Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/LJde4oETqHe2ZwpjNoYf6gHlZOg.roa
File: LJde4oETqHe2ZwpjNoYf6gHlZOg.roa (raw, json)
Hash identifier: jPSiUE+TQK0X07YTt3QrgDfC704pupkrHLItix/uLlc=
Subject key identifier: 2C:97:5E:E2:81:13:A8:77:B6:67:0A:63:36:86:1F:EA:01:E5:64:E8
Certificate issuer: /CN=ec6b42021886d8eedbae90d9e6ab1de533c50d20
Certificate serial: 0184C2A80139EF93A73D6E0858F3EE9BE9DC
Authority key identifier: EC:6B:42:02:18:86:D8:EE:DB:AE:90:D9:E6:AB:1D:E5:33:C5:0D:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7GtCAhiG2O7brpDZ5qsd5TPFDSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/LJde4oETqHe2ZwpjNoYf6gHlZOg.roa
Signing time: Tue 29 Nov 2022 09:11:41 +0000
ROA not before: Tue 29 Nov 2022 09:11:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201566
IP address blocks: 2a0e:a6c7:1000::/42 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c2:a8:01:39:ef:93:a7:3d:6e:08:58:f3:ee:9b:e9:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec6b42021886d8eedbae90d9e6ab1de533c50d20
Validity
Not Before: Nov 29 09:11:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c975ee28113a877b6670a6336861fea01e564e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:4e:31:ac:26:f6:91:b2:63:f8:15:e4:54:18:
36:87:3c:a4:c7:31:82:f4:16:dc:05:00:cf:29:44:
5e:d1:77:f6:fc:d9:31:37:09:7a:50:dd:50:ab:73:
63:ad:63:07:58:3e:fc:50:d9:c8:f7:85:2a:2a:61:
47:f8:25:92:83:62:08:9a:ae:e6:35:b3:de:24:60:
87:d9:7a:6c:4b:12:d0:67:15:f1:b3:dc:a1:25:b3:
f9:dd:2d:06:6a:49:83:5b:37:17:90:4c:3b:cd:40:
82:50:28:44:f1:cb:d5:de:07:c4:53:cc:ee:32:af:
ed:f1:a0:92:df:b4:22:24:4d:a3:17:bc:8f:1e:01:
5a:8e:cf:d9:3a:35:69:97:1c:d5:15:a1:c4:35:9c:
a5:bb:8d:0d:ac:d0:17:17:94:82:e8:6e:68:be:1c:
44:27:c8:90:7f:21:05:cd:02:44:60:d4:70:61:5e:
76:57:49:22:91:99:85:5a:95:34:1c:39:a3:5b:3e:
e9:9f:16:31:9a:9c:90:25:9b:14:e0:40:63:08:88:
a9:d2:e7:d5:8d:da:ec:bf:a7:22:af:ff:e4:c6:bd:
26:f3:b0:a9:6d:82:11:fe:4f:d3:bd:c1:72:ef:02:
e7:81:b6:5d:f9:a7:43:95:68:dd:c6:e5:1b:fe:0b:
55:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:97:5E:E2:81:13:A8:77:B6:67:0A:63:36:86:1F:EA:01:E5:64:E8
X509v3 Authority Key Identifier:
keyid:EC:6B:42:02:18:86:D8:EE:DB:AE:90:D9:E6:AB:1D:E5:33:C5:0D:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7GtCAhiG2O7brpDZ5qsd5TPFDSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/LJde4oETqHe2ZwpjNoYf6gHlZOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/7GtCAhiG2O7brpDZ5qsd5TPFDSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:a6c7:1000::/42
Signature Algorithm: sha256WithRSAEncryption
c6:3e:e3:ac:f7:bd:14:09:b2:04:35:04:70:89:a8:c0:73:2e:
4a:6a:10:7b:9a:e5:db:00:46:d6:d6:cc:94:8f:1f:e6:ae:65:
10:e4:69:74:c0:1b:29:ad:90:b3:c0:2e:1b:96:1a:78:3a:f7:
8d:0d:9f:70:3b:e6:90:0c:27:09:06:6a:2d:f9:60:80:d5:81:
f7:4d:26:95:45:a0:06:4d:62:3e:09:49:c5:94:62:83:eb:9f:
58:f7:e1:69:c5:64:b1:b6:49:34:2e:7d:69:d0:26:42:d7:80:
92:52:73:28:37:3f:c4:0d:b9:9e:fc:0b:73:e1:fa:5c:4b:19:
ea:0b:c4:fe:9e:52:a7:7b:54:e1:76:82:53:80:a1:5c:95:3e:
ca:4d:ec:51:0b:a0:84:77:07:59:5e:0f:a0:ab:cc:3e:c5:b4:
44:1e:9d:37:f7:4a:54:50:f9:d2:7f:bd:76:a3:b9:23:14:8e:
87:52:54:03:ac:ec:f9:b9:3f:a0:b6:19:73:a2:67:bb:64:81:
7b:a7:92:e8:2d:cc:99:14:36:c6:33:aa:6f:50:0e:ad:ec:d2:
c9:30:a2:7c:a6:36:d3:3f:78:e5:a9:7f:ee:31:3b:39:2b:05:
1f:54:e0:4c:b9:03:ad:2a:4f:3a:03:cb:f9:8f:da:6b:d2:42:
8f:97:76:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:21 2024 by rpki-client on console-ams.rpki-client.org