Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/96d072-d129-42be-a75f-110ea8585354/1/KVat9dr-fyHkiaW9mSpa5ybnkNI.roa
File: KVat9dr-fyHkiaW9mSpa5ybnkNI.roa (raw, json)
Hash identifier: ulHVsawcUbsPaFcCwURhvvUdRtwHldjrac/uPxPMfvw=
Subject key identifier: 29:56:AD:F5:DA:FE:7F:21:E4:89:A5:BD:99:2A:5A:E7:26:E7:90:D2
Certificate issuer: /CN=d65c1b7d9f04c7f04327e6c446416e2f8c31d57d
Certificate serial: 081261E6
Authority key identifier: D6:5C:1B:7D:9F:04:C7:F0:43:27:E6:C4:46:41:6E:2F:8C:31:D5:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1lwbfZ8Ex_BDJ-bERkFuL4wx1X0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/96d072-d129-42be-a75f-110ea8585354/1/KVat9dr-fyHkiaW9mSpa5ybnkNI.roa
Signing time: Sat 01 Jan 2022 15:01:11 +0000
ROA not before: Sat 01 Jan 2022 15:01:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41731
IP address blocks: 45.91.60.0/22 maxlen: 22
2001:678:4c8::/48 maxlen: 48
2a0e:bc0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135422438 (0x81261e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d65c1b7d9f04c7f04327e6c446416e2f8c31d57d
Validity
Not Before: Jan 1 15:01:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2956adf5dafe7f21e489a5bd992a5ae726e790d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:95:38:e4:ce:8f:33:a2:52:24:25:1a:ca:7f:
57:b1:ce:0f:98:03:5b:8b:34:a5:d6:29:66:6d:3b:
94:3b:28:0f:01:01:6f:f9:72:40:40:6c:01:7d:2e:
c8:7c:e7:e0:6e:73:54:d9:38:24:c3:75:02:2c:94:
5c:63:03:7a:b2:ce:4e:35:85:5b:a8:5d:fc:17:da:
ff:9d:3f:35:f1:bb:7b:a8:a4:43:bc:a9:40:18:5a:
cd:d8:b4:05:2a:86:6f:4d:b7:ff:87:b5:7c:10:02:
a9:32:01:d6:5b:27:6e:00:fe:15:07:ca:38:ae:cc:
ad:2f:6a:54:95:00:a1:e8:13:da:95:93:e3:44:49:
0e:32:07:91:4a:96:55:54:0d:45:97:1c:a3:32:f1:
57:19:01:05:9d:27:46:50:39:dd:85:4f:de:9f:f4:
32:34:70:ad:d9:5c:9e:d4:32:29:40:0e:48:84:35:
da:28:f2:be:e0:bb:0b:ab:47:89:29:7a:d1:f8:18:
8a:fe:7c:d7:d8:8c:8d:b1:dd:54:e2:07:26:18:c0:
e6:3a:cf:f4:88:78:71:3e:89:6e:7c:65:45:54:f1:
8f:43:c6:1d:ec:98:82:d1:58:8b:65:25:45:78:2b:
8f:1b:11:1d:31:62:55:2a:39:ed:bb:ee:18:2d:f4:
07:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:56:AD:F5:DA:FE:7F:21:E4:89:A5:BD:99:2A:5A:E7:26:E7:90:D2
X509v3 Authority Key Identifier:
keyid:D6:5C:1B:7D:9F:04:C7:F0:43:27:E6:C4:46:41:6E:2F:8C:31:D5:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1lwbfZ8Ex_BDJ-bERkFuL4wx1X0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/96d072-d129-42be-a75f-110ea8585354/1/KVat9dr-fyHkiaW9mSpa5ybnkNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/96d072-d129-42be-a75f-110ea8585354/1/1lwbfZ8Ex_BDJ-bERkFuL4wx1X0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.60.0/22
IPv6:
2001:678:4c8::/48
2a0e:bc0::/29
Signature Algorithm: sha256WithRSAEncryption
21:91:e3:28:71:84:de:f1:07:b9:17:41:34:e9:2b:98:cf:92:
2c:79:7f:09:0d:0f:5b:27:38:c1:12:c6:bb:c5:6a:d9:f9:9b:
a5:b8:fd:fc:ef:58:f8:d4:36:51:6f:b5:e8:98:09:cb:d6:9f:
e3:b7:b1:76:92:6d:38:6b:81:9f:2d:8c:0e:70:0c:7d:fc:0f:
75:3c:29:e0:18:01:d2:07:81:2b:92:9e:e3:7f:9c:b5:a4:77:
6a:91:2b:ad:02:69:8c:e5:9d:ab:2e:6b:39:8b:d6:66:c7:54:
f9:5d:2b:44:87:9a:23:08:7f:84:4d:dc:f0:86:25:87:b1:8e:
0e:3e:c2:0b:ac:15:ec:56:0e:f9:95:9d:83:ff:11:76:e9:9a:
74:a5:5a:e2:7a:9c:a5:8c:05:c8:88:a7:11:21:55:63:5a:c8:
6a:bd:8a:ec:b0:be:cc:7c:60:43:e1:e5:8d:f9:d8:16:7a:65:
e9:c7:21:de:91:7d:af:5f:ea:1f:35:3b:29:a1:f2:19:71:e7:
b1:50:27:74:19:6b:9e:49:2e:f2:7c:b5:92:7e:15:1d:20:3e:
aa:61:8a:94:27:74:0a:26:51:30:74:f8:57:bd:56:76:3f:61:
ca:51:8b:45:b0:d5:36:c7:c1:d5:69:02:55:e8:27:13:21:64:
d4:f6:eb:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:20 2024 by rpki-client on console-ams.rpki-client.org