Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/sVrQFNNVH8UGEr3yJ6Jy8FM2EMs.roa
File: sVrQFNNVH8UGEr3yJ6Jy8FM2EMs.roa (raw, json)
Hash identifier: QR3+dH5PR2FKAYDvX8SbB3bSYeAl84okaWhmi8+tf2I=
Subject key identifier: B1:5A:D0:14:D3:55:1F:C5:06:12:BD:F2:27:A2:72:F0:53:36:10:CB
Certificate issuer: /CN=20264d51a112d0bc22cea7314cb06cf5a1ae33e9
Certificate serial: 0B216A9D
Authority key identifier: 20:26:4D:51:A1:12:D0:BC:22:CE:A7:31:4C:B0:6C:F5:A1:AE:33:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/sVrQFNNVH8UGEr3yJ6Jy8FM2EMs.roa
Signing time: Sat 01 Jan 2022 13:54:40 +0000
ROA not before: Sat 01 Jan 2022 13:54:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204896
IP address blocks: 2001:67c:4bc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 186739357 (0xb216a9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20264d51a112d0bc22cea7314cb06cf5a1ae33e9
Validity
Not Before: Jan 1 13:54:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b15ad014d3551fc50612bdf227a272f0533610cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:a7:b1:79:9c:be:2d:b1:16:0b:0b:cf:9f:a9:
c2:8a:c4:38:91:94:b0:d6:a0:aa:7d:d3:f5:af:22:
6e:6b:02:c6:43:70:d3:e3:6d:63:24:a9:fe:d8:2c:
af:7e:ca:e9:4d:93:03:55:80:69:70:cd:f3:14:07:
8a:67:83:c7:62:1e:60:d3:5b:93:60:3c:fe:17:a1:
55:eb:0b:6a:47:96:a4:5c:66:80:35:31:bf:c3:16:
84:62:12:2f:2b:19:67:41:1e:7b:51:45:f5:24:00:
2e:62:f4:cc:48:89:f4:0c:fc:87:8b:c4:48:a7:f7:
4a:6a:59:63:fb:ee:07:a6:23:13:dc:1e:84:c8:d6:
4e:6a:0e:c9:16:14:4a:53:1d:f6:bf:79:98:64:53:
df:52:5b:b7:d0:dc:dd:00:76:38:e7:db:ee:18:a9:
e1:04:14:93:5f:05:f3:84:37:03:cc:5d:3d:d4:62:
17:fd:ce:9b:ac:f7:cb:24:be:c1:84:69:da:7a:99:
ae:c5:79:ec:ad:bc:de:de:8a:aa:55:77:97:22:aa:
56:b9:55:b9:4b:9a:97:a4:05:9f:ad:ff:5a:f2:66:
e2:20:cf:f0:7d:ea:a1:35:bd:b9:51:28:47:65:31:
6e:5f:bf:61:ea:9e:79:cc:5b:ff:5a:fa:58:0a:dd:
2c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:5A:D0:14:D3:55:1F:C5:06:12:BD:F2:27:A2:72:F0:53:36:10:CB
X509v3 Authority Key Identifier:
keyid:20:26:4D:51:A1:12:D0:BC:22:CE:A7:31:4C:B0:6C:F5:A1:AE:33:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/sVrQFNNVH8UGEr3yJ6Jy8FM2EMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:4bc::/48
Signature Algorithm: sha256WithRSAEncryption
ad:bd:22:c9:fb:78:d3:4a:d0:ca:1b:f1:3e:20:77:7d:c2:a4:
01:70:0b:ea:1e:b2:71:f3:c9:3d:8b:c5:bc:b4:ba:aa:7f:4b:
df:5b:7f:69:88:35:78:80:84:18:cf:e6:9a:d8:97:42:bb:4a:
35:cc:b8:c8:a2:6a:5b:40:3f:0a:b9:1c:d6:26:e7:8c:0c:e8:
63:e5:00:d2:62:9d:52:60:6d:b6:5f:c6:d4:b7:a4:cb:11:c4:
a0:c9:93:e2:52:59:a4:d3:55:4e:3c:20:23:92:99:1c:40:ac:
91:ee:87:d3:6a:7a:21:f3:6f:9d:b6:4e:c0:57:f6:61:41:1b:
60:01:30:1b:d7:c8:77:ac:17:51:96:42:11:72:da:34:e4:da:
a7:84:9b:cd:34:17:12:ef:87:51:5e:2e:4d:c2:ef:74:e8:39:
61:e0:2b:43:2a:b4:0a:6c:b0:74:95:6f:43:13:df:c7:13:4b:
1b:46:8b:b6:97:ea:c8:0a:d1:e1:fc:8b:35:7b:03:4c:35:64:
33:5d:96:d5:9b:02:96:05:51:91:34:26:81:74:47:db:e6:a3:
97:4a:8f:58:42:4e:0e:5e:0b:7e:20:2c:9f:16:d9:ee:82:56:
61:6d:bb:10:a3:01:fc:b7:06:33:57:b6:bf:40:e3:5f:ff:dd:
94:1a:d2:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:03 2024 by rpki-client on console-fra.rpki-client.org