Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/ddda5e-feef-4763-88da-8bc825c3a324/1/kRgEJbdszI21XCMQJ1d2qwPp1fI.roa
File: kRgEJbdszI21XCMQJ1d2qwPp1fI.roa (raw, json)
Hash identifier: BQylyaGqgvI96frlAdCOYLWuAMasvan5H+IXl9nQDN4=
Subject key identifier: 91:18:04:25:B7:6C:CC:8D:B5:5C:23:10:27:57:76:AB:03:E9:D5:F2
Certificate issuer: /CN=541fc54762cfe92d76c2f4c6af8999cbccf6bb67
Certificate serial: 0EDD3718
Authority key identifier: 54:1F:C5:47:62:CF:E9:2D:76:C2:F4:C6:AF:89:99:CB:CC:F6:BB:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VB_FR2LP6S12wvTGr4mZy8z2u2c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/ddda5e-feef-4763-88da-8bc825c3a324/1/kRgEJbdszI21XCMQJ1d2qwPp1fI.roa
Signing time: Sat 01 Jan 2022 04:04:11 +0000
ROA not before: Sat 01 Jan 2022 04:04:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203055
IP address blocks: 66.203.124.0/23 maxlen: 24
2a0b:e46:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 249378584 (0xedd3718)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=541fc54762cfe92d76c2f4c6af8999cbccf6bb67
Validity
Not Before: Jan 1 04:04:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91180425b76ccc8db55c2310275776ab03e9d5f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:be:01:d9:59:58:b0:15:02:ca:54:c4:68:05:
1b:94:98:54:99:92:52:3a:d0:0a:d1:84:10:95:be:
b3:1a:3e:1c:b3:63:79:b9:32:1f:70:8b:12:48:fe:
f3:8c:8e:1f:9c:c9:63:81:9c:09:6a:d7:eb:bb:55:
fd:05:49:9b:26:8a:8e:6e:8c:2f:fa:e9:a0:33:f4:
df:35:04:de:63:78:ec:51:18:02:f0:d5:0a:2f:5c:
52:ca:da:cb:5c:ee:29:c2:47:ca:78:97:af:63:44:
a1:a5:13:17:77:54:ef:4d:a7:f0:5e:e5:f0:a4:df:
27:04:21:f2:67:bc:6f:e4:8d:d1:66:c9:61:79:75:
b9:00:c2:31:2e:8a:b8:40:ca:d7:98:36:3c:dd:d9:
86:da:d8:bc:8b:1d:cd:4f:8a:47:49:18:2b:07:f2:
9c:73:81:d2:e2:23:dc:19:c1:d0:40:58:c2:96:d1:
2e:b1:f0:2f:0c:9b:38:2c:21:9a:ae:6f:0c:aa:32:
a2:15:86:7a:ce:82:d4:88:0c:69:34:7b:20:3b:5c:
ef:bf:6c:19:66:81:cc:c0:b3:42:32:ce:d2:16:b5:
e9:c2:81:a7:f3:89:c1:ad:f0:66:b7:d1:32:5c:0a:
80:36:10:21:d1:f8:27:aa:8c:7c:af:2b:83:79:c0:
5b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:18:04:25:B7:6C:CC:8D:B5:5C:23:10:27:57:76:AB:03:E9:D5:F2
X509v3 Authority Key Identifier:
keyid:54:1F:C5:47:62:CF:E9:2D:76:C2:F4:C6:AF:89:99:CB:CC:F6:BB:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VB_FR2LP6S12wvTGr4mZy8z2u2c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/ddda5e-feef-4763-88da-8bc825c3a324/1/kRgEJbdszI21XCMQJ1d2qwPp1fI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/ddda5e-feef-4763-88da-8bc825c3a324/1/VB_FR2LP6S12wvTGr4mZy8z2u2c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.203.124.0/23
IPv6:
2a0b:e46:1::/48
Signature Algorithm: sha256WithRSAEncryption
9a:e7:a8:be:ac:dd:ce:7b:d0:ed:ef:d0:9f:f1:e6:12:13:34:
47:f7:36:dd:07:b7:96:62:c5:5b:6e:5f:d6:80:68:b5:88:fa:
34:0c:56:bc:d5:b0:b5:82:a8:a6:94:06:d3:0f:9f:6d:ca:e5:
dc:5f:93:0d:64:fc:11:98:3c:e7:54:5b:28:ae:8b:f9:b6:4e:
75:d4:f3:fa:da:be:9b:51:b3:54:66:73:33:c9:b4:14:b6:1a:
47:94:62:d2:29:7a:d6:8d:3d:83:84:25:47:21:83:3a:1f:57:
0b:21:17:c0:b2:62:26:aa:66:cf:b0:ed:78:70:b7:86:b0:50:
4d:27:a7:42:0b:ad:73:c2:1d:1d:02:2b:1b:99:46:8d:6b:bc:
14:6c:ee:b0:fe:61:0e:11:62:ac:47:e2:00:a9:22:63:e4:1a:
38:c3:bb:a7:ea:32:93:c5:38:72:1d:e8:76:3c:c7:27:f1:59:
c8:81:a9:66:74:81:b3:c0:83:5e:51:6c:aa:f0:4c:e6:68:f2:
22:9c:5a:6a:cd:c0:ea:2c:b5:16:79:85:72:f5:12:8a:a8:82:
0e:f8:40:b8:e1:4d:e5:4d:1d:b1:5c:7b:f6:ab:67:4a:b6:3e:
cb:0a:d7:d7:e6:38:d4:4e:50:d8:26:19:46:c3:f1:ef:a9:c9:
c7:c1:8c:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:40 2024 by rpki-client on console-ams.rpki-client.org