Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/RdnHNXJcDqqHhobEESrUqBBFPeg.roa
File: RdnHNXJcDqqHhobEESrUqBBFPeg.roa (raw, json)
Hash identifier: R6imCYrBuDZv/wcs+Bxm2eGeYpMWeiyXYpdg1zKsKhU=
Subject key identifier: 45:D9:C7:35:72:5C:0E:AA:87:86:86:C4:11:2A:D4:A8:10:45:3D:E8
Certificate issuer: /CN=6294db0b87f6aeecce7fb22fb1b1421d906a6350
Certificate serial: 0A82A174
Authority key identifier: 62:94:DB:0B:87:F6:AE:EC:CE:7F:B2:2F:B1:B1:42:1D:90:6A:63:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YpTbC4f2ruzOf7IvsbFCHZBqY1A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/RdnHNXJcDqqHhobEESrUqBBFPeg.roa
Signing time: Sat 01 Jan 2022 12:01:59 +0000
ROA not before: Sat 01 Jan 2022 12:01:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 131199
IP address blocks: 2a0c:36c1::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176333172 (0xa82a174)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6294db0b87f6aeecce7fb22fb1b1421d906a6350
Validity
Not Before: Jan 1 12:01:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=45d9c735725c0eaa878686c4112ad4a810453de8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1c:8d:45:1f:91:75:ac:04:25:91:37:fa:7a:
d4:90:a9:44:81:c3:79:4c:5f:06:42:2c:5c:e2:32:
a3:b0:e4:2a:2c:b2:1c:3a:0e:a6:3c:68:2d:c5:1b:
37:ca:f7:ba:99:c4:a8:61:0d:dc:3b:de:55:7f:d2:
79:29:9b:29:20:03:ef:58:52:3a:96:d5:ae:b3:77:
83:70:05:c9:9c:86:6e:60:8b:3e:0d:2f:5c:ba:b8:
d1:1a:da:e6:f6:12:48:a7:15:b1:23:a8:01:cb:1d:
fb:7b:38:ef:3e:42:54:d9:5e:fb:39:b7:ea:77:69:
19:f7:f9:9b:7e:ea:fb:43:64:88:a6:12:10:fa:65:
38:42:e0:76:b8:1e:05:b3:c7:aa:9e:4c:1d:32:00:
8a:14:96:59:b8:32:c7:a8:88:ff:fc:0c:f7:bf:a5:
b7:01:07:99:69:d6:95:1f:a7:af:0d:4f:54:3a:ca:
de:92:69:e9:f0:6d:19:b2:3e:a6:a9:c3:1c:74:dd:
a7:33:8e:fd:6b:cb:d1:72:99:33:9e:6c:93:49:3d:
cd:6e:bb:46:c8:ec:86:f2:62:ef:d4:a1:ce:09:22:
71:e9:1d:69:04:3d:9e:6f:2a:4c:3e:76:d1:27:a4:
0a:87:db:cf:2b:96:22:9c:84:cf:4a:93:fd:1f:22:
92:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:D9:C7:35:72:5C:0E:AA:87:86:86:C4:11:2A:D4:A8:10:45:3D:E8
X509v3 Authority Key Identifier:
keyid:62:94:DB:0B:87:F6:AE:EC:CE:7F:B2:2F:B1:B1:42:1D:90:6A:63:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YpTbC4f2ruzOf7IvsbFCHZBqY1A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/RdnHNXJcDqqHhobEESrUqBBFPeg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/YpTbC4f2ruzOf7IvsbFCHZBqY1A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:36c1::/32
Signature Algorithm: sha256WithRSAEncryption
0f:53:76:99:2d:fc:42:bf:42:cc:2f:87:78:ea:d0:d6:09:e1:
4f:69:90:69:d8:b2:fa:b5:3e:92:66:f5:c7:c5:df:03:1a:54:
07:81:93:e7:5f:34:42:7e:1c:2c:e3:0c:70:9e:20:e2:52:0e:
f3:63:14:df:ec:3b:8f:2c:80:5a:d3:9f:e3:25:f6:dd:3d:0b:
be:9f:eb:f4:26:9b:c3:e0:51:22:89:e6:43:17:b6:7f:19:37:
e1:9c:60:41:6b:e9:d1:f5:7b:f8:18:03:1c:6b:9d:2c:7b:92:
68:c2:bf:1d:0f:8f:6f:b7:0d:3e:59:64:ba:9d:b4:f2:8a:6f:
37:50:66:d6:19:fc:ee:e0:25:b9:1a:ce:7a:a7:db:d6:d5:9b:
f4:e3:73:73:f4:b6:65:f9:13:b9:d9:45:2e:42:da:ce:8f:d6:
2f:f5:ae:dd:a0:7f:d1:68:cc:4b:f9:23:e5:37:a3:90:63:16:
e9:0d:f3:a9:24:e7:08:7f:11:6d:94:8a:34:8a:df:b0:83:6d:
c8:b2:a5:d8:99:48:23:ec:5b:33:a7:bd:a9:b0:ee:51:a0:e8:
dd:dc:be:d5:b1:f3:3d:4c:c3:bd:e3:ca:7e:9b:3a:95:c2:41:
cf:12:23:42:bd:0e:0d:60:02:86:91:b7:54:33:6a:ee:a0:7a:
d1:6a:25:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:31 2024 by rpki-client on console-fra.rpki-client.org