Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/x3eFVQOskZa-6Oo38Zwv8BS21wU.roa
File: x3eFVQOskZa-6Oo38Zwv8BS21wU.roa (raw, json)
Hash identifier: XZnkS198zqf71+C1qxcSeDOv2XcGakFYn2D84oIiVuA=
Subject key identifier: C7:77:85:55:03:AC:91:96:BE:E8:EA:37:F1:9C:2F:F0:14:B6:D7:05
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 0983E734
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/x3eFVQOskZa-6Oo38Zwv8BS21wU.roa
Signing time: Sat 14 May 2022 06:08:40 +0000
ROA not before: Sat 14 May 2022 06:08:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47692
IP address blocks: 2a06:c3c0:5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159639348 (0x983e734)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: May 14 06:08:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c777855503ac9196bee8ea37f19c2ff014b6d705
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f8:63:19:57:9d:08:79:aa:1d:9d:33:55:eb:
07:ff:f4:ee:50:94:7f:1b:0d:d2:a3:6b:dd:28:c1:
1b:41:15:d7:f8:79:2c:c5:35:cd:b3:5f:98:c9:ed:
c4:4f:e1:5c:45:0b:c7:3b:0e:2c:f1:69:9d:79:7c:
5b:33:b8:a8:21:29:fb:cf:47:96:3f:f3:51:a5:ac:
31:b5:c0:4b:97:03:03:9b:12:31:5a:64:66:5b:90:
7e:3a:96:02:ac:f8:d5:50:ad:a3:55:a0:09:b1:43:
ee:60:c0:9f:7a:b1:ed:74:c8:fe:ae:a0:1f:9e:b9:
54:9b:9e:f8:05:6e:01:d2:3e:c4:bd:15:e2:af:7e:
31:ab:af:23:55:57:4e:52:21:ba:dc:53:85:cb:3b:
65:c6:b8:f8:89:c0:86:4e:de:1d:1d:ee:7f:61:d6:
7b:17:0b:99:95:57:41:2c:92:e9:68:fc:d4:87:6c:
66:cc:d5:2a:c4:38:1a:5d:d3:20:8c:25:06:c6:6a:
3c:3f:eb:b4:53:3e:a9:45:12:f7:c1:d1:f4:a0:54:
f5:ec:23:9b:f0:8a:ec:30:bf:55:58:f0:a9:54:3b:
bd:f2:16:ec:ac:30:51:ec:e9:ad:c5:3b:1a:7c:84:
2d:db:8f:4d:22:35:79:96:f1:24:30:41:2e:61:df:
16:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:77:85:55:03:AC:91:96:BE:E8:EA:37:F1:9C:2F:F0:14:B6:D7:05
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/x3eFVQOskZa-6Oo38Zwv8BS21wU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:c3c0:5::/48
Signature Algorithm: sha256WithRSAEncryption
0a:27:aa:86:dc:6c:a2:ed:f2:a9:62:7f:29:59:3f:13:71:0a:
56:30:cb:86:1e:84:10:a6:70:72:11:29:07:c8:97:23:cd:55:
e4:db:87:a9:8c:b3:15:fe:6b:50:3d:de:da:a1:67:4c:e2:9a:
3c:7c:22:9f:37:8c:ef:5d:1b:6d:92:4d:4a:88:dc:86:35:85:
8d:96:c8:02:64:7e:49:e8:c0:ee:50:ad:7d:e5:7d:2a:01:8a:
1b:84:4c:5b:30:a0:95:2c:65:78:83:53:26:c4:63:a7:15:ca:
39:69:0e:47:eb:28:19:d7:eb:8a:ab:67:cd:ca:22:af:08:b0:
d7:f6:cb:f2:af:b8:63:e0:6b:1d:7c:94:5f:e8:57:72:40:5c:
82:f8:eb:c8:7c:ec:d3:e3:c9:06:62:f2:59:36:0e:23:03:6d:
2f:64:b6:ed:60:8d:f3:69:66:70:15:3f:47:2b:6d:db:24:3a:
a3:92:ab:37:a0:01:e7:ab:81:88:88:f0:dc:c5:40:41:f6:ab:
a5:f4:9f:2c:57:43:68:b4:bb:b7:e8:84:25:fd:02:46:e0:d2:
83:bd:79:9b:b5:5e:f9:fb:8a:b4:63:46:ea:c6:20:d3:7e:96:
16:cb:4d:09:4d:46:a3:5f:9e:98:cf:e5:da:8f:05:94:ff:55:
c4:01:59:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:02 2023 by rpki-client on console-fra.rpki-client.org