Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/03b404-2f64-4c7c-ac6c-26eb0c6290ba/1/drtY9jRjd5PCEfqbzYAa28GViVE.roa
File: drtY9jRjd5PCEfqbzYAa28GViVE.roa (raw, json)
Hash identifier: F/KVj+d9cjtphEg1YZhT+Z+u6ZmNOKuCNkNU661Hc8g=
Subject key identifier: 76:BB:58:F6:34:63:77:93:C2:11:FA:9B:CD:80:1A:DB:C1:95:89:51
Certificate issuer: /CN=b1ee320df0464877d51745e314231b55c83b6845
Certificate serial: 13C128B3
Authority key identifier: B1:EE:32:0D:F0:46:48:77:D5:17:45:E3:14:23:1B:55:C8:3B:68:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/se4yDfBGSHfVF0XjFCMbVcg7aEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/03b404-2f64-4c7c-ac6c-26eb0c6290ba/1/drtY9jRjd5PCEfqbzYAa28GViVE.roa
Signing time: Sat 01 Jan 2022 07:54:34 +0000
ROA not before: Sat 01 Jan 2022 07:54:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2200
IP address blocks: 129.102.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 331425971 (0x13c128b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1ee320df0464877d51745e314231b55c83b6845
Validity
Not Before: Jan 1 07:54:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76bb58f634637793c211fa9bcd801adbc1958951
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:42:1e:e8:b9:cc:14:ff:6e:04:12:ac:57:65:
96:cf:d9:7a:5f:56:cc:4d:d7:e0:0b:99:60:e7:6b:
68:b4:ff:b0:70:88:d0:7b:f2:00:54:11:fc:dc:0c:
2d:da:6c:62:d0:b7:6e:95:8d:ac:33:33:10:cb:38:
30:da:cc:bc:9d:cd:fc:2b:2c:57:09:05:60:7c:04:
c2:fa:92:93:11:97:db:81:35:ec:e4:62:47:4f:d2:
d0:e2:05:be:7d:83:01:53:54:5c:91:e4:91:ce:a6:
26:e0:98:ae:78:96:63:1c:ab:37:ba:75:1c:ea:2b:
1e:86:f3:b8:c7:3a:cd:3e:3a:f4:47:a8:19:f1:f4:
19:e3:58:cc:46:74:69:a3:56:5a:2a:07:14:88:06:
d2:e1:bc:28:7a:82:ad:74:45:ba:10:31:4b:fb:86:
7f:4d:71:a7:66:33:e1:25:27:0a:1f:99:0b:8e:0f:
e0:0b:eb:cf:fa:16:4d:84:2d:77:41:27:a0:63:05:
cd:6d:2f:ca:3e:73:12:1d:b1:eb:81:29:a8:50:a2:
c1:a4:f4:37:76:66:a0:b3:a4:32:63:8d:35:54:6f:
1d:fc:81:e2:a7:81:05:4d:bc:d7:dd:30:b0:90:8c:
83:29:53:cf:86:c6:23:d1:fe:2a:82:62:1e:b2:12:
59:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:BB:58:F6:34:63:77:93:C2:11:FA:9B:CD:80:1A:DB:C1:95:89:51
X509v3 Authority Key Identifier:
keyid:B1:EE:32:0D:F0:46:48:77:D5:17:45:E3:14:23:1B:55:C8:3B:68:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/se4yDfBGSHfVF0XjFCMbVcg7aEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/03b404-2f64-4c7c-ac6c-26eb0c6290ba/1/drtY9jRjd5PCEfqbzYAa28GViVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/03b404-2f64-4c7c-ac6c-26eb0c6290ba/1/se4yDfBGSHfVF0XjFCMbVcg7aEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
129.102.0.0/16
Signature Algorithm: sha256WithRSAEncryption
55:c9:88:00:3a:c5:41:ad:c1:f0:3d:de:19:63:6b:5d:07:59:
02:00:8a:f2:9e:ea:ee:db:f7:35:9f:37:2e:ab:12:e1:86:df:
2b:38:9c:5d:63:46:e8:3b:2c:a1:75:46:cc:7f:03:b9:63:79:
19:a2:21:f4:72:fe:cf:38:c0:7e:d9:f7:d5:9a:0f:5a:f8:be:
fc:e7:8f:de:fc:f1:8d:82:de:0b:e8:4b:89:a7:e4:66:ff:77:
7b:77:12:5a:6e:76:f9:f5:b8:17:e9:d7:98:46:7e:f4:3c:67:
6e:18:92:3c:c3:d2:2f:e5:6d:f4:cd:5e:50:cb:93:37:22:c4:
b4:ca:c1:db:b4:62:c5:5c:07:5c:96:65:87:a0:56:da:a8:fe:
81:28:0a:50:04:17:25:81:9b:48:ec:fe:5f:3a:a1:5b:04:98:
d0:90:38:d9:f8:db:1e:0b:5e:e4:6e:ef:6e:d7:04:5a:1e:1a:
da:4a:09:ef:c6:67:eb:76:f7:f1:84:06:b9:83:91:ea:27:16:
34:fb:11:4e:c3:c3:58:84:41:17:76:34:87:0b:a0:a4:3c:20:
29:b1:ba:6a:1a:61:c5:f6:9f:9b:03:0c:0b:8b:1a:ef:50:9d:
94:01:5a:e2:20:c0:ef:10:ac:22:47:bf:91:4b:02:15:9b:5b:
3a:4e:a1:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:38 2023 by rpki-client on console-fra.rpki-client.org