Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/rSevUkQvDW1kSnJ4Jpo0rvBvXxs.roa
File: rSevUkQvDW1kSnJ4Jpo0rvBvXxs.roa (raw, json)
Hash identifier: OrYc307twKpTEylR+w+UBYiF/2cdI47GkJjVjOMj3x8=
Subject key identifier: AD:27:AF:52:44:2F:0D:6D:64:4A:72:78:26:9A:34:AE:F0:6F:5F:1B
Certificate issuer: /CN=89056fa9625b6c87404267c6dc219924ac160045
Certificate serial: 0183141B0770F46C306BA2C82219911679FB
Authority key identifier: 89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/rSevUkQvDW1kSnJ4Jpo0rvBvXxs.roa
Signing time: Tue 06 Sep 2022 18:40:59 +0000
ROA not before: Tue 06 Sep 2022 18:40:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136258
IP address blocks: 2a11:840:12::/48 maxlen: 48
2a11:840:8::/48 maxlen: 48
2a11:840:10::/48 maxlen: 48
2a11:840:18::/48 maxlen: 48
2a11:840:13::/48 maxlen: 48
2a11:840:11::/48 maxlen: 48
2a11:840:19::/48 maxlen: 48
2a11:840:14::/48 maxlen: 48
2a11:840:17::/48 maxlen: 48
2a11:840:7::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:14:1b:07:70:f4:6c:30:6b:a2:c8:22:19:91:16:79:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89056fa9625b6c87404267c6dc219924ac160045
Validity
Not Before: Sep 6 18:40:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad27af52442f0d6d644a7278269a34aef06f5f1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:c8:a1:b3:3c:17:00:1a:87:8a:37:a4:7a:4b:
1f:da:0d:f6:7a:5c:8a:bc:85:7e:1a:a2:13:35:79:
9f:b1:42:be:1d:2b:a9:9c:31:97:9e:97:34:ca:8c:
02:a2:5f:d9:eb:96:a6:4e:ba:7b:38:61:e3:10:1c:
37:1c:78:9f:d6:23:55:55:1a:eb:e3:60:90:d9:ba:
35:bc:e4:6f:2c:9a:9f:df:c5:20:91:02:2b:71:14:
e7:c9:7d:8f:24:6a:c8:e9:d9:3f:79:59:c7:d6:45:
c5:87:9e:cc:d8:6f:8e:f5:d6:59:ee:a4:bd:89:0b:
17:dd:b0:3c:ff:1e:95:32:44:2e:4e:30:4d:3e:6e:
dd:53:b1:6e:18:4c:e4:9e:c9:c4:b0:ea:da:7a:98:
37:72:60:7c:f9:c1:8d:3b:8c:94:71:ff:f5:75:57:
b4:8a:c4:e1:7b:6b:ba:fb:4b:25:ad:82:b7:33:12:
25:78:0c:35:8e:d9:fb:fb:0a:43:b7:81:6d:d5:8d:
57:f0:77:95:cd:88:39:6b:30:36:1d:76:41:a4:64:
11:3a:42:19:48:60:a4:7c:2f:a9:43:3b:bb:5c:19:
b2:86:d0:8e:fd:58:1c:9d:51:01:f7:f2:d2:d5:7a:
65:55:f6:3d:b8:22:b2:3a:d8:82:14:83:d9:76:bc:
83:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:27:AF:52:44:2F:0D:6D:64:4A:72:78:26:9A:34:AE:F0:6F:5F:1B
X509v3 Authority Key Identifier:
keyid:89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/rSevUkQvDW1kSnJ4Jpo0rvBvXxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:840:7::-2a11:840:8:ffff:ffff:ffff:ffff:ffff
2a11:840:10::-2a11:840:14:ffff:ffff:ffff:ffff:ffff
2a11:840:17::-2a11:840:19:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
95:79:bf:5b:b0:62:07:f0:a1:6c:d2:db:7b:36:29:9d:18:ca:
0d:22:e8:14:c2:e0:e9:66:9a:5e:d9:9d:39:29:10:3e:85:93:
ad:e5:cf:28:b2:f6:93:b1:09:bd:e6:d9:d8:7f:e1:4d:69:98:
8d:1f:70:c6:af:99:83:09:e9:c1:94:d6:3c:ab:03:7c:e7:a9:
23:9c:5e:e8:3e:1f:fb:96:62:d8:5d:78:e4:ab:ae:4e:9b:59:
b4:de:09:60:b0:bd:73:63:68:5d:27:5b:d3:c1:54:60:14:52:
ec:99:32:51:89:d8:db:04:77:e3:cc:99:22:b0:80:4c:4f:60:
e7:44:ca:ef:bb:cc:d5:03:07:df:92:4e:71:f7:a1:69:67:bc:
aa:6a:1c:af:d7:ee:e5:35:61:f7:54:72:1a:62:2f:16:c4:32:
4b:58:09:1e:35:ba:a7:2a:c8:5c:e1:c7:a1:b3:64:e3:40:fb:
8e:4f:74:c1:79:3f:25:10:b3:d1:22:e9:f7:f3:b6:7a:18:c6:
17:45:ca:19:09:72:14:b1:2a:fb:e1:ca:0d:e7:39:5c:de:9f:
f0:8c:74:58:b4:f7:81:d5:3a:40:1a:ea:c1:1b:dc:d1:57:e6:
ed:8a:ea:7c:3c:57:91:bb:2f:ed:d3:b2:8b:70:4c:b2:7e:a8:
fa:97:9f:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:20 2024 by rpki-client on console-fra.rpki-client.org