Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/36e3cb-477e-4f5e-bd56-9102c3c05138/1/huWJCDGCBt4lEEcoMKyOTT4PAOs.roa
File: huWJCDGCBt4lEEcoMKyOTT4PAOs.roa (raw, json)
Hash identifier: TWW65yOn6ZEJofH/reX3/QD5US+gjSZTGTqLVT5nCfI=
Subject key identifier: 86:E5:89:08:31:82:06:DE:25:10:47:28:30:AC:8E:4D:3E:0F:00:EB
Certificate issuer: /CN=599a740f4bc30a2c04cdcb3344af0d6a2d05a481
Certificate serial: 01849C40B0A14D889CF9F5CBC98F2151B67A
Authority key identifier: 59:9A:74:0F:4B:C3:0A:2C:04:CD:CB:33:44:AF:0D:6A:2D:05:A4:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WZp0D0vDCiwEzcszRK8Nai0FpIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/36e3cb-477e-4f5e-bd56-9102c3c05138/1/huWJCDGCBt4lEEcoMKyOTT4PAOs.roa
Signing time: Mon 21 Nov 2022 22:13:15 +0000
ROA not before: Mon 21 Nov 2022 22:13:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57295
IP address blocks: 2001:67c:2ba8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9c:40:b0:a1:4d:88:9c:f9:f5:cb:c9:8f:21:51:b6:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=599a740f4bc30a2c04cdcb3344af0d6a2d05a481
Validity
Not Before: Nov 21 22:13:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86e58908318206de2510472830ac8e4d3e0f00eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:20:80:66:45:b1:7f:b4:19:4f:c5:a7:c9:45:
29:52:ec:60:20:ed:71:89:89:80:90:7a:82:23:61:
31:05:70:5f:ef:d4:24:50:fc:50:af:5c:4a:b0:9b:
87:1e:62:26:37:50:6c:39:b1:ce:2e:76:2a:0b:88:
03:f4:ce:ed:05:3b:54:29:48:00:2a:fc:b9:d8:39:
57:6e:34:7b:33:83:49:d8:22:dd:ff:bf:4c:89:f4:
e0:24:d4:6d:c0:26:bc:e3:71:b6:5f:6b:a2:7c:88:
72:52:53:71:9a:8c:37:1d:34:6e:a9:58:85:e6:62:
dd:72:cd:34:4e:40:11:0d:94:d9:26:1a:3b:73:5b:
ce:92:8c:ca:46:b0:9e:56:2f:c5:9c:54:c7:94:f8:
4c:71:d8:48:aa:0e:bf:8e:72:2e:18:fd:cd:5a:ca:
73:a0:58:77:9e:f9:35:04:6a:51:44:a3:12:b6:e9:
63:98:34:1c:30:2c:4f:6b:6f:fd:a8:04:6a:dc:41:
da:f8:91:0b:90:5d:7c:9d:f4:5d:6a:61:5f:79:a5:
45:72:ba:46:d2:62:83:43:aa:2f:1f:5d:a5:dc:d2:
92:35:c6:b2:36:f6:ec:06:02:a3:8c:ee:23:f0:52:
32:ff:9e:28:b7:b3:e0:1e:89:30:1b:19:3d:53:56:
ae:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:E5:89:08:31:82:06:DE:25:10:47:28:30:AC:8E:4D:3E:0F:00:EB
X509v3 Authority Key Identifier:
keyid:59:9A:74:0F:4B:C3:0A:2C:04:CD:CB:33:44:AF:0D:6A:2D:05:A4:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WZp0D0vDCiwEzcszRK8Nai0FpIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/36e3cb-477e-4f5e-bd56-9102c3c05138/1/huWJCDGCBt4lEEcoMKyOTT4PAOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/36e3cb-477e-4f5e-bd56-9102c3c05138/1/WZp0D0vDCiwEzcszRK8Nai0FpIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2ba8::/48
Signature Algorithm: sha256WithRSAEncryption
91:9a:c8:c8:e6:c8:bb:3f:b4:c4:4c:64:a3:44:13:3c:be:14:
03:2b:00:b1:c0:b1:68:8c:fb:5e:20:54:30:5f:0a:db:82:61:
fa:39:8f:fb:51:ec:93:da:69:57:52:a3:22:9e:12:57:e5:7a:
a1:ff:00:78:17:27:e7:9a:f9:f5:23:76:51:63:a1:10:07:28:
e3:07:11:57:c0:3a:c9:34:b1:91:06:e0:39:48:92:d1:38:08:
39:3b:6a:2e:9c:14:d4:cd:4b:1d:6c:57:2a:3c:63:71:e0:4b:
fb:84:74:50:bf:58:83:b5:db:49:4a:e1:a0:10:0e:5c:7b:7c:
18:97:f2:9f:2d:38:69:83:ab:a8:7a:a4:f1:66:26:c6:7c:45:
21:72:38:d7:f0:bd:89:6f:9d:99:1f:4f:39:7c:be:da:df:dd:
17:ea:3c:c3:c4:80:99:8f:1b:4b:aa:f8:61:10:86:8a:ba:2b:
eb:0a:4a:5f:46:df:59:58:fe:91:70:0a:47:d9:dd:b3:5c:22:
5e:ff:37:bf:40:7d:29:c2:74:69:f3:82:a1:5b:97:aa:a1:bf:
f4:2b:e9:83:14:73:fe:82:a4:38:be:0c:aa:33:dc:89:63:cf:
03:e2:ad:d5:66:1d:7c:87:c5:9d:d3:42:81:b2:6a:f7:55:34:
76:78:64:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:46 2024 by rpki-client on console-ams.rpki-client.org