Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/tv-TvmPsQlMVzwuzl6vUhNJtXlo.roa
File: tv-TvmPsQlMVzwuzl6vUhNJtXlo.roa (raw, json)
Hash identifier: /43njN9nT+1JjKqkd25U2Hs2sxhnoy6MbhCJ6felx2w=
Subject key identifier: B6:FF:93:BE:63:EC:42:53:15:CF:0B:B3:97:AB:D4:84:D2:6D:5E:5A
Certificate issuer: /CN=e6049cf87dd8f1fd4c8024b5a6c9ea94f17b6fbd
Certificate serial: 17317C49
Authority key identifier: E6:04:9C:F8:7D:D8:F1:FD:4C:80:24:B5:A6:C9:EA:94:F1:7B:6F:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5gSc-H3Y8f1MgCS1psnqlPF7b70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/tv-TvmPsQlMVzwuzl6vUhNJtXlo.roa
Signing time: Sat 01 Jan 2022 05:55:43 +0000
ROA not before: Sat 01 Jan 2022 05:55:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12502
IP address blocks: 2001:67c:684::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 389119049 (0x17317c49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6049cf87dd8f1fd4c8024b5a6c9ea94f17b6fbd
Validity
Not Before: Jan 1 05:55:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b6ff93be63ec425315cf0bb397abd484d26d5e5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:2f:e3:8c:f6:25:8b:7c:1c:19:4c:21:61:f9:
8e:04:3f:16:3d:f5:2b:00:b5:23:5a:cd:bc:a8:2a:
10:d8:ea:5b:77:42:c4:61:99:b5:9e:75:1e:94:33:
f6:b5:83:80:df:8c:ef:69:e6:1b:01:87:6b:47:fb:
e3:68:56:04:9f:7a:61:c0:f2:ea:d0:2f:9f:7f:4a:
52:e0:6e:84:c9:1f:6a:ed:c1:5c:19:5c:cf:5e:bc:
30:6a:9e:80:c5:2b:5a:b7:97:09:6e:60:a6:20:cc:
f2:4c:4c:98:dd:c5:87:2b:ed:53:4f:ae:7f:d9:1a:
00:a7:13:d4:a2:67:bd:da:d0:bc:c3:7a:db:70:78:
6d:ae:8a:79:6b:eb:43:12:4d:07:2a:c0:27:23:0f:
5c:34:9a:69:c8:92:3f:69:c9:2c:4a:8f:d4:3f:f4:
f9:5b:6f:1d:9e:47:49:c2:8a:06:01:de:b0:41:4e:
9c:0c:57:86:03:41:e1:90:c2:8e:49:d9:d1:0a:f2:
ad:da:ea:65:87:62:a8:24:2f:e2:cc:d0:33:4b:72:
88:de:c7:4f:12:71:62:cf:70:41:cc:d6:a3:64:06:
5e:a1:23:c3:18:33:cf:d0:45:5d:d5:7e:89:c3:99:
c1:e8:f8:1f:55:78:31:4e:46:d3:c8:eb:3b:41:12:
c8:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:FF:93:BE:63:EC:42:53:15:CF:0B:B3:97:AB:D4:84:D2:6D:5E:5A
X509v3 Authority Key Identifier:
keyid:E6:04:9C:F8:7D:D8:F1:FD:4C:80:24:B5:A6:C9:EA:94:F1:7B:6F:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5gSc-H3Y8f1MgCS1psnqlPF7b70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/tv-TvmPsQlMVzwuzl6vUhNJtXlo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/5gSc-H3Y8f1MgCS1psnqlPF7b70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:684::/48
Signature Algorithm: sha256WithRSAEncryption
69:f2:1a:44:9d:f5:f9:65:e5:bb:34:4a:29:18:e4:b8:a6:7f:
af:17:db:d5:ca:22:51:06:81:e8:88:8b:8f:3a:98:b6:09:77:
71:87:68:c7:48:5b:d3:d7:a2:a2:1e:b7:df:e7:f1:df:96:94:
bb:09:68:02:c8:40:8a:d7:96:37:04:7d:d9:41:b4:db:61:62:
5d:8d:d5:44:56:ae:da:e8:86:a8:0c:fc:04:91:da:d1:ac:56:
16:d5:58:22:06:3c:bd:e6:13:ba:53:26:b6:4c:c6:93:77:a0:
ba:e2:37:02:4e:83:3b:63:26:ad:84:93:cd:f1:ea:c1:69:9a:
cb:42:22:fa:0c:17:9e:07:e2:85:b7:9c:f8:52:9d:cc:f8:f0:
f5:a9:63:17:ae:fb:0f:6f:c1:04:02:ce:10:78:a9:a2:5d:ab:
f0:5e:9f:cb:af:e5:9c:25:df:81:82:b8:2d:18:27:b1:12:19:
e0:1e:af:ed:8f:07:e0:ea:6f:cb:b4:dd:01:73:68:aa:82:ae:
9f:1d:1a:ed:e2:a1:c8:a7:27:78:0c:6d:26:65:55:fe:60:39:
19:8e:40:d0:70:8e:9a:f6:24:78:3c:c9:82:e8:82:2c:2a:ec:
76:6e:13:9d:97:08:65:0a:34:a2:23:5e:34:f5:64:4c:7b:5b:
74:33:c3:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:36 2023 by rpki-client on console-ams.rpki-client.org