Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f462dc-9e59-4e8d-9c6d-f46887df9863/1/dBKwY0jBASuJ10kBSlHtQyYrIFA.roa
File: dBKwY0jBASuJ10kBSlHtQyYrIFA.roa (raw, json)
Hash identifier: 37ALitWPGJQAUP2uRYSJHsCMUv/qDL8JZuvL5A1PKyM=
Subject key identifier: 74:12:B0:63:48:C1:01:2B:89:D7:49:01:4A:51:ED:43:26:2B:20:50
Certificate issuer: /CN=525b705a91dbc30ed10eb7222b7797b834e01863
Certificate serial: 07FB9C3C
Authority key identifier: 52:5B:70:5A:91:DB:C3:0E:D1:0E:B7:22:2B:77:97:B8:34:E0:18:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UltwWpHbww7RDrciK3eXuDTgGGM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f462dc-9e59-4e8d-9c6d-f46887df9863/1/dBKwY0jBASuJ10kBSlHtQyYrIFA.roa
Signing time: Sat 01 Jan 2022 06:06:22 +0000
ROA not before: Sat 01 Jan 2022 06:06:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209673
IP address blocks: 2a0d:eb04:4::/46 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133930044 (0x7fb9c3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=525b705a91dbc30ed10eb7222b7797b834e01863
Validity
Not Before: Jan 1 06:06:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7412b06348c1012b89d749014a51ed43262b2050
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:48:a3:b3:38:7d:5e:19:71:bf:86:70:18:3f:
42:1e:33:30:05:f5:fd:37:58:c1:4c:aa:0f:97:e9:
34:3d:4a:d0:9c:91:a1:a4:81:b0:05:30:3c:3b:4b:
78:18:73:58:6c:89:f6:d9:a5:4e:db:6f:d3:bf:89:
8c:93:3f:8f:ea:c4:07:57:bf:86:e2:6a:d7:71:b0:
6d:a5:f9:75:c7:8d:59:d4:f1:fe:c8:55:9f:8d:d2:
7d:69:e9:49:bb:7c:2a:7c:0d:df:dc:a8:28:30:78:
a1:29:98:cc:4f:72:d8:64:cc:5d:fc:02:e5:58:47:
05:1d:bd:b4:97:9d:8e:af:74:91:15:40:14:3d:56:
d8:ef:61:7b:26:de:93:48:e3:4b:43:44:fd:86:3e:
5f:f3:c6:d6:05:ab:3a:46:3a:6b:a6:59:47:83:7f:
75:fa:f6:7d:83:92:2e:dd:fa:47:3a:8b:a4:92:dd:
85:ab:f3:e7:04:34:de:27:7a:c0:e6:e0:9a:2f:65:
ac:cd:7f:6a:39:93:fd:6f:71:9b:ad:76:ed:69:32:
c0:39:b9:f1:be:2d:3a:65:f7:34:ff:89:80:b6:d6:
bc:6e:74:7a:f8:27:46:ad:6c:dc:ea:f8:44:f1:d7:
e9:d2:fe:95:a5:d6:87:3c:7d:c1:17:79:ef:44:69:
d2:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:12:B0:63:48:C1:01:2B:89:D7:49:01:4A:51:ED:43:26:2B:20:50
X509v3 Authority Key Identifier:
keyid:52:5B:70:5A:91:DB:C3:0E:D1:0E:B7:22:2B:77:97:B8:34:E0:18:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UltwWpHbww7RDrciK3eXuDTgGGM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f462dc-9e59-4e8d-9c6d-f46887df9863/1/dBKwY0jBASuJ10kBSlHtQyYrIFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f462dc-9e59-4e8d-9c6d-f46887df9863/1/UltwWpHbww7RDrciK3eXuDTgGGM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:eb04:4::/46
Signature Algorithm: sha256WithRSAEncryption
74:2d:71:cb:03:13:fc:1d:7c:94:28:c0:a8:af:b7:76:2c:1f:
41:b9:2f:8c:6e:15:55:6b:0c:2b:cc:c9:24:c2:39:5e:d7:9f:
f8:81:ec:14:c4:b0:fd:a1:73:a0:fc:c3:7b:df:84:f2:80:70:
a2:fe:76:8e:ea:94:91:26:12:e1:84:24:a6:1e:ee:51:6b:e4:
58:23:08:42:97:be:c0:d5:ea:b8:c0:d2:5a:27:57:c2:ca:0a:
4b:5f:49:63:e2:bc:26:37:f9:30:c6:6a:de:51:39:f8:9d:54:
31:40:12:c4:d2:d5:d3:47:76:a8:25:e6:2d:c4:1c:85:5c:02:
08:a1:de:96:dd:d4:61:c9:02:1b:e5:0e:3a:06:22:c6:92:46:
96:24:da:af:66:95:46:0a:45:b2:7e:e1:84:c4:17:de:c9:b3:
a5:c0:4b:38:ce:79:3a:90:a2:f6:2b:e0:cc:b5:a0:35:2a:c3:
c3:c6:64:b1:c6:e2:d3:c4:b2:68:72:ee:3c:0b:b8:32:03:a4:
ce:07:6a:05:13:b1:a6:74:c9:25:7f:b3:32:52:b6:34:ad:d9:
3a:8c:f2:b0:b5:7e:f1:e5:2c:02:23:8c:a8:0a:20:6f:85:cd:
ca:af:f1:06:5f:87:d7:50:bc:4f:94:85:e1:1e:8f:08:be:ba:
62:3e:b3:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:54 2024 by rpki-client on console-ams.rpki-client.org