Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/9f8fbe-b2e8-472d-9ebc-0b9885863ebf/1/rVIgyBIJmT0V2_HCz440IyhfLVY.roa
File: rVIgyBIJmT0V2_HCz440IyhfLVY.roa (raw, json)
Hash identifier: vLYQ4HBHRyweIPSjpP4uCBQy2cGbUqFBgTpNXIIp1eo=
Subject key identifier: AD:52:20:C8:12:09:99:3D:15:DB:F1:C2:CF:8E:34:23:28:5F:2D:56
Certificate issuer: /CN=18f4ee88584d6dfd9e3aa9bc201c50f44e353d9c
Certificate serial: 085254B9
Authority key identifier: 18:F4:EE:88:58:4D:6D:FD:9E:3A:A9:BC:20:1C:50:F4:4E:35:3D:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GPTuiFhNbf2eOqm8IBxQ9E41PZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/9f8fbe-b2e8-472d-9ebc-0b9885863ebf/1/rVIgyBIJmT0V2_HCz440IyhfLVY.roa
Signing time: Sat 01 Jan 2022 16:06:47 +0000
ROA not before: Sat 01 Jan 2022 16:06:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6939
IP address blocks: 2001:678:a90::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139613369 (0x85254b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18f4ee88584d6dfd9e3aa9bc201c50f44e353d9c
Validity
Not Before: Jan 1 16:06:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad5220c81209993d15dbf1c2cf8e3423285f2d56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a3:a7:a1:57:e6:c2:81:6f:71:14:3a:b4:e3:
3d:bb:9b:b4:e5:24:1d:62:da:4f:d6:c9:3c:20:8c:
ca:6d:d5:39:81:c3:52:da:66:d3:5c:33:15:0f:3b:
af:7c:e7:b4:75:ef:b9:3f:75:bb:07:47:11:2c:f7:
40:c4:4d:ee:ee:8e:33:49:0e:43:d7:2c:28:82:ef:
62:80:79:5a:3e:5b:21:54:31:bc:07:4e:ac:8e:57:
60:1e:e9:7b:7e:15:5a:4d:89:af:2c:af:21:25:93:
3d:98:cd:50:f5:88:96:75:2d:21:df:31:1b:e1:5e:
94:17:15:23:31:e2:39:26:6d:ec:12:65:4d:6e:82:
ce:86:d6:83:63:59:aa:ef:f0:f7:f0:ca:47:00:ef:
eb:50:b9:a1:95:87:cc:0a:a2:1d:2d:71:8b:dd:77:
72:c4:07:c2:7b:a2:82:1c:ba:36:d9:d4:17:9a:35:
12:2d:3d:23:62:52:8e:4d:52:f4:5f:dc:de:34:6c:
10:6c:c1:35:bd:0d:6f:f7:44:57:9e:57:52:28:c2:
3b:29:a3:4a:29:c2:06:17:34:89:be:85:ae:f6:84:
22:1e:90:04:d0:b8:8b:4d:94:48:0f:c3:6d:68:d6:
20:78:2a:a0:a0:88:30:a8:da:06:80:63:29:16:1d:
53:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:52:20:C8:12:09:99:3D:15:DB:F1:C2:CF:8E:34:23:28:5F:2D:56
X509v3 Authority Key Identifier:
keyid:18:F4:EE:88:58:4D:6D:FD:9E:3A:A9:BC:20:1C:50:F4:4E:35:3D:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GPTuiFhNbf2eOqm8IBxQ9E41PZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/9f8fbe-b2e8-472d-9ebc-0b9885863ebf/1/rVIgyBIJmT0V2_HCz440IyhfLVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/9f8fbe-b2e8-472d-9ebc-0b9885863ebf/1/GPTuiFhNbf2eOqm8IBxQ9E41PZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:a90::/48
Signature Algorithm: sha256WithRSAEncryption
74:9f:19:2a:7a:fd:75:7b:f2:f2:67:fb:c0:72:c1:64:89:cf:
77:ae:83:bf:45:17:51:e2:96:2d:5b:4a:7a:fd:5d:13:e3:09:
d4:e8:9a:36:6f:a5:4f:90:28:b7:75:a6:46:a3:f7:1b:86:0d:
af:d5:af:c7:c5:c7:d4:9a:02:8c:1f:3e:31:5e:70:05:25:42:
3d:38:7a:d5:db:87:c8:1a:90:a2:45:fa:4a:68:b3:62:55:af:
bb:a1:30:b2:1b:64:ab:b7:12:6d:27:4a:1c:b3:97:6e:c0:07:
20:e5:93:22:68:38:21:c2:5c:49:ec:9e:a9:81:00:0c:28:fd:
a1:8a:81:d1:69:57:4a:43:9b:f3:cb:19:28:8e:30:62:21:bd:
c3:c3:f9:85:b7:a3:e2:19:8e:c6:9c:b4:5a:89:ae:eb:c8:33:
d4:70:7e:de:58:60:fa:27:71:6f:f7:61:f0:0d:cf:67:83:98:
94:9d:2d:a3:c9:44:6a:13:30:ec:a5:67:0b:58:8b:06:e1:e3:
d5:be:70:d2:b7:55:97:c0:1d:76:b0:8d:e5:f7:2e:e3:ca:72:
35:7c:6d:21:13:51:83:9d:06:85:57:21:ea:3f:52:c0:f1:93:
97:13:bb:f3:64:04:75:47:b7:64:39:7c:1f:06:68:b6:03:29:
c3:2e:d2:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:19 2024 by rpki-client on console-fra.rpki-client.org