Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/K8sbRWrUB9hQZI0V5a7zD6mXpJs.roa
File: K8sbRWrUB9hQZI0V5a7zD6mXpJs.roa (raw, json)
Hash identifier: DYCHPumkk4R5/MTu0v4ac52NB9mUQMOgw3QxaWCvyAU=
Subject key identifier: 2B:CB:1B:45:6A:D4:07:D8:50:64:8D:15:E5:AE:F3:0F:A9:97:A4:9B
Certificate issuer: /CN=fed77339d938bef087599293c201b3b9f8223623
Certificate serial: 107E846D
Authority key identifier: FE:D7:73:39:D9:38:BE:F0:87:59:92:93:C2:01:B3:B9:F8:22:36:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/K8sbRWrUB9hQZI0V5a7zD6mXpJs.roa
Signing time: Sat 01 Jan 2022 06:54:33 +0000
ROA not before: Sat 01 Jan 2022 06:54:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 141.53.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 276726893 (0x107e846d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fed77339d938bef087599293c201b3b9f8223623
Validity
Not Before: Jan 1 06:54:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2bcb1b456ad407d850648d15e5aef30fa997a49b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:46:de:38:2f:79:94:51:80:ef:1c:7a:f1:59:
df:dd:be:a9:23:79:05:c4:90:03:a4:e5:1e:32:72:
2f:db:95:eb:4c:23:17:eb:11:48:22:6d:ad:ec:a2:
d2:2e:a0:60:df:02:67:d5:61:a3:7b:91:d6:1c:2b:
ca:e7:19:c7:cd:31:18:c1:38:fb:57:6d:3a:d8:1b:
66:c9:1b:83:ca:13:23:3c:ba:c3:e3:7e:d7:d8:c9:
f9:d6:78:68:1c:db:80:ee:99:d3:9b:0b:04:dc:b8:
9c:75:ca:c4:38:1f:31:6e:7f:80:65:14:bf:e2:68:
bf:5e:a7:ff:03:91:56:dc:e1:ce:92:a4:53:42:eb:
bb:54:e8:cb:a6:d5:4c:7e:92:85:3b:fd:8b:57:0f:
2d:ba:15:ed:3a:c3:5c:dd:f3:4a:20:21:c2:52:43:
11:fc:8f:1d:72:bc:19:97:7f:f8:b5:8b:49:21:57:
e6:35:21:fd:89:24:ad:52:e1:16:a2:55:79:30:2f:
50:eb:f0:df:90:3d:3b:ee:0e:a8:ba:80:61:9b:43:
d5:5a:c8:63:44:80:54:a7:4f:80:a2:5c:b2:3d:b4:
e1:09:6c:97:54:42:9e:cc:85:9d:d7:f0:4b:c6:fa:
d5:59:38:e9:e3:f8:ad:37:48:54:5c:cc:6f:dd:de:
40:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:CB:1B:45:6A:D4:07:D8:50:64:8D:15:E5:AE:F3:0F:A9:97:A4:9B
X509v3 Authority Key Identifier:
keyid:FE:D7:73:39:D9:38:BE:F0:87:59:92:93:C2:01:B3:B9:F8:22:36:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/K8sbRWrUB9hQZI0V5a7zD6mXpJs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.53.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1b:e9:e2:e5:cf:00:ac:57:1c:71:87:47:38:6a:31:f0:89:ed:
8d:11:95:aa:3a:75:fb:58:8e:82:9e:ae:3b:23:46:25:ae:2d:
5a:41:88:48:e4:2c:6b:27:77:42:ea:74:1a:db:7b:9d:f6:26:
56:48:fd:39:09:33:0f:87:d1:4a:51:37:5c:02:19:11:f6:54:
ad:8c:79:2b:d0:de:56:47:41:86:87:62:b2:2d:39:2a:c2:d6:
95:cb:0b:c6:eb:c1:ec:8d:b9:d3:93:86:2e:75:c1:20:c5:7e:
56:0e:8a:52:02:68:88:c4:e1:cb:39:8c:79:e8:2d:a3:ed:90:
d0:9e:01:5d:bd:a3:21:6e:f8:50:65:2d:58:55:07:b1:43:e5:
63:71:fd:65:c4:02:b0:02:1a:68:d4:2b:68:25:c2:fb:45:1e:
5b:5d:e9:23:3f:81:f4:39:0a:5b:54:32:10:13:96:6b:ac:4e:
8d:21:60:92:c3:49:58:f3:b5:7e:cd:99:5f:87:c8:94:d2:72:
24:97:30:d2:ae:d4:17:17:82:10:4d:7a:b0:61:10:af:09:e4:
4d:50:f4:78:63:70:7a:68:a4:a4:74:e4:03:83:4e:49:78:ab:
6f:8c:74:55:5d:a0:6d:1e:88:ad:d2:7f:a9:7d:b9:88:0d:13:
af:80:11:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:06 2024 by rpki-client on console-fra.rpki-client.org