Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/5ea5f0-02d7-4b0f-b0b2-1b86177af0dd/1/1-Tzgl6iWNtL2-HQ9JW7YWKn4k58.roa
File: 1-Tzgl6iWNtL2-HQ9JW7YWKn4k58.roa (raw, json)
Hash identifier: qlBpT6joD+XhOdVvqGEoI2/cs9uaZKplfZPgcUz08Z8=
Subject key identifier: F9:3C:E0:97:A8:96:36:D2:F6:F8:74:3D:25:6E:D8:58:A9:F8:93:9F
Certificate issuer: /CN=4691bfd3cfec5a1108f1c86854764e2b903d7888
Certificate serial: 0CE4E54D
Authority key identifier: 46:91:BF:D3:CF:EC:5A:11:08:F1:C8:68:54:76:4E:2B:90:3D:78:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RpG_08_sWhEI8choVHZOK5A9eIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/5ea5f0-02d7-4b0f-b0b2-1b86177af0dd/1/1-Tzgl6iWNtL2-HQ9JW7YWKn4k58.roa
Signing time: Sat 01 Jan 2022 10:01:50 +0000
ROA not before: Sat 01 Jan 2022 10:01:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205597
IP address blocks: 2001:678:ad0::/48 maxlen: 48
2001:678:ad4::/48 maxlen: 48
2001:67c:2d00::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 216327501 (0xce4e54d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4691bfd3cfec5a1108f1c86854764e2b903d7888
Validity
Not Before: Jan 1 10:01:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f93ce097a89636d2f6f8743d256ed858a9f8939f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:06:93:11:6b:4f:d3:2f:ef:6d:54:1b:c7:39:
00:d6:b5:36:90:f4:c4:56:f7:9e:4a:cd:c7:fe:1f:
cc:8d:1d:8f:23:52:4e:2c:33:00:09:c7:2d:e5:b1:
6e:aa:d8:b1:4f:06:74:59:bd:4b:1a:60:94:77:68:
05:62:2a:e0:eb:fe:5c:bf:61:ec:31:c0:22:49:69:
a5:33:48:e4:6d:5f:19:2b:46:ec:5a:40:d4:cf:c7:
d4:dd:0a:88:5e:ff:34:6d:5e:ab:b7:bf:cd:4a:67:
6e:3d:63:13:b5:65:18:c9:4c:49:be:73:18:0c:27:
73:50:e4:7a:22:5e:b6:a4:87:45:26:78:32:c3:75:
4c:7e:7a:f4:68:22:8d:c3:34:04:6a:a1:d8:8e:e2:
41:96:c1:16:7d:6d:2e:6b:79:ef:76:be:77:2f:f3:
0b:e8:49:f0:9f:21:70:26:22:77:a9:c2:a4:a1:c2:
73:f2:a6:64:65:b6:aa:b9:ff:d4:47:1e:29:9b:11:
0b:f8:9c:16:62:7e:cb:4b:06:fa:8e:15:57:0c:2b:
13:3f:4c:f3:54:b0:95:f5:34:68:f1:1d:73:9a:35:
b2:de:1b:0a:54:c9:15:0e:a5:54:e4:50:8a:fb:cf:
22:0f:1f:7e:18:0f:53:e9:35:0b:dd:54:2a:ba:8c:
31:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:3C:E0:97:A8:96:36:D2:F6:F8:74:3D:25:6E:D8:58:A9:F8:93:9F
X509v3 Authority Key Identifier:
keyid:46:91:BF:D3:CF:EC:5A:11:08:F1:C8:68:54:76:4E:2B:90:3D:78:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RpG_08_sWhEI8choVHZOK5A9eIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/5ea5f0-02d7-4b0f-b0b2-1b86177af0dd/1/1-Tzgl6iWNtL2-HQ9JW7YWKn4k58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/5ea5f0-02d7-4b0f-b0b2-1b86177af0dd/1/RpG_08_sWhEI8choVHZOK5A9eIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:ad0::/48
2001:678:ad4::/48
2001:67c:2d00::/48
Signature Algorithm: sha256WithRSAEncryption
4f:41:ab:22:ad:b2:20:38:c8:d4:6b:89:2f:46:1c:7a:aa:fe:
79:1f:68:81:56:36:25:3a:88:8e:69:64:1b:d3:73:90:55:58:
75:79:4c:58:96:b6:ab:47:d7:d0:0a:49:01:38:ad:dc:cf:88:
d0:22:8f:18:13:eb:ec:e9:6d:0e:5b:0f:bb:19:69:39:79:d7:
0b:6c:66:1c:d6:a6:6e:95:e6:a0:a4:5c:dc:ce:91:ee:0b:63:
94:a4:44:0b:cf:f2:45:f7:3a:bb:b3:48:00:90:28:75:bd:e5:
0a:ae:1f:67:32:45:2f:e1:b6:fd:b4:07:e8:a6:2c:e1:b9:f0:
da:bc:fb:c5:35:b7:e9:16:0c:42:70:c2:8d:5e:50:10:47:5a:
2b:43:27:74:7a:ae:8f:0e:7d:fe:cb:58:58:fc:e0:e5:24:44:
30:46:ac:29:d9:99:b6:5c:bf:fe:2b:ba:e6:13:e7:01:a5:05:
e4:c9:f0:f1:2c:86:06:48:9a:f2:52:82:c0:a4:3e:a4:1a:50:
52:b7:b9:db:ce:bd:e6:60:c9:31:cc:06:39:6f:33:ca:d2:7b:
95:e5:6b:21:c1:13:98:ef:cf:af:74:25:ca:72:30:44:a7:94:
0e:7c:5c:1d:6e:6c:7d:d6:3b:3a:35:ca:e1:7a:3a:bf:3a:c2:
e1:8a:07:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:28 2023 by rpki-client on console-ams.rpki-client.org