Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/twiphCT_4VpMx_uMkxcgaLuQK3o.roa
File: twiphCT_4VpMx_uMkxcgaLuQK3o.roa (raw, json)
Hash identifier: Ws9iv38PEAX2kjTUBtZQHR05kPmIU7edMJ+dKvqifH4=
Subject key identifier: B7:08:A9:84:24:FF:E1:5A:4C:C7:FB:8C:93:17:20:68:BB:90:2B:7A
Certificate issuer: /CN=a79bba2805a988954e4fec42570530f16f9e7093
Certificate serial: 069E84EB
Authority key identifier: A7:9B:BA:28:05:A9:88:95:4E:4F:EC:42:57:05:30:F1:6F:9E:70:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p5u6KAWpiJVOT-xCVwUw8W-ecJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/twiphCT_4VpMx_uMkxcgaLuQK3o.roa
Signing time: Sat 01 Jan 2022 13:59:30 +0000
ROA not before: Sat 01 Jan 2022 13:59:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 11588
IP address blocks: 2001:4de0:4202::/47 maxlen: 47
2001:4de0:2400::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111052011 (0x69e84eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a79bba2805a988954e4fec42570530f16f9e7093
Validity
Not Before: Jan 1 13:59:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b708a98424ffe15a4cc7fb8c93172068bb902b7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:63:f6:a5:b5:56:ad:f6:31:10:ac:64:a3:61:
61:b1:f1:c0:fc:f1:f5:8f:c0:2a:e1:c9:5e:02:93:
8f:b8:cd:6e:9c:84:9e:8a:4b:30:2c:77:b7:71:ca:
e9:3e:36:e2:11:15:f9:c4:22:a8:b5:1a:11:d9:4c:
f2:6e:5d:2f:91:d6:98:d7:81:fd:8f:e0:91:72:1e:
b9:db:dd:c2:80:7d:3e:fc:bd:50:12:c3:0b:99:92:
51:5c:88:c2:b6:31:d5:68:99:8b:8f:3b:1b:6c:79:
80:6d:60:a6:b6:95:7d:82:fe:58:b2:13:22:ac:14:
71:52:81:8a:1d:35:68:cc:72:f3:f2:27:dc:7b:6e:
e7:78:a1:75:c9:b2:66:b4:37:5e:78:ab:cc:e6:6c:
3c:df:69:db:a2:cb:01:8c:14:97:ac:61:55:bd:71:
54:f0:05:c2:87:e7:e6:6f:fd:48:20:66:16:bf:9e:
6b:38:02:a3:1d:8e:ae:df:4c:76:0c:6c:cd:5c:22:
98:22:10:03:73:d2:06:03:37:71:d3:34:15:79:11:
ae:cb:e4:85:f0:57:7a:0f:d7:73:37:30:54:e4:1f:
a8:8b:f6:4b:f8:4c:9b:bd:f0:1b:85:66:a9:c1:01:
0f:0f:a5:9c:79:44:94:c1:f2:19:31:07:99:92:bb:
3a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:08:A9:84:24:FF:E1:5A:4C:C7:FB:8C:93:17:20:68:BB:90:2B:7A
X509v3 Authority Key Identifier:
keyid:A7:9B:BA:28:05:A9:88:95:4E:4F:EC:42:57:05:30:F1:6F:9E:70:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p5u6KAWpiJVOT-xCVwUw8W-ecJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/twiphCT_4VpMx_uMkxcgaLuQK3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/p5u6KAWpiJVOT-xCVwUw8W-ecJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:4de0:2400::/40
2001:4de0:4202::/47
Signature Algorithm: sha256WithRSAEncryption
70:4f:36:c2:cc:2b:1c:c8:78:fd:6d:54:61:a8:df:0a:f0:6e:
3b:ef:4e:ef:4e:c0:6d:3f:e9:52:a8:e4:19:26:58:0d:2b:d3:
fe:89:3a:c8:23:fa:4e:cf:3f:66:50:37:b2:86:af:36:f6:e8:
3b:c9:ca:00:38:09:9a:81:14:0f:68:22:f8:57:b2:d6:09:a7:
07:b1:39:f8:f2:68:ca:a9:37:11:d4:60:d7:53:85:43:d0:df:
a5:68:5d:ad:08:98:1f:7a:5c:05:dc:e1:57:ba:ef:a6:4d:ae:
5f:09:d6:3c:83:cc:70:f2:45:8d:28:0a:eb:36:0a:84:6c:ac:
8a:40:d3:58:6f:76:aa:46:ea:fb:50:d4:11:eb:a8:7d:dc:c6:
e2:25:d9:a4:1e:5a:0a:18:47:4c:48:b6:9e:ff:8c:1a:68:95:
f3:85:ac:29:98:a3:ba:3c:b4:96:62:19:6a:d7:98:b6:a6:2d:
0d:11:70:e7:b5:0b:79:71:25:da:03:13:68:ac:a4:e3:09:39:
b0:89:db:35:e3:61:2d:ae:c0:1b:e6:9a:1d:ee:0a:3d:38:a4:
00:2f:02:e0:2c:f1:d9:dd:9b:00:f6:f6:e7:0a:3d:7e:d4:58:
d7:c5:a1:be:dc:b5:71:da:26:75:1a:61:86:49:2f:80:14:3e:
72:17:66:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:17 2024 by rpki-client on console-ams.rpki-client.org