Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/l4ZmL2JfBs3wk5W_Mz04NviP2aE.roa
File: l4ZmL2JfBs3wk5W_Mz04NviP2aE.roa (raw, json)
Hash identifier: XvT7TwfucdQDvz0q8OTK+PYQFpbKIhxQ9nVjCSbwYXo=
Subject key identifier: 97:86:66:2F:62:5F:06:CD:F0:93:95:BF:33:3D:38:36:F8:8F:D9:A1
Certificate issuer: /CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Certificate serial: 0185652D3D502D2EB2E7EAB4E3E2C257F443
Authority key identifier: E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/l4ZmL2JfBs3wk5W_Mz04NviP2aE.roa
Signing time: Fri 30 Dec 2022 22:35:41 +0000
ROA not before: Fri 30 Dec 2022 22:35:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204443
IP address blocks: 2a0d:2146:8440::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:65:2d:3d:50:2d:2e:b2:e7:ea:b4:e3:e2:c2:57:f4:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Validity
Not Before: Dec 30 22:35:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9786662f625f06cdf09395bf333d3836f88fd9a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ef:93:6e:61:49:35:1d:d6:39:66:63:1f:8c:
88:b2:42:25:3b:a5:6d:a5:96:f8:27:40:8d:cb:90:
fd:6d:46:90:ac:72:78:2f:af:80:47:cd:e8:67:9e:
ba:aa:ea:78:45:d8:4e:1b:dc:60:8e:30:5d:b9:03:
90:31:15:8c:96:4e:b1:a3:85:44:94:f8:92:12:f1:
5f:9c:db:c5:97:d1:9b:d7:e1:89:0e:3d:96:a9:13:
6d:99:a5:44:2c:81:0f:8f:af:77:b3:73:07:e5:30:
e0:58:91:3c:7c:08:e6:a8:c9:10:d9:49:4b:ff:39:
21:a1:90:5f:63:2f:2f:cc:3a:ac:96:35:5d:03:1c:
c0:84:cf:05:6b:10:73:07:c4:56:88:18:b7:a8:fa:
5d:77:d8:f4:2c:71:21:07:ba:42:2d:ad:e9:78:95:
ee:e0:48:11:f1:e2:bb:8f:c0:24:65:6f:8c:59:3c:
c1:da:3b:00:ef:b4:c6:2c:8b:0b:5f:72:cb:0f:e9:
1f:c6:0b:4d:6c:94:4d:ee:45:7b:f3:12:5e:be:c8:
42:8b:ee:28:ec:01:43:37:3b:bf:85:17:66:41:f6:
e8:6e:18:b0:a5:95:0d:0a:48:0b:cc:cd:d0:87:03:
04:4d:b4:3b:f8:9f:d4:4e:65:21:f4:cc:e5:04:4d:
63:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:86:66:2F:62:5F:06:CD:F0:93:95:BF:33:3D:38:36:F8:8F:D9:A1
X509v3 Authority Key Identifier:
keyid:E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/l4ZmL2JfBs3wk5W_Mz04NviP2aE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/4UrGEWFN0WXZRVcpbtftRsj8Al8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2146:8440::/44
Signature Algorithm: sha256WithRSAEncryption
03:a6:37:2f:a8:52:49:64:85:30:0d:35:45:8a:55:19:46:0a:
6a:ed:47:b1:17:05:89:e1:bd:0b:7a:72:17:46:dc:e7:5f:00:
ee:0c:98:d0:50:06:55:a0:25:52:aa:0b:ac:b4:b5:19:b6:9b:
d6:16:f3:03:53:97:71:12:88:23:80:b0:6f:42:79:70:90:a6:
bb:ab:1b:79:d7:81:10:9e:11:32:60:f8:34:99:51:a6:ce:c3:
ad:04:cc:c3:2e:73:ac:c6:44:01:e2:0d:bf:67:ad:68:12:13:
44:15:0c:6c:c4:e9:61:72:e7:26:a9:21:9f:91:10:73:e4:97:
d6:9a:84:e8:07:b1:b6:19:43:94:0c:19:8a:9e:ae:0f:ab:8c:
f0:45:59:6f:12:a5:21:7e:77:fc:ec:5d:c3:e9:a2:4c:a7:6a:
2a:59:79:7c:c6:93:e4:48:0f:77:e8:d6:c8:64:a1:19:58:95:
8a:58:d3:d0:a6:26:ae:4e:3e:2a:22:94:7b:e1:b3:d5:9c:b3:
13:44:02:78:71:3b:e9:54:a8:e5:8c:a7:ce:43:55:50:6d:73:
68:fb:84:9e:36:52:a7:07:d2:5d:54:84:c4:12:f1:35:28:b3:
b9:93:b7:0a:09:f3:22:df:2f:80:4a:fd:21:0c:18:41:aa:96:
54:b4:f7:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:59 2024 by rpki-client on console-fra.rpki-client.org