Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/6de7a0-4073-4272-bf44-07a1d65548ba/1/dxl1GJvowblKuxJXEu7HVW43Pw8.roa
File: dxl1GJvowblKuxJXEu7HVW43Pw8.roa (raw, json)
Hash identifier: RuBTp8XNRWk0w8VtUZD+Z1calDzoCpPANb5mb349ZSQ=
Subject key identifier: 77:19:75:18:9B:E8:C1:B9:4A:BB:12:57:12:EE:C7:55:6E:37:3F:0F
Certificate issuer: /CN=74aebc154a56c83025cbd8641a9ac315cb551c06
Certificate serial: 07ACCB49
Authority key identifier: 74:AE:BC:15:4A:56:C8:30:25:CB:D8:64:1A:9A:C3:15:CB:55:1C:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dK68FUpWyDAly9hkGprDFctVHAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/6de7a0-4073-4272-bf44-07a1d65548ba/1/dxl1GJvowblKuxJXEu7HVW43Pw8.roa
Signing time: Sat 01 Jan 2022 11:00:55 +0000
ROA not before: Sat 01 Jan 2022 11:00:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47890
IP address blocks: 2a0e:1d80:7::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128764745 (0x7accb49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74aebc154a56c83025cbd8641a9ac315cb551c06
Validity
Not Before: Jan 1 11:00:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=771975189be8c1b94abb125712eec7556e373f0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:44:b2:d8:e0:ec:ec:1f:1d:4b:e1:c4:c6:d4:
cd:52:f2:2c:cf:45:8d:df:10:75:2b:16:7e:35:9e:
a0:6c:95:ba:cd:49:80:4c:54:4f:3e:13:7f:e5:fa:
a9:35:ce:3b:86:28:fd:c7:1d:d6:58:40:9a:04:93:
67:be:af:f5:83:2f:18:51:c6:ba:12:68:cd:e1:24:
57:68:6c:90:ee:23:70:ef:ca:e7:7f:8b:22:d1:96:
29:08:01:89:ae:37:e8:da:01:fa:83:97:ce:b3:a3:
3e:32:15:39:66:cd:51:0c:02:d0:7d:24:07:d6:60:
bc:61:6d:27:21:f6:e4:9a:03:e5:cb:a3:fe:be:b6:
7d:fa:30:36:37:bd:6d:16:48:47:62:b9:8a:8d:41:
98:22:e6:9e:42:cb:b2:17:9d:a0:97:21:6e:89:34:
49:71:71:a4:fd:f2:0a:d9:ff:38:ec:a5:26:0d:34:
0b:2c:8a:17:82:e5:79:25:41:4c:b1:5e:8f:9b:e6:
aa:d3:ff:06:4a:0e:9c:e7:54:0a:0d:6a:4b:df:4b:
47:cc:fc:e4:38:ea:59:6c:0f:a7:aa:ae:59:d7:78:
0e:41:bb:6c:d0:b2:c8:d0:73:ae:f5:e8:c9:a9:5c:
52:09:f5:f7:44:e9:12:3e:66:c3:ed:55:25:17:bd:
9c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:19:75:18:9B:E8:C1:B9:4A:BB:12:57:12:EE:C7:55:6E:37:3F:0F
X509v3 Authority Key Identifier:
keyid:74:AE:BC:15:4A:56:C8:30:25:CB:D8:64:1A:9A:C3:15:CB:55:1C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dK68FUpWyDAly9hkGprDFctVHAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/6de7a0-4073-4272-bf44-07a1d65548ba/1/dxl1GJvowblKuxJXEu7HVW43Pw8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/6de7a0-4073-4272-bf44-07a1d65548ba/1/dK68FUpWyDAly9hkGprDFctVHAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:1d80:7::/48
Signature Algorithm: sha256WithRSAEncryption
73:af:ec:93:4c:39:b0:58:2e:d4:d8:b1:83:ee:f1:e6:85:44:
d4:6d:d1:71:81:d6:bf:9b:2a:68:20:4e:e5:1a:64:6c:09:21:
0e:5d:e7:36:18:82:e7:9d:2c:59:aa:42:bd:bf:67:ff:d2:98:
c2:3d:9b:9f:99:78:7d:d7:af:b7:76:34:83:66:b4:ef:6f:03:
53:df:75:bb:79:6f:32:79:9c:3a:4c:d8:88:15:61:8e:87:6d:
3b:04:79:4c:33:a0:1e:54:88:4b:0e:ba:b5:b8:a0:7c:aa:06:
7a:93:43:8d:5d:8c:0d:5c:00:f2:1d:21:f3:12:ec:2d:5a:43:
8b:90:ca:64:b7:4a:a4:9c:63:5a:50:5e:ad:df:70:7d:71:6c:
62:ed:05:af:3d:c7:86:10:3e:43:ec:b1:e0:67:bb:e5:04:eb:
9d:6e:6d:d4:b4:66:f9:eb:4c:ab:d3:fc:51:d0:88:e1:0d:47:
32:c8:67:86:17:69:5b:92:e8:b2:9b:5d:95:f3:8e:b9:a4:9e:
ce:bd:71:4c:7e:95:c8:f3:a2:c1:e9:b6:f0:2e:a4:04:f1:ab:
db:a6:6e:49:c2:78:17:d1:f5:45:2e:07:74:cf:a7:be:88:0c:
98:c2:64:45:f3:bb:07:b2:94:63:c4:bb:46:19:4e:69:de:f7:
4a:c2:4a:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:24 2024 by rpki-client on console-ams.rpki-client.org