Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/67QXxMh1KpXhPt0JZPl_8QXFNqQ.roa
File: 67QXxMh1KpXhPt0JZPl_8QXFNqQ.roa (raw, json)
Hash identifier: Rg37k/JRYDXpPwdBHmZN+eFj7KpypFFonljrjFaYARA=
Subject key identifier: EB:B4:17:C4:C8:75:2A:95:E1:3E:DD:09:64:F9:7F:F1:05:C5:36:A4
Certificate issuer: /CN=89056fa9625b6c87404267c6dc219924ac160045
Certificate serial: 0183141B04AEB9BAC8C4A029DCBEA13DBD92
Authority key identifier: 89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/67QXxMh1KpXhPt0JZPl_8QXFNqQ.roa
Signing time: Tue 06 Sep 2022 18:40:58 +0000
ROA not before: Tue 06 Sep 2022 18:40:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49770
IP address blocks: 2a11:840:28::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:14:1b:04:ae:b9:ba:c8:c4:a0:29:dc:be:a1:3d:bd:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89056fa9625b6c87404267c6dc219924ac160045
Validity
Not Before: Sep 6 18:40:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ebb417c4c8752a95e13edd0964f97ff105c536a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:3d:16:a9:56:3b:2d:68:5d:0a:d3:58:d5:a9:
9b:d1:97:f9:98:fb:87:ff:7d:c7:5f:09:3a:af:6c:
e7:e7:ee:51:9f:58:f2:66:93:8d:bd:12:2a:83:e4:
1e:6b:79:48:fa:a0:7c:ee:c9:41:77:6f:3f:dc:88:
fb:f7:46:95:fc:cd:ac:1a:32:9c:0d:77:03:ad:98:
58:b2:57:44:c4:d3:89:0e:3c:7a:d9:60:cd:f1:0f:
da:30:36:90:c7:6b:b7:84:26:1b:74:80:6e:9e:0f:
a5:d3:89:85:f6:e6:14:17:cd:5a:d8:0b:50:64:b4:
b8:41:5a:56:10:10:e9:ee:47:6b:5f:b6:20:64:67:
e4:64:23:8d:36:8f:0f:f6:7b:2d:ca:5f:fe:b1:67:
24:62:fc:f0:34:0f:65:b8:59:67:2f:a2:9f:f9:50:
c0:25:83:de:6b:72:ec:25:86:64:cd:3d:e5:70:1f:
bb:77:18:30:9f:ba:b4:a5:16:b5:f4:e5:6b:73:a8:
4f:16:46:c2:13:18:5d:52:52:8d:3d:84:01:a6:07:
d5:7b:80:5a:9b:82:cd:98:d7:8d:58:6a:cf:60:f6:
4c:4b:a8:b7:41:34:32:9b:dc:c2:ee:58:4a:50:36:
73:d5:51:f2:71:a4:f0:05:6c:f1:6d:a5:7a:b7:01:
48:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:B4:17:C4:C8:75:2A:95:E1:3E:DD:09:64:F9:7F:F1:05:C5:36:A4
X509v3 Authority Key Identifier:
keyid:89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/67QXxMh1KpXhPt0JZPl_8QXFNqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:840:28::/48
Signature Algorithm: sha256WithRSAEncryption
83:c1:d4:7e:dc:32:41:a8:93:4d:a8:bc:8b:4d:1d:ce:ca:04:
54:9c:95:50:04:f2:45:cd:55:d7:a6:cc:6a:92:a6:b1:4f:35:
30:b3:5c:44:89:62:d9:6e:8b:de:9f:c0:94:0c:b7:da:63:80:
29:15:93:64:30:60:ad:d8:06:c1:ee:d0:51:38:b4:97:b3:47:
5d:4a:90:93:2b:b3:90:3a:a2:c3:7c:ff:fa:1d:c4:bc:84:c4:
b2:fc:3c:5c:23:03:50:0c:b3:3d:16:28:be:cb:dd:82:d0:46:
23:f3:4d:ca:61:7d:5f:6f:36:24:1e:b2:77:53:97:77:70:ce:
77:77:0f:eb:6a:62:af:07:3c:03:13:a4:ee:fd:ed:a1:f9:30:
f8:85:10:78:83:27:4c:02:2e:03:5d:83:af:ef:fa:15:63:08:
33:39:6c:09:eb:80:77:de:fb:e3:d2:95:44:1a:f3:71:a6:ec:
76:ef:8e:31:62:37:db:99:cd:cc:3d:59:82:50:38:6b:e5:48:
a6:e0:62:0d:f7:92:5d:af:19:dc:a2:34:c8:ce:0f:40:b4:38:
1c:7d:f3:e9:09:7d:43:5c:a1:e3:ba:32:ff:4b:1c:de:b0:85:
07:41:77:b7:e2:76:76:cc:ac:4e:4c:00:f8:c3:da:cb:e4:d9:
14:6f:03:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:20 2024 by rpki-client on console-fra.rpki-client.org