:70:cf:aa:2e:0a:2c:45:07:aa:6b:
62:9e:ca:42:cc:dd:79:14:4d:2c:26:b3:15:df:65:aa:dc:91:
8b:e2:2d:a7:63:88:8e:13:fc:3d:48:9e:17:cc:c6:ad:9f:5c:
1c:11:f8:a2:03:63:5b:b3:bf:af:06:0f:11:ff:b6:62:c7:d6:
53:c4:05:6d:1f:67:cf:b7:4c:94:e5:a6:5a:4a:4a:11:a7:8c:
1d:ed:3f:62:f2:b7:d6:5c:4c:1b:81:db:a3:2a:6e:29:7b:ca:
60:13:f2:f9:e0:72:6f:c7:b7:32:27:0a:9e:e0:11:76:da:0c:
95:35:b6:e8:f7:c2:fa:12:b5:ff:f8:ae:f2:16:8e:47:38:2f:
78:4d:8a:0f:28:bd:36:54:3a:89:20:5e:33:9a:9e:ae:bb:c0:
db:cf:2d:11:2d:08:1f:1a:21:70:06:22:87:04:96:b1:a8:79:
bf:ac:be:e3:f1:58:96:5f:9f:62:ff:ea:d2:3c:b1:86:3f:37:
04:c3:fa:dc:d5:f4:18:8d:59:f2:e5:5e:d2:64:73:c0:28:a0:
65:20:a1:37:e9:90:97:e6:5a:05:b6:0f:0c:99:70:72:e9:d9:
c7:03:c0:8e:a1:db:8e:4c:d8:cd:ed:7e:a0:01:bb:08:68:35:
f5:98:a7:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:43 2024 by rpki-client on console-ams.rpki-client.org