Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/3Gc2JVlDohDkbc_qwn_4gCBkUag.roa
File: 3Gc2JVlDohDkbc_qwn_4gCBkUag.roa (raw, json)
Hash identifier: KTg/0XPN6aZaBqRGfWHjA1cOjhQ9Ffrk1zvyaywS/pM=
Subject key identifier: DC:67:36:25:59:43:A2:10:E4:6D:CF:EA:C2:7F:F8:80:20:64:51:A8
Certificate issuer: /CN=918283d785cc88ef8520862ac161f27b5630bc14
Certificate serial: 01857130A11DF3E18E94CCA272ED22289742
Authority key identifier: 91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/3Gc2JVlDohDkbc_qwn_4gCBkUag.roa
Signing time: Mon 02 Jan 2023 06:34:50 +0000
ROA not before: Mon 02 Jan 2023 06:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202739
IP address blocks: 2001:678:1e0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:30:a1:1d:f3:e1:8e:94:cc:a2:72:ed:22:28:97:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918283d785cc88ef8520862ac161f27b5630bc14
Validity
Not Before: Jan 2 06:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dc6736255943a210e46dcfeac27ff880206451a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:11:80:1f:3d:67:f7:b3:bd:31:9f:86:f5:da:
77:f6:a6:05:c7:8e:2a:e8:0b:17:27:3f:b1:e6:c7:
f3:26:5e:e2:e8:f3:b1:25:e7:8d:a1:f2:2f:8b:0a:
83:27:3a:d6:62:9b:c0:6e:9a:e4:b5:99:66:f5:c6:
1e:99:ea:e5:e8:5f:9e:54:8a:d0:b8:c3:9d:e4:a2:
cd:d8:a3:94:92:8d:af:b8:32:6d:32:49:84:47:fa:
4d:28:9f:c4:48:c6:6a:bc:42:0f:1a:99:a6:f1:d1:
c8:18:f9:1c:fd:7b:bf:92:e4:54:66:e5:15:83:69:
44:2d:f5:2a:ae:97:eb:e9:17:31:b2:ab:75:b8:6c:
da:25:33:82:a7:ce:70:a2:e6:a1:cd:55:90:f0:3f:
72:78:51:23:8d:09:a6:ec:fd:4a:b9:58:98:2e:21:
26:60:12:44:2e:fc:15:ac:7e:03:1f:fd:16:d4:2d:
9c:4f:84:a2:22:38:74:c8:69:a9:43:2c:de:1a:b9:
a4:2f:9a:f5:66:bd:cc:d8:17:03:31:42:19:91:3c:
90:fd:d7:d7:cd:a6:17:47:1a:9d:94:08:1d:1b:91:
0c:63:07:f6:72:e8:02:51:db:b2:fb:0c:69:96:bc:
f9:d5:f3:a1:80:d2:6c:02:28:b5:96:3b:87:3a:1a:
23:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:67:36:25:59:43:A2:10:E4:6D:CF:EA:C2:7F:F8:80:20:64:51:A8
X509v3 Authority Key Identifier:
keyid:91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/3Gc2JVlDohDkbc_qwn_4gCBkUag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:1e0::/48
Signature Algorithm: sha256WithRSAEncryption
af:c7:e4:14:81:19:62:1a:46:bc:1d:75:e0:c4:de:1c:fc:2b:
63:83:34:7a:76:e6:03:68:5b:7b:03:7b:cb:d5:73:d7:39:13:
e9:04:0a:5c:83:fa:7a:4d:fa:0c:18:29:25:54:e4:3d:26:a6:
31:95:8d:52:eb:f5:cf:28:35:3a:60:39:5f:7b:8d:cc:3c:10:
1d:89:ba:a8:bb:1a:45:94:46:99:2f:fe:f3:f5:df:00:79:29:
85:63:36:77:f5:7d:7b:d6:90:9b:26:d4:02:08:0e:9a:f2:9f:
87:b9:d5:5e:ef:14:80:bc:94:ed:a8:c1:d7:65:83:8b:f6:c3:
22:dc:2c:32:f8:5a:17:89:66:79:1a:22:e7:1f:6d:67:fb:65:
f2:67:4a:6c:27:c5:af:87:27:a5:20:92:d7:47:cf:a3:34:1e:
f5:3a:6b:3f:61:99:3b:7a:39:17:08:30:17:12:c3:77:7d:5f:
fd:ee:e7:ec:05:4d:f5:10:03:d9:22:25:a7:8d:0e:39:b4:68:
64:8c:de:47:ec:b4:44:dc:9d:84:b7:94:bc:14:fb:e1:34:97:
06:dd:3e:ca:a7:49:ce:4e:d5:f6:60:04:72:5a:a7:22:cf:b2:
e2:6e:99:06:2a:bb:72:b9:b1:95:c3:d2:4c:3f:4a:5f:5e:b6:
11:c4:dc:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:32:23 2025 by rpki-client