Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/9f8fbe-b2e8-472d-9ebc-0b9885863ebf/1/tjJBh4TSXbsAaEHJwNNeEaIjdmk.roa
File: tjJBh4TSXbsAaEHJwNNeEaIjdmk.roa (raw, json)
Hash identifier: k7sAaBRlJEWACpX1BvpltMp5MjgF89ljYwcbW9ywUdU=
Subject key identifier: B6:32:41:87:84:D2:5D:BB:00:68:41:C9:C0:D3:5E:11:A2:23:76:69
Certificate issuer: /CN=18f4ee88584d6dfd9e3aa9bc201c50f44e353d9c
Certificate serial: 0854CD45
Authority key identifier: 18:F4:EE:88:58:4D:6D:FD:9E:3A:A9:BC:20:1C:50:F4:4E:35:3D:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GPTuiFhNbf2eOqm8IBxQ9E41PZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/9f8fbe-b2e8-472d-9ebc-0b9885863ebf/1/tjJBh4TSXbsAaEHJwNNeEaIjdmk.roa
Signing time: Sat 01 Jan 2022 16:06:48 +0000
ROA not before: Sat 01 Jan 2022 16:06:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208723
IP address blocks: 2001:678:a90::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139775301 (0x854cd45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18f4ee88584d6dfd9e3aa9bc201c50f44e353d9c
Validity
Not Before: Jan 1 16:06:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b632418784d25dbb006841c9c0d35e11a2237669
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f7:6d:06:21:54:b9:27:18:b6:8d:81:89:43:
2d:c4:70:b5:99:9c:e9:2a:04:39:cf:2f:5e:29:d7:
19:11:58:dc:58:90:21:b4:b1:18:d8:33:47:41:c6:
cd:23:5a:24:e0:06:65:ad:61:5a:c6:88:ac:bf:22:
e2:7d:42:1b:b8:6c:9a:d5:f1:a3:9e:79:00:4d:7b:
78:e3:12:62:81:e5:76:5e:5c:84:8a:a7:0b:0d:87:
c4:2d:eb:80:43:50:82:a7:83:12:33:e7:0c:e3:95:
66:a8:45:d7:cb:41:18:ad:b3:3d:28:f5:77:e4:fc:
ca:47:51:12:4a:60:5f:b2:23:e3:0c:47:f9:1e:a1:
ef:be:6f:10:1d:5e:f1:56:cd:3c:d4:1b:54:ef:f0:
02:06:0a:9e:75:bd:c9:12:3b:05:85:ea:3a:87:a9:
e0:08:4a:0c:f0:66:7a:b2:e2:15:13:a4:bb:25:c9:
be:ad:1b:1d:84:04:2f:28:b1:e8:13:44:a3:c3:b8:
91:d0:6d:32:97:1c:1c:8e:06:20:be:71:bf:63:69:
ba:95:a2:bc:c2:14:c5:47:06:1c:c4:ea:3a:fa:58:
32:0a:c2:86:54:ae:23:a2:25:e5:69:af:79:34:a0:
cb:4e:68:74:b7:3c:98:77:0d:02:40:35:71:5f:ea:
d6:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:32:41:87:84:D2:5D:BB:00:68:41:C9:C0:D3:5E:11:A2:23:76:69
X509v3 Authority Key Identifier:
keyid:18:F4:EE:88:58:4D:6D:FD:9E:3A:A9:BC:20:1C:50:F4:4E:35:3D:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GPTuiFhNbf2eOqm8IBxQ9E41PZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/9f8fbe-b2e8-472d-9ebc-0b9885863ebf/1/tjJBh4TSXbsAaEHJwNNeEaIjdmk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/9f8fbe-b2e8-472d-9ebc-0b9885863ebf/1/GPTuiFhNbf2eOqm8IBxQ9E41PZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:a90::/48
Signature Algorithm: sha256WithRSAEncryption
71:e4:07:a0:49:cc:43:96:3e:1d:67:15:cc:02:c8:af:3f:30:
c1:eb:8c:6c:a5:74:14:66:83:21:68:79:23:26:41:2a:2f:7a:
64:93:a3:ff:b6:32:99:91:18:cf:cc:7f:06:3a:97:b6:61:e0:
83:4d:d7:70:78:42:99:20:a5:9a:92:4a:5e:f8:8c:43:10:be:
96:38:10:bd:3a:3f:fa:77:a6:ae:4a:29:2c:08:47:0c:26:41:
fc:9f:29:50:ee:e3:ea:28:ec:19:df:bc:6d:52:7a:98:76:47:
9e:41:14:6b:13:1e:26:b4:a3:7b:92:0a:48:a4:18:c8:a3:b4:
43:4b:20:c1:eb:4a:78:ff:d1:dd:3c:7d:b9:1e:1f:82:53:31:
d1:bf:7b:3e:89:46:73:43:e7:c7:6f:b2:cb:83:a9:dc:26:62:
8b:ba:84:0a:19:8e:27:6e:45:c3:0b:44:1a:67:49:72:a3:ae:
ab:ca:06:50:22:8e:6f:49:33:d5:5f:20:e1:aa:16:84:5a:85:
70:15:f1:ae:b8:ff:37:c0:6e:f3:28:df:fa:7c:b4:a2:85:03:
6f:70:e8:fa:87:57:be:a8:09:fd:62:d7:67:11:8e:7d:72:d9:
b8:1e:16:a9:a5:8c:ae:c8:b4:56:00:21:65:d7:2e:d2:56:04:
a6:20:a5:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:19 2024 by rpki-client on console-fra.rpki-client.org