Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/d6c15a-3dff-44d7-a538-a951f200f652/1/iv5ll2bagQHJatEUrtvyvkxvSy8.roa
File: iv5ll2bagQHJatEUrtvyvkxvSy8.roa (raw, json)
Hash identifier: K23abjkcmHw2fQl3S+LglUv6Jyv2qGVrhPxarWcZU4Q=
Subject key identifier: 8A:FE:65:97:66:DA:81:01:C9:6A:D1:14:AE:DB:F2:BE:4C:6F:4B:2F
Certificate issuer: /CN=1a29b2a45de0136feabbfae4baa70172aa86619b
Certificate serial: 06F3B163
Authority key identifier: 1A:29:B2:A4:5D:E0:13:6F:EA:BB:FA:E4:BA:A7:01:72:AA:86:61:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GimypF3gE2_qu_rkuqcBcqqGYZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/d6c15a-3dff-44d7-a538-a951f200f652/1/iv5ll2bagQHJatEUrtvyvkxvSy8.roa
Signing time: Fri 04 Feb 2022 08:34:50 +0000
ROA not before: Fri 04 Feb 2022 08:34:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49810
IP address blocks: 2001:67c:91c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116633955 (0x6f3b163)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a29b2a45de0136feabbfae4baa70172aa86619b
Validity
Not Before: Feb 4 08:34:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8afe659766da8101c96ad114aedbf2be4c6f4b2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:8d:38:3f:82:ba:41:bf:c0:ea:e6:f7:12:e8:
39:04:6f:a3:58:82:10:44:81:be:5f:3d:25:29:94:
9c:b3:b2:8c:1c:97:e7:bc:c1:c8:e3:12:81:2a:eb:
bc:79:5d:bb:e2:65:a8:7d:6c:76:f1:07:8f:0c:4a:
f9:56:36:f5:fa:f5:4f:07:99:b9:fa:a0:fc:dc:86:
c9:f4:e0:0e:6b:3c:3e:5c:39:bc:14:ff:e9:5b:6c:
b4:7f:51:6a:45:5c:3c:31:cc:4d:50:fa:cc:f6:fc:
c9:b5:36:dd:f1:90:35:b2:97:5e:dd:0e:95:ba:a7:
db:87:26:72:36:3b:b5:21:38:b5:83:47:ae:fe:e5:
47:9a:65:a3:c5:d5:d0:74:b0:13:7a:a1:37:75:c1:
78:93:b4:f2:45:be:c9:9f:f8:b0:fe:d3:82:7d:e3:
8d:d3:89:2a:6b:7b:68:4f:19:7a:e5:da:a5:c0:fb:
cf:28:e4:f1:ab:24:41:b7:bd:ea:85:11:c6:0e:5b:
65:a6:3e:5c:25:85:3d:16:7b:f1:84:2e:d7:8e:ec:
2a:26:11:33:b5:f2:9a:12:88:d0:8b:bf:80:5d:68:
6f:81:46:56:a5:a7:b8:91:23:64:bb:ee:42:8a:ec:
58:21:26:39:97:4c:66:35:b3:91:8b:5d:aa:f2:b1:
75:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:FE:65:97:66:DA:81:01:C9:6A:D1:14:AE:DB:F2:BE:4C:6F:4B:2F
X509v3 Authority Key Identifier:
keyid:1A:29:B2:A4:5D:E0:13:6F:EA:BB:FA:E4:BA:A7:01:72:AA:86:61:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GimypF3gE2_qu_rkuqcBcqqGYZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d6c15a-3dff-44d7-a538-a951f200f652/1/iv5ll2bagQHJatEUrtvyvkxvSy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d6c15a-3dff-44d7-a538-a951f200f652/1/GimypF3gE2_qu_rkuqcBcqqGYZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:91c::/48
Signature Algorithm: sha256WithRSAEncryption
28:95:2f:8a:2a:a0:65:eb:dc:cc:ca:ba:66:0d:15:8a:b8:cf:
8e:6e:60:f2:f2:96:89:6d:86:1c:2c:dd:5d:da:ef:ea:94:91:
16:43:e0:46:40:88:86:ad:5e:c8:10:b9:eb:ae:22:4d:65:7c:
03:f3:bb:ac:23:6a:69:4c:2f:89:90:5a:0f:34:4c:09:17:ee:
cb:a0:05:a3:29:f7:07:a0:56:25:02:9f:8c:49:1f:0b:cd:49:
12:4b:a4:80:c3:8a:fd:89:b3:52:77:1f:73:e0:f8:4b:2e:96:
68:57:c9:a2:0c:18:3f:ba:09:9b:a7:45:38:e2:f6:7f:34:85:
98:2e:5c:c9:7b:86:34:96:5a:23:5a:a5:04:9a:e7:b8:c1:9b:
39:26:45:63:7a:71:52:b3:b8:3d:bc:c8:ca:15:e6:4a:6b:fc:
39:fa:ef:28:3f:7f:41:1f:a0:dc:ac:0d:f5:6d:68:eb:66:e2:
5b:79:29:67:5c:c1:4d:9e:f6:8b:74:d5:ff:e4:53:a2:a4:2c:
1f:21:01:cc:aa:ad:54:5e:cd:40:4b:81:db:09:cb:da:7d:ef:
3a:06:14:c0:a8:43:45:c5:31:4b:9a:69:7a:44:5f:42:68:d8:
9a:7e:da:64:c5:87:18:90:b8:c3:59:45:73:56:09:34:b7:73:
cf:93:89:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:43 2024 by rpki-client on console-fra.rpki-client.org