Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/KLcsIgWZqZ7FI3yIL7GRG8i7bnY.roa
File: KLcsIgWZqZ7FI3yIL7GRG8i7bnY.roa (raw, json)
Hash identifier: GLlCZBpiO3DSPbUijMRvDvc1MuAceiPQyG8z3Z+RnmE=
Subject key identifier: 28:B7:2C:22:05:99:A9:9E:C5:23:7C:88:2F:B1:91:1B:C8:BB:6E:76
Certificate issuer: /CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc
Certificate serial: 01759812
Authority key identifier: 85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/KLcsIgWZqZ7FI3yIL7GRG8i7bnY.roa
Signing time: Sat 01 Jan 2022 10:55:17 +0000
ROA not before: Sat 01 Jan 2022 10:55:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200533
IP address blocks: 2001:67c:21bc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24483858 (0x1759812)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc
Validity
Not Before: Jan 1 10:55:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=28b72c220599a99ec5237c882fb1911bc8bb6e76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b5:fb:f4:07:82:8f:67:23:9e:2f:2b:cf:05:
33:ed:d4:c2:d7:73:d0:c9:ba:67:72:0a:cd:9d:53:
dd:ea:b6:9f:04:f1:cc:ba:d6:af:9a:d6:bb:47:62:
3d:43:c3:b7:a7:db:e0:f7:c2:e7:c4:12:88:d3:7a:
24:e8:a1:a9:2d:f6:f9:cc:ca:97:9b:f5:15:2d:48:
3d:45:cd:fc:89:cd:76:a2:63:ce:b1:fe:64:b1:32:
5b:c0:a7:06:72:3c:5c:41:aa:39:1f:6f:01:0d:cd:
de:97:9b:e8:81:37:6a:34:b8:8d:43:47:f7:02:bc:
ef:f0:4e:cd:55:ba:30:f1:c8:64:11:b4:10:48:35:
8a:31:15:23:6c:92:4c:7b:b4:0f:2a:7f:20:e9:10:
41:e5:9f:7a:15:ab:f6:d1:9e:8b:96:78:c2:dd:26:
d9:64:1f:6c:a6:48:d2:33:4f:49:7d:e2:99:03:68:
c9:9f:86:43:25:9a:56:32:e2:c5:61:87:6d:a6:ed:
bf:8c:04:01:0a:88:c6:7b:73:33:69:46:d6:91:17:
af:ec:3d:7d:b3:e2:ea:0d:6b:74:87:cd:06:ab:87:
16:ab:36:5b:73:d5:ae:d5:5a:d5:f0:fb:f9:d3:b0:
f9:b3:dc:76:53:47:b8:1d:fc:fd:2d:bb:e7:f7:3c:
e9:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:B7:2C:22:05:99:A9:9E:C5:23:7C:88:2F:B1:91:1B:C8:BB:6E:76
X509v3 Authority Key Identifier:
keyid:85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/KLcsIgWZqZ7FI3yIL7GRG8i7bnY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:21bc::/48
Signature Algorithm: sha256WithRSAEncryption
0b:85:ba:88:a0:e7:c0:c6:1b:e5:e3:4a:83:32:51:db:b3:fc:
ce:8f:51:fd:79:54:17:32:52:ac:f8:12:f3:4a:8c:f2:0c:a7:
e2:88:d3:bf:ba:08:cc:1f:09:c4:cd:12:ab:9d:95:c6:fd:31:
df:71:75:9d:28:75:27:47:e1:6e:43:b4:05:ab:c9:d9:b0:34:
66:b8:e8:28:25:95:e8:ba:da:f8:85:e3:e9:05:3f:f7:87:a9:
f5:95:5e:a6:30:94:db:4d:bf:60:e1:c0:27:66:79:be:04:fa:
75:f8:bc:25:e2:59:f0:b5:06:1a:b7:b4:44:aa:c5:e8:17:87:
f4:78:f4:f4:3f:35:bb:2f:a1:62:fc:5b:33:43:80:06:c5:28:
95:d2:94:29:6f:13:a2:9b:95:dd:37:f3:84:2b:ca:64:74:6f:
12:7b:58:f2:21:83:4e:c1:ba:e4:fc:d6:e8:85:d7:99:fc:1f:
bc:d9:ea:9b:99:bd:2a:4b:1b:d6:d0:42:31:67:9e:fa:2c:b8:
c9:46:24:61:24:ea:48:3e:9f:cb:11:21:29:d5:95:73:b0:03:
d0:83:d5:21:9a:cb:ca:2e:a9:19:55:2c:e3:3a:df:a3:40:c7:
77:4e:91:4c:81:d8:24:dc:d6:fc:ac:ba:a7:37:46:f1:c5:0e:
09:3b:2a:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:10 2024 by rpki-client on console-ams.rpki-client.org