Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/442101-780b-47ac-857d-f9e7cb03c527/1/kBrTf99ocgyPLNS4PILsCXAen6U.roa
File: kBrTf99ocgyPLNS4PILsCXAen6U.roa (raw, json)
Hash identifier: 8XR9M4wUoRgiSLt+InZ35gODRn3bFU0OnSDgGnJFc6k=
Subject key identifier: 90:1A:D3:7F:DF:68:72:0C:8F:2C:D4:B8:3C:82:EC:09:70:1E:9F:A5
Certificate issuer: /CN=bc65b4ba4d7869d5cb8f9574f0f4feee70ebc6c5
Certificate serial: 0730C616
Authority key identifier: BC:65:B4:BA:4D:78:69:D5:CB:8F:95:74:F0:F4:FE:EE:70:EB:C6:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vGW0uk14adXLj5V08PT-7nDrxsU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/442101-780b-47ac-857d-f9e7cb03c527/1/kBrTf99ocgyPLNS4PILsCXAen6U.roa
Signing time: Sat 01 Jan 2022 02:55:12 +0000
ROA not before: Sat 01 Jan 2022 02:55:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207893
IP address blocks: 2a0f:ec80::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120636950 (0x730c616)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc65b4ba4d7869d5cb8f9574f0f4feee70ebc6c5
Validity
Not Before: Jan 1 02:55:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=901ad37fdf68720c8f2cd4b83c82ec09701e9fa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:fe:77:50:13:c5:e8:0a:25:90:25:39:03:c7:
5e:98:e5:47:e8:42:1c:a4:56:ff:99:16:47:d0:dd:
d8:8d:65:24:77:c5:18:bf:c0:16:bf:23:b5:c3:4b:
c7:dc:9a:6a:12:ee:0f:4c:06:a9:31:ca:08:be:f5:
4b:a7:57:d9:3a:04:6f:77:1f:77:b9:93:1c:d9:e8:
a1:05:24:40:eb:0a:39:42:df:13:6e:2d:ce:3f:5f:
af:29:d0:3d:4b:fa:f8:dd:3b:ad:85:b7:56:d9:e3:
69:4d:5b:03:5a:f0:f7:f4:f0:d7:cd:f6:7d:33:da:
51:cb:a3:43:72:d5:26:80:b0:4a:57:4e:13:cc:30:
12:b3:e4:6a:ab:00:96:d5:01:32:46:b9:d7:54:43:
04:a8:4e:35:f0:e6:09:66:16:4c:3e:6b:03:63:82:
df:e8:ab:98:03:e3:ea:6e:dc:ef:b9:34:9b:b1:8f:
e2:27:e7:88:ac:4e:d5:6d:d2:34:14:b6:a0:a0:30:
37:68:69:31:09:01:38:20:cf:45:6c:3e:18:53:dc:
5c:92:be:ad:51:3e:7a:9c:f7:12:30:07:81:3b:85:
81:1b:78:dd:b8:8b:1c:c2:77:55:67:39:14:61:ea:
14:c2:0d:e5:c4:d6:7f:87:8b:d4:1e:be:65:ab:01:
6e:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:1A:D3:7F:DF:68:72:0C:8F:2C:D4:B8:3C:82:EC:09:70:1E:9F:A5
X509v3 Authority Key Identifier:
keyid:BC:65:B4:BA:4D:78:69:D5:CB:8F:95:74:F0:F4:FE:EE:70:EB:C6:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vGW0uk14adXLj5V08PT-7nDrxsU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/442101-780b-47ac-857d-f9e7cb03c527/1/kBrTf99ocgyPLNS4PILsCXAen6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/442101-780b-47ac-857d-f9e7cb03c527/1/vGW0uk14adXLj5V08PT-7nDrxsU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:ec80::/29
Signature Algorithm: sha256WithRSAEncryption
18:63:bf:27:c7:5f:58:27:a0:16:6b:ad:b6:cd:4e:4f:91:15:
eb:64:ad:ad:bb:33:0f:2d:2e:0f:2a:17:e2:31:0f:c1:4e:ee:
77:9d:b3:96:a7:bc:66:db:75:2e:92:2d:da:ad:d0:c8:8d:de:
32:b7:7d:4d:8c:9e:1f:cd:9b:a4:5f:07:a1:95:1e:b5:61:77:
52:de:c9:e3:ec:fe:c1:90:2b:46:23:4c:c0:d0:8c:4b:05:e4:
04:ef:fc:6a:a7:6b:4c:3c:49:b6:03:64:19:89:c4:2a:55:63:
47:c8:97:65:47:1a:9f:37:62:a1:da:f1:50:c9:b8:d4:84:58:
3e:a0:f8:e2:62:2d:8b:1f:97:ce:c7:e2:ee:02:05:b1:c4:fc:
bc:a0:6b:42:d1:21:ee:9f:b5:7c:69:a7:40:e1:a3:e4:c2:a0:
62:9d:a0:a9:19:62:ec:f5:da:9e:7b:34:99:ee:8b:bc:0a:aa:
14:d6:36:fa:e6:27:77:dc:40:63:4b:61:cc:bb:59:bf:5d:12:
d7:eb:40:a4:91:19:dc:7b:89:73:d1:f3:63:96:5b:64:b5:c1:
67:29:f0:30:7b:c8:f7:62:73:47:89:f2:64:20:df:e5:8f:a6:
4c:56:1d:2b:db:73:a6:8f:f2:29:f8:33:10:53:bb:b6:e9:8c:
45:98:13:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:52 2024 by rpki-client on console-ams.rpki-client.org