Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/8ad2e0-e3f0-4abe-bcb6-2f5c74c69ae1/1/widz6KjcfUWgdjMJ553t1S0aQgU.roa
File: widz6KjcfUWgdjMJ553t1S0aQgU.roa (raw, json)
Hash identifier: gGqdcqUOjgPye04AHiZlcjPVzLIayOLbLYP+rwYFXLQ=
Subject key identifier: C2:27:73:E8:A8:DC:7D:45:A0:76:33:09:E7:9D:ED:D5:2D:1A:42:05
Certificate issuer: /CN=abd87bbef5943546b2a83d31ec2b99ad883d51d7
Certificate serial: 0185318D057EDC38BC3BA3775F6AA7E0EF85
Authority key identifier: AB:D8:7B:BE:F5:94:35:46:B2:A8:3D:31:EC:2B:99:AD:88:3D:51:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q9h7vvWUNUayqD0x7CuZrYg9Udc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/8ad2e0-e3f0-4abe-bcb6-2f5c74c69ae1/1/widz6KjcfUWgdjMJ553t1S0aQgU.roa
Signing time: Tue 20 Dec 2022 22:00:03 +0000
ROA not before: Tue 20 Dec 2022 22:00:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202278
IP address blocks: 2a13:5680::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:31:8d:05:7e:dc:38:bc:3b:a3:77:5f:6a:a7:e0:ef:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abd87bbef5943546b2a83d31ec2b99ad883d51d7
Validity
Not Before: Dec 20 22:00:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c22773e8a8dc7d45a0763309e79dedd52d1a4205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:18:4a:1c:58:c6:b3:3d:9c:cf:85:89:f1:cb:
dd:0a:25:2f:ce:c8:79:1f:51:09:96:c8:6d:a8:05:
ad:3d:ee:21:39:92:98:72:19:ca:f0:32:0d:ce:bf:
ba:44:e6:8f:14:56:f8:23:ba:e6:b6:b2:91:d2:b3:
90:9e:5d:eb:8a:2f:75:07:03:5f:38:66:56:ea:53:
ad:d4:89:50:d0:5f:55:85:4e:91:0b:16:31:ba:cb:
20:0c:23:c7:7a:cb:ad:ac:d4:ea:be:ec:10:4e:5a:
48:46:cf:14:78:01:c3:7d:6d:23:13:61:15:1d:bb:
f7:af:b4:73:60:a3:d3:1b:b0:9f:4b:ff:c6:0e:7f:
34:d1:98:c2:91:15:a9:a2:50:55:df:ba:a6:b3:12:
66:db:e3:cf:7e:a7:08:2c:f3:b8:05:3c:3c:40:6b:
7b:17:8f:0b:55:03:7a:b4:ac:25:6b:2e:eb:b9:73:
a0:b9:e0:65:ab:37:b2:e6:8a:8d:6e:36:56:ba:e0:
03:64:68:bb:74:c1:e3:72:ab:27:07:8b:80:3d:d7:
ac:9a:ae:2c:3c:2d:56:48:b4:69:86:c6:58:f2:45:
ce:f5:72:25:c5:47:cc:f1:f4:75:9b:e9:10:c3:d7:
b5:b3:37:7a:51:ec:68:73:c6:61:ef:cd:60:f0:0b:
1e:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:27:73:E8:A8:DC:7D:45:A0:76:33:09:E7:9D:ED:D5:2D:1A:42:05
X509v3 Authority Key Identifier:
keyid:AB:D8:7B:BE:F5:94:35:46:B2:A8:3D:31:EC:2B:99:AD:88:3D:51:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q9h7vvWUNUayqD0x7CuZrYg9Udc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8ad2e0-e3f0-4abe-bcb6-2f5c74c69ae1/1/widz6KjcfUWgdjMJ553t1S0aQgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8ad2e0-e3f0-4abe-bcb6-2f5c74c69ae1/1/q9h7vvWUNUayqD0x7CuZrYg9Udc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:5680::/32
Signature Algorithm: sha256WithRSAEncryption
91:06:12:1e:80:0f:6b:8f:af:25:01:94:a4:06:79:09:db:98:
15:42:68:f2:91:f9:38:fe:94:a1:0d:ed:b9:e6:30:07:45:9f:
d1:a6:f8:7b:fc:a8:a7:06:21:ba:fb:9a:3e:24:e7:20:2f:04:
f7:26:d6:bc:e1:06:f8:d4:cf:48:04:44:11:5f:72:9d:1e:4f:
85:21:a9:40:53:7f:ce:fd:73:66:04:2e:70:c5:56:57:b8:42:
6f:d5:04:28:7b:f2:7f:22:ac:97:bd:53:7f:31:f6:a7:a2:1b:
ab:1b:d4:58:a6:3b:fb:3d:4c:4c:36:12:a7:b7:42:c4:a8:48:
96:bf:9f:ca:fd:68:5a:dc:a7:1c:2b:91:ec:c4:22:c6:ac:93:
fe:ba:10:b3:80:01:7d:97:c7:6a:a7:9f:85:bc:a6:8b:c0:28:
a5:1b:09:6f:76:94:25:b4:3f:d4:29:a4:8e:58:56:a9:ca:0b:
83:97:b5:bb:b6:ba:6e:97:ee:64:2e:de:33:04:93:b9:56:15:
91:03:1e:ec:45:8a:b5:1b:6c:47:b4:b1:89:ce:6e:55:69:c9:
71:57:08:10:e3:1e:c3:02:f1:01:74:1e:08:9a:4c:78:1d:bf:
bf:01:c6:cb:64:5c:10:08:06:f4:f8:6e:98:06:f2:81:ca:f8:
fb:cf:0d:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:50 2024 by rpki-client on console-ams.rpki-client.org