Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/6bdd74-8cd0-4cc4-8b67-f83e3c71efcb/1/KOwqLGyVgsReAq89qt_bsWYOlXU.roa
File: KOwqLGyVgsReAq89qt_bsWYOlXU.roa (raw, json)
Hash identifier: QlIU/+CJ+vNW9C0LVytVSsJMQ5SDhmykQ5x7qR/xaks=
Subject key identifier: 28:EC:2A:2C:6C:95:82:C4:5E:02:AF:3D:AA:DF:DB:B1:66:0E:95:75
Certificate issuer: /CN=a41c96e931eee41b899d62c7db83633446a3c42b
Certificate serial: 08988179
Authority key identifier: A4:1C:96:E9:31:EE:E4:1B:89:9D:62:C7:DB:83:63:34:46:A3:C4:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pByW6THu5BuJnWLH24NjNEajxCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/6bdd74-8cd0-4cc4-8b67-f83e3c71efcb/1/KOwqLGyVgsReAq89qt_bsWYOlXU.roa
Signing time: Sat 01 Jan 2022 10:57:10 +0000
ROA not before: Sat 01 Jan 2022 10:57:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200273
IP address blocks: 2001:678:7f8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144212345 (0x8988179)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a41c96e931eee41b899d62c7db83633446a3c42b
Validity
Not Before: Jan 1 10:57:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=28ec2a2c6c9582c45e02af3daadfdbb1660e9575
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:9e:0c:2a:70:6a:c9:f8:77:d5:0d:38:66:ca:
f8:9a:7b:71:62:a3:e7:0d:b8:fe:57:e9:76:3d:24:
d4:79:f2:46:ab:ca:c7:66:04:32:0a:fb:0b:3f:9a:
ea:4f:04:bc:74:15:f4:72:4e:c9:f5:b8:16:5f:0e:
a9:18:d6:d2:e1:ea:c8:d3:c7:b9:99:40:dd:f4:9b:
ac:1e:b2:03:a1:d7:99:d7:38:63:9f:de:8e:bb:3b:
d0:a4:47:0e:71:d1:fe:24:de:87:63:f0:41:d8:11:
7a:39:06:ee:bb:99:11:37:d9:5a:83:81:c7:17:20:
c5:26:80:f7:95:d9:51:c9:f2:36:12:cc:dc:44:30:
b7:7e:33:29:e4:e2:99:03:29:64:b8:98:6b:e0:44:
e0:b5:d1:0c:24:89:49:59:d3:9e:aa:18:35:b3:90:
a1:f3:93:fe:03:ee:9f:59:47:c6:ec:7c:18:79:8d:
1b:1a:c5:a9:01:2c:5c:95:2f:9e:87:44:19:43:f5:
aa:cd:73:61:75:03:ce:35:38:64:fc:cc:7b:5f:88:
26:e7:5c:a8:75:66:26:52:ff:f9:47:16:3a:e0:48:
da:74:3b:11:d3:8d:e0:1d:d1:30:fd:83:53:35:e0:
69:cb:90:3e:6f:ef:4e:76:5b:18:36:2d:0d:85:af:
be:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:EC:2A:2C:6C:95:82:C4:5E:02:AF:3D:AA:DF:DB:B1:66:0E:95:75
X509v3 Authority Key Identifier:
keyid:A4:1C:96:E9:31:EE:E4:1B:89:9D:62:C7:DB:83:63:34:46:A3:C4:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pByW6THu5BuJnWLH24NjNEajxCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/6bdd74-8cd0-4cc4-8b67-f83e3c71efcb/1/KOwqLGyVgsReAq89qt_bsWYOlXU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/6bdd74-8cd0-4cc4-8b67-f83e3c71efcb/1/pByW6THu5BuJnWLH24NjNEajxCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:7f8::/48
Signature Algorithm: sha256WithRSAEncryption
34:b7:9c:89:8d:2d:c2:20:2e:1a:91:1e:e0:70:83:c7:9d:06:
d6:f1:7b:8b:ef:4e:07:14:bd:c4:68:7b:40:e3:66:a5:d8:09:
4d:64:18:38:68:1b:b3:44:c2:26:98:15:2e:1b:73:38:90:03:
83:76:a6:de:ba:3e:28:f9:44:09:8b:a3:ca:50:92:19:7a:e1:
de:88:1d:ed:8c:17:04:d5:2d:b2:1c:22:30:bf:19:77:8b:61:
b3:f5:b9:f2:97:88:da:d2:87:ed:2b:96:0a:5e:89:99:97:7c:
4d:4e:f7:7f:87:32:40:b2:50:d1:34:96:1b:f0:29:c2:79:43:
45:f5:7e:8c:0b:1c:7f:36:59:44:75:55:4c:e6:6f:d8:ff:ba:
97:84:2f:27:7a:41:d2:ed:47:77:27:4b:c5:6d:5a:39:5e:fd:
fd:eb:b7:a6:8d:04:81:59:c4:d6:95:e1:f4:24:b2:ed:87:04:
fc:e3:78:38:98:1c:e2:0b:c5:73:8e:71:58:0e:e0:f0:84:e2:
d7:da:15:d9:75:9f:32:e1:c8:b2:31:d9:c1:06:ae:05:63:f3:
e7:3e:2a:57:ac:a5:5e:62:36:1f:17:5d:47:ab:53:0d:3e:71:
4d:30:8d:57:9b:7f:c5:aa:50:1f:36:87:b7:3a:ba:df:07:f2:
2f:30:8c:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:08 2024 by rpki-client on console-fra.rpki-client.org