Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/51e3a5-31db-4bdd-b0cd-828022043ea3/1/DHFFy5YbEMfUhPaBt6wmlNxgwYw.roa
File: DHFFy5YbEMfUhPaBt6wmlNxgwYw.roa (raw, json)
Hash identifier: GfyZ4M0ZqMbIP6ej2kedFaI4JgI918v0JCCcTpZ3cNg=
Subject key identifier: 0C:71:45:CB:96:1B:10:C7:D4:84:F6:81:B7:AC:26:94:DC:60:C1:8C
Certificate issuer: /CN=e5f4f24b40fda9b9528e4a8edcad61b841df6c18
Certificate serial: 04400615
Authority key identifier: E5:F4:F2:4B:40:FD:A9:B9:52:8E:4A:8E:DC:AD:61:B8:41:DF:6C:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5fTyS0D9qblSjkqO3K1huEHfbBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/51e3a5-31db-4bdd-b0cd-828022043ea3/1/DHFFy5YbEMfUhPaBt6wmlNxgwYw.roa
Signing time: Sat 01 Jan 2022 13:01:35 +0000
ROA not before: Sat 01 Jan 2022 13:01:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2200
IP address blocks: 2a0c:1100::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71304725 (0x4400615)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5f4f24b40fda9b9528e4a8edcad61b841df6c18
Validity
Not Before: Jan 1 13:01:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c7145cb961b10c7d484f681b7ac2694dc60c18c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:b8:9d:6e:8f:ed:aa:ae:83:0c:b8:07:6f:c5:
14:13:c3:9c:b4:62:4c:49:75:2a:f1:26:f1:be:2e:
be:5a:37:f1:43:aa:c6:79:38:4f:e3:6e:72:1c:5e:
ef:bd:85:a3:58:89:68:8b:a6:d7:ed:cf:26:9c:52:
17:f1:8f:96:84:54:dd:01:10:26:8a:2c:89:e8:4e:
12:4e:d7:df:a4:10:c4:79:53:cc:4e:da:fa:44:5c:
9a:ca:9c:02:45:73:bc:7f:55:e9:a0:4d:d4:49:b6:
04:82:ac:bf:30:1d:dc:e0:3e:67:f9:d3:c9:c4:f3:
25:ef:c1:d6:91:0c:70:f2:2a:e2:f8:7c:0b:0b:c6:
db:34:e3:b6:06:7e:08:a7:40:ff:ff:b1:7b:fc:d4:
7e:a0:d6:0b:d5:bd:3b:95:28:fc:3b:3a:9c:84:22:
a6:de:ca:bb:40:e6:e0:f7:8f:8b:b9:6a:b7:bc:64:
e5:79:cb:8e:ea:8e:c5:16:7b:ee:bc:b9:39:cf:98:
88:7d:42:22:83:8d:00:39:a9:dd:5c:b8:94:aa:d8:
82:b3:28:3d:0c:10:93:f7:ec:ad:9d:0f:13:4c:d3:
1b:7a:20:f4:af:23:75:d6:f5:ff:ac:32:c3:30:ae:
d0:a5:9b:33:a9:19:b1:e0:01:0c:08:d3:52:42:9b:
a7:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:71:45:CB:96:1B:10:C7:D4:84:F6:81:B7:AC:26:94:DC:60:C1:8C
X509v3 Authority Key Identifier:
keyid:E5:F4:F2:4B:40:FD:A9:B9:52:8E:4A:8E:DC:AD:61:B8:41:DF:6C:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5fTyS0D9qblSjkqO3K1huEHfbBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/51e3a5-31db-4bdd-b0cd-828022043ea3/1/DHFFy5YbEMfUhPaBt6wmlNxgwYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/51e3a5-31db-4bdd-b0cd-828022043ea3/1/5fTyS0D9qblSjkqO3K1huEHfbBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:1100::/32
Signature Algorithm: sha256WithRSAEncryption
85:5b:0a:50:61:28:87:cc:46:f7:a5:bd:14:a2:d3:f1:58:3a:
9c:63:d5:c5:8b:6c:51:55:28:4d:c7:1f:80:be:58:39:18:cf:
91:cd:10:d2:9a:44:5b:fa:75:84:8a:f1:69:11:b7:c7:e9:d1:
a9:05:fb:15:65:5e:8f:61:2c:e0:7f:3b:68:f8:aa:2c:84:6e:
44:5e:b5:07:58:92:f2:a7:6e:a4:fe:46:ae:ff:a4:f6:f9:02:
fd:69:19:35:37:e0:d2:5f:13:2c:eb:45:af:fe:6c:98:4e:dd:
2e:86:9f:6b:a6:0d:97:80:33:f8:00:56:76:25:fc:99:6f:47:
fc:1d:9e:51:43:c1:6d:4a:1e:9c:c1:f3:d6:2e:9e:8a:76:5a:
9e:87:55:4b:16:3e:b5:16:32:99:82:9e:07:f5:73:b6:0e:74:
8c:16:74:fc:5f:f9:3c:d0:f0:a8:a8:70:0c:94:1c:cd:6a:f6:
5c:63:db:f8:b2:e6:c9:07:e5:9c:46:2a:cb:fd:ef:a5:bd:85:
96:cc:f3:fe:07:24:e9:72:5d:8e:cd:29:35:5d:ef:82:3c:d2:
1f:ed:0f:84:4c:5a:37:78:25:75:64:89:85:8e:87:2e:e9:b1:
98:c4:66:81:e0:69:e1:ce:7c:87:5a:b1:43:84:62:ce:b0:0f:
8e:7a:01:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:30 2024 by rpki-client on console-fra.rpki-client.org