Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/jVrKbg-kp1KR21IY0NBl3J0kVeg.roa
File: jVrKbg-kp1KR21IY0NBl3J0kVeg.roa (raw, json)
Hash identifier: 9vvhTJQJo919CHe+NkY3bOr8rsBhr2u8JtWFhygs97A=
Subject key identifier: 8D:5A:CA:6E:0F:A4:A7:52:91:DB:52:18:D0:D0:65:DC:9D:24:55:E8
Certificate issuer: /CN=65bdcff77bf060d5da12de45e2072e1cff4560a7
Certificate serial: 2633E112
Authority key identifier: 65:BD:CF:F7:7B:F0:60:D5:DA:12:DE:45:E2:07:2E:1C:FF:45:60:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zb3P93vwYNXaEt5F4gcuHP9FYKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/jVrKbg-kp1KR21IY0NBl3J0kVeg.roa
Signing time: Sat 01 Jan 2022 07:02:51 +0000
ROA not before: Sat 01 Jan 2022 07:02:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44511
IP address blocks: 2a02:20c8:1241::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 640934162 (0x2633e112)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65bdcff77bf060d5da12de45e2072e1cff4560a7
Validity
Not Before: Jan 1 07:02:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d5aca6e0fa4a75291db5218d0d065dc9d2455e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8f:e4:d3:63:f8:a4:c6:3c:d3:1e:bc:00:b3:
b7:99:42:ee:9d:8b:13:66:fd:55:f9:31:2a:fa:d0:
7a:f7:a7:32:f9:45:8b:35:91:c2:dd:aa:88:b3:cc:
f5:77:9a:0b:17:e4:79:c2:ab:5d:fb:fd:18:d4:c2:
e3:71:06:6d:10:f2:f1:c3:e3:f4:8d:52:ad:8d:96:
b6:6f:27:78:34:f8:8c:96:e9:21:88:a6:8d:42:80:
db:bf:a3:0a:5c:e0:23:be:1e:87:15:08:ca:1e:08:
9b:9f:e2:81:16:f1:59:89:fe:8a:89:e1:03:72:9c:
8d:08:ff:c9:0e:34:d4:2f:7b:5c:7d:e9:93:9b:6e:
71:a6:24:35:4c:44:77:af:12:76:a9:fc:ee:58:7a:
a2:3a:18:33:89:7a:4d:8f:db:ba:86:05:3c:5d:44:
59:00:9c:fc:05:c9:38:fa:35:63:18:bc:41:94:b2:
48:10:d3:02:bf:c5:d4:70:c9:ed:43:68:77:66:8d:
32:3c:a6:43:26:4f:eb:2f:31:00:30:53:b6:d9:12:
a2:5d:dd:5a:38:01:85:7c:a6:51:f6:7c:ee:65:ef:
d6:e4:f8:6a:fe:8f:08:ee:e6:42:7c:2f:6b:32:30:
7e:e6:b8:7f:7d:1b:ca:a5:ea:d8:fa:d7:57:eb:a2:
ca:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:5A:CA:6E:0F:A4:A7:52:91:DB:52:18:D0:D0:65:DC:9D:24:55:E8
X509v3 Authority Key Identifier:
keyid:65:BD:CF:F7:7B:F0:60:D5:DA:12:DE:45:E2:07:2E:1C:FF:45:60:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zb3P93vwYNXaEt5F4gcuHP9FYKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/jVrKbg-kp1KR21IY0NBl3J0kVeg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/Zb3P93vwYNXaEt5F4gcuHP9FYKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:20c8:1241::/48
Signature Algorithm: sha256WithRSAEncryption
a4:71:57:a3:56:9d:89:c6:ab:1d:d2:09:1c:3a:21:2d:e1:b2:
b0:16:79:7a:5f:12:6c:89:6a:09:7a:23:cd:a2:5a:cc:18:b8:
e7:52:a7:15:12:73:be:d9:83:1c:00:7e:d3:31:d4:69:e8:e9:
ba:a8:ec:81:60:e5:cc:e3:ad:33:f0:a8:be:75:8d:a6:82:aa:
f0:d5:a5:c7:48:92:84:49:a1:83:80:37:83:0f:04:f4:58:e8:
6f:de:18:e1:42:8a:8f:71:12:01:eb:c8:42:fc:9c:78:fa:d6:
69:0b:19:d7:b8:fa:0c:66:aa:7d:3a:5a:cd:2c:78:5c:aa:16:
70:ad:04:60:fb:2b:c5:e0:b0:b5:9b:b9:ad:32:0a:20:4d:68:
95:b3:a8:3a:e6:ee:f8:ff:46:b2:a5:04:5d:b0:1d:b3:81:a5:
de:2b:27:ca:4b:f7:e1:23:14:92:ae:65:14:6f:80:e2:d7:30:
4e:14:0d:e5:22:45:12:d1:1f:52:c0:96:db:4f:c6:16:34:28:
84:6e:25:c5:a4:db:02:82:18:35:32:26:a1:62:1b:da:a0:1a:
12:d1:a6:80:59:e4:72:37:6e:6f:e4:2d:5e:67:da:5b:41:72:
bb:d0:92:b8:4f:41:c2:67:cd:88:8e:df:99:7f:40:30:c9:b3:
53:fb:ee:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:22 2023 by rpki-client on console-fra.rpki-client.org