Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d8f672-539f-401d-9dc7-62799b90231b/1/vlVUGOx2K9rFk20BTcz4TOFoAxg.roa
File: vlVUGOx2K9rFk20BTcz4TOFoAxg.roa (raw, json)
Hash identifier: QDisNOjxhRPxHEXEUyh+rjNHi4VMXgMZBhTD/FYnAVQ=
Subject key identifier: BE:55:54:18:EC:76:2B:DA:C5:93:6D:01:4D:CC:F8:4C:E1:68:03:18
Certificate issuer: /CN=f648b15582d34bd5170a9dd13b81325babae5e3a
Certificate serial: 08DCD67E
Authority key identifier: F6:48:B1:55:82:D3:4B:D5:17:0A:9D:D1:3B:81:32:5B:AB:AE:5E:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9kixVYLTS9UXCp3RO4EyW6uuXjo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d8f672-539f-401d-9dc7-62799b90231b/1/vlVUGOx2K9rFk20BTcz4TOFoAxg.roa
Signing time: Sat 01 Jan 2022 11:54:12 +0000
ROA not before: Sat 01 Jan 2022 11:54:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209347
IP address blocks: 2001:678:978::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148690558 (0x8dcd67e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f648b15582d34bd5170a9dd13b81325babae5e3a
Validity
Not Before: Jan 1 11:54:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be555418ec762bdac5936d014dccf84ce1680318
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:9c:a0:35:4a:16:b9:58:73:1e:26:9f:69:3a:
22:1b:8b:34:31:20:85:dd:20:8f:67:b5:4a:8f:39:
83:e3:de:b7:5a:08:61:ef:de:de:5b:5d:bf:41:21:
f1:09:00:0b:1c:57:b4:62:e0:3f:d7:08:1e:48:79:
c9:2f:74:65:20:70:05:f9:55:7d:0d:d9:ee:02:48:
3c:52:e4:f8:48:2d:22:df:fb:b0:fd:cd:5e:61:a6:
5c:da:fc:7f:c7:ec:c2:8e:45:23:f4:0e:c7:89:1c:
27:48:4a:86:70:bd:5c:1e:2f:5a:fc:48:45:9d:09:
6d:46:e2:22:10:15:69:c1:30:d9:9e:ce:c2:bf:c2:
ec:6e:19:3d:ab:5a:6d:ef:9a:56:b3:a0:e3:1a:ed:
8e:bf:78:87:ee:64:d1:a3:8a:c4:18:89:a5:d2:61:
5b:c0:3f:46:1c:83:0e:06:a1:f1:b1:b0:1f:c2:41:
3a:33:c0:d6:c9:2a:70:a2:e4:9a:52:18:4f:96:9e:
ea:9f:8a:bf:5e:8c:5f:c4:be:c5:5a:a8:bc:60:30:
ab:ed:8c:70:45:40:7b:ba:e3:36:91:e2:ab:16:38:
ea:73:98:e8:2f:17:bc:40:2f:e6:10:7f:93:21:da:
92:2a:2f:23:4d:63:33:87:a0:da:82:7b:33:19:60:
5a:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:55:54:18:EC:76:2B:DA:C5:93:6D:01:4D:CC:F8:4C:E1:68:03:18
X509v3 Authority Key Identifier:
keyid:F6:48:B1:55:82:D3:4B:D5:17:0A:9D:D1:3B:81:32:5B:AB:AE:5E:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9kixVYLTS9UXCp3RO4EyW6uuXjo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d8f672-539f-401d-9dc7-62799b90231b/1/vlVUGOx2K9rFk20BTcz4TOFoAxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d8f672-539f-401d-9dc7-62799b90231b/1/9kixVYLTS9UXCp3RO4EyW6uuXjo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:978::/48
Signature Algorithm: sha256WithRSAEncryption
60:d8:f3:14:43:db:2e:e2:0d:f7:d0:88:8e:52:a6:88:d2:06:
3e:9b:65:1d:cb:e5:87:34:75:e5:1d:ee:98:c3:4a:8c:f6:51:
c8:7e:53:ca:49:4f:cf:d1:c3:0a:77:96:5d:38:fc:09:4b:14:
97:b2:55:0a:28:e6:f3:8a:d1:dd:10:ba:42:0e:eb:6d:13:1c:
c1:dc:5d:88:10:fc:54:e7:4f:d8:fd:23:2f:7a:2e:ec:c4:d4:
45:46:1f:37:eb:e7:9e:99:16:c1:30:29:7c:21:04:d2:d8:5f:
3c:aa:b2:07:cc:1f:74:13:42:29:31:8b:a1:77:d6:52:4d:8f:
e3:e8:09:8c:3f:5e:80:94:19:12:ac:77:06:cd:7c:aa:ce:1c:
c5:eb:52:ee:77:6d:d0:5d:8c:45:04:5e:d0:8e:e1:3d:38:cd:
af:ff:25:1a:19:b1:2a:66:46:d3:18:eb:dc:66:bd:d6:f2:a9:
11:34:0d:13:8a:35:dc:69:42:ae:17:63:2d:07:fc:4d:51:c8:
db:88:00:a2:38:b4:39:dd:b9:7f:5e:f6:c5:b9:b4:1c:b2:2d:
75:55:65:37:20:ea:c8:60:a1:de:ce:27:32:74:9a:ee:13:83:
be:e3:2b:f7:f1:27:a1:ce:e6:af:95:52:44:38:ac:6b:a8:0e:
79:35:36:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:02 2024 by rpki-client on console-fra.rpki-client.org