Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/6222f1-f4dc-4704-b946-1906a4a1f993/1/dsQUibsRVVMXOTa17sSrgS_WGsI.roa
File: dsQUibsRVVMXOTa17sSrgS_WGsI.roa (raw, json)
Hash identifier: FcC+SYARncBXW0Dl+Q2FtON/CZwcPsrchslic+wKuIc=
Subject key identifier: 76:C4:14:89:BB:11:55:53:17:39:36:B5:EE:C4:AB:81:2F:D6:1A:C2
Certificate issuer: /CN=be9fc3884705c4aedcfe7a4d17ddb752e1fe6198
Certificate serial: FAEFDF
Authority key identifier: BE:9F:C3:88:47:05:C4:AE:DC:FE:7A:4D:17:DD:B7:52:E1:FE:61:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vp_DiEcFxK7c_npNF923UuH-YZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/6222f1-f4dc-4704-b946-1906a4a1f993/1/dsQUibsRVVMXOTa17sSrgS_WGsI.roa
Signing time: Sat 01 Jan 2022 06:05:42 +0000
ROA not before: Sat 01 Jan 2022 06:05:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212737
IP address blocks: 2001:67c:2de0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16445407 (0xfaefdf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be9fc3884705c4aedcfe7a4d17ddb752e1fe6198
Validity
Not Before: Jan 1 06:05:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76c41489bb115553173936b5eec4ab812fd61ac2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:df:4c:d5:76:d0:e0:1c:fa:8a:6d:b1:d9:99:
f0:a9:b4:7d:04:7e:66:04:06:3d:2a:53:4b:2c:a9:
a2:04:0a:22:62:df:d3:00:42:45:1f:7e:1f:9f:7e:
3e:f0:f0:aa:1d:6e:04:cb:ab:34:88:59:be:1e:09:
09:ae:78:1c:a5:7f:35:72:65:eb:52:35:2e:f9:91:
20:74:43:6d:a1:13:bd:ce:b8:ad:e4:fc:b1:19:71:
6e:06:4d:83:4d:c6:c6:3c:41:5a:e0:c7:fb:2c:37:
d6:bc:63:bf:ab:4d:ae:a0:34:21:93:7b:00:6f:13:
d1:9c:b7:04:bc:21:70:05:f8:2d:f5:4f:17:de:70:
da:5a:22:ad:33:73:c8:36:a9:d9:65:ed:67:37:85:
be:90:c7:43:f2:8a:5a:e6:ea:87:f5:c7:16:73:0f:
5b:43:ff:69:1c:11:b1:0a:41:cb:6d:dc:f7:82:06:
0c:b3:a9:af:06:c0:87:9f:78:21:ca:1c:da:3b:56:
92:0f:a2:2a:9a:15:4e:cc:ec:4d:db:8e:e8:52:9c:
66:4c:5b:47:a6:54:6d:2b:ff:71:c6:99:54:ae:61:
7a:aa:da:a5:62:37:8d:5d:51:7c:50:3b:c8:31:23:
c1:22:b5:67:10:67:e4:06:23:96:bf:1a:2d:9c:5e:
ae:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:C4:14:89:BB:11:55:53:17:39:36:B5:EE:C4:AB:81:2F:D6:1A:C2
X509v3 Authority Key Identifier:
keyid:BE:9F:C3:88:47:05:C4:AE:DC:FE:7A:4D:17:DD:B7:52:E1:FE:61:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vp_DiEcFxK7c_npNF923UuH-YZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/6222f1-f4dc-4704-b946-1906a4a1f993/1/dsQUibsRVVMXOTa17sSrgS_WGsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/6222f1-f4dc-4704-b946-1906a4a1f993/1/vp_DiEcFxK7c_npNF923UuH-YZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2de0::/48
Signature Algorithm: sha256WithRSAEncryption
04:b2:48:44:9f:75:2b:8e:ef:ba:32:51:37:0f:7c:24:68:cf:
6a:84:10:07:75:af:22:69:1b:29:08:04:e1:14:8e:71:e6:a5:
e7:0c:d9:fc:49:91:f1:c4:c4:2a:34:8b:5e:bb:a3:36:4a:c9:
37:dc:eb:f2:ec:ed:b3:d4:ba:a3:eb:00:4f:88:08:ce:ab:7f:
0e:ae:57:01:32:4b:89:ee:8e:38:d1:69:77:33:4e:11:0d:31:
38:d6:79:b0:80:a4:ba:97:7c:0f:a3:52:38:e4:5c:62:e6:f9:
b3:b3:c3:8f:f1:96:1d:68:78:cf:30:96:83:5d:3f:e7:4d:66:
e7:9e:8d:38:93:8b:ab:5a:56:62:11:4b:49:01:53:02:4c:ec:
fe:f4:e1:bf:12:8a:15:78:ca:c6:d2:0e:19:58:17:b0:e0:59:
09:42:6d:c2:d6:2b:cc:bd:c7:70:47:0b:68:31:8f:bf:3e:79:
f6:98:ba:5e:83:28:af:8b:d7:1c:0b:a3:1a:35:c5:f1:a0:06:
ef:1d:a8:42:d3:92:a7:44:9f:e1:89:f1:d8:85:b2:01:64:40:
c0:77:97:f8:c7:92:be:ab:9b:51:a0:20:e2:03:c3:e3:9c:16:
af:dd:15:e9:3c:f9:81:5e:80:e7:c0:c8:73:b8:17:ba:ac:a4:
47:84:51:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:20 2023 by rpki-client on console.sobornost.net