Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/b06956-e733-4564-9781-d0c4c86bb5fe/1/gng7iKmtT9VYevRedBgd5ZTmW4s.roa
File: gng7iKmtT9VYevRedBgd5ZTmW4s.roa (raw, json)
Hash identifier: T8ZS7Yl46G3MUJiG0BK5BtNPzg/eS8Nl8ZJpfMFYpM0=
Subject key identifier: 82:78:3B:88:A9:AD:4F:D5:58:7A:F4:5E:74:18:1D:E5:94:E6:5B:8B
Certificate issuer: /CN=b2df1c137d7894ccdba768ceb971c4d3df59fe96
Certificate serial: 0ABC1834
Authority key identifier: B2:DF:1C:13:7D:78:94:CC:DB:A7:68:CE:B9:71:C4:D3:DF:59:FE:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/st8cE314lMzbp2jOuXHE099Z_pY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/b06956-e733-4564-9781-d0c4c86bb5fe/1/gng7iKmtT9VYevRedBgd5ZTmW4s.roa
Signing time: Sat 01 Jan 2022 01:03:22 +0000
ROA not before: Sat 01 Jan 2022 01:03:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6766
IP address blocks: 2001:67c:2ed8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180099124 (0xabc1834)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2df1c137d7894ccdba768ceb971c4d3df59fe96
Validity
Not Before: Jan 1 01:03:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82783b88a9ad4fd5587af45e74181de594e65b8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b2:05:dc:f9:2b:f5:41:a9:db:e2:62:cf:24:
19:c7:40:ff:48:9f:9e:b1:fd:06:88:09:5a:8d:67:
e7:0c:17:22:65:ff:00:f0:8f:3a:75:2f:9f:69:1a:
b9:05:2e:85:df:15:41:06:38:da:9e:7c:8a:22:9b:
85:18:8c:1c:22:83:a1:c1:fc:bf:c7:e7:10:72:aa:
e7:12:73:16:c0:0d:47:70:14:51:b6:f0:38:21:62:
31:a0:ec:f9:7f:5e:26:a4:9f:aa:e2:7c:d9:35:26:
eb:a9:96:b2:a9:73:46:8d:42:45:35:4a:9d:70:77:
0d:5d:8d:3e:a9:9d:28:05:2f:2b:36:90:4c:b5:8f:
9f:22:a1:88:ac:4c:e5:0a:92:b0:8a:42:b1:34:2a:
c3:03:f8:f0:fe:91:b2:1d:15:b0:0c:56:56:f2:c5:
de:d0:ef:79:a2:89:55:85:05:b5:01:5d:f6:f8:c0:
f7:82:ae:3a:eb:d7:42:3d:94:14:7c:8b:77:76:15:
bb:63:29:e2:54:48:34:f5:5c:58:85:fe:84:ed:ac:
3f:cc:b6:a2:01:2a:42:72:40:e4:7d:24:87:38:d6:
52:92:67:22:7f:94:98:65:4f:dc:c8:bd:9b:f8:8f:
45:69:b6:26:dd:81:c0:8b:91:0b:0c:84:7a:6d:d1:
bc:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:78:3B:88:A9:AD:4F:D5:58:7A:F4:5E:74:18:1D:E5:94:E6:5B:8B
X509v3 Authority Key Identifier:
keyid:B2:DF:1C:13:7D:78:94:CC:DB:A7:68:CE:B9:71:C4:D3:DF:59:FE:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/st8cE314lMzbp2jOuXHE099Z_pY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b06956-e733-4564-9781-d0c4c86bb5fe/1/gng7iKmtT9VYevRedBgd5ZTmW4s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b06956-e733-4564-9781-d0c4c86bb5fe/1/st8cE314lMzbp2jOuXHE099Z_pY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2ed8::/48
Signature Algorithm: sha256WithRSAEncryption
80:24:13:92:b5:79:bd:7c:2d:3f:86:bb:e4:45:df:1d:88:63:
c9:fa:0a:ad:91:cb:f8:e9:4a:15:17:ed:69:a0:f4:cd:81:bf:
c1:20:69:06:fd:7f:9a:1b:2d:b7:59:c2:a8:83:6c:9e:d6:c1:
ce:4c:95:5f:e3:1a:59:9e:72:a2:cb:14:af:ab:a3:41:3b:99:
b2:36:f8:4e:54:ed:0a:7e:f2:b2:81:27:b5:a6:71:b5:f3:67:
7f:fb:6a:5a:50:ae:d3:7d:d0:37:60:f8:f9:d6:6b:55:6e:e2:
02:bd:53:fd:c0:25:8c:ad:86:50:4f:41:66:75:60:9b:30:7b:
33:fd:90:d9:92:a5:83:22:70:40:77:55:6b:de:11:5c:61:2f:
40:1c:24:9e:4a:73:c8:81:1b:f1:e9:4b:b1:4c:58:f8:ce:b3:
da:82:3f:af:42:74:ef:d6:ca:64:66:98:82:f8:80:e0:73:d7:
d5:3e:f1:84:00:41:20:06:5e:84:df:31:15:8a:90:45:f4:41:
97:08:26:bc:f0:70:96:7c:68:c2:75:8b:77:6b:c9:ba:84:84:
3e:84:29:2e:65:d9:86:9f:ad:03:cf:b3:95:5e:e6:4c:e4:91:
fd:ce:66:72:e3:99:a5:d6:2d:02:f1:98:12:bc:67:22:73:ff:
10:21:0e:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:48 2023 by rpki-client on console.sobornost.net