Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/c58189-d57e-415d-b977-0067bcaf3770/1/FuUPTy7cg2-qnYA9xloh7eX13GE.roa
File: FuUPTy7cg2-qnYA9xloh7eX13GE.roa (raw, json)
Hash identifier: LnmxRYDFmw6uF2aQbTK8+GT2f3Lmqr+C5kWPbyH5Z7k=
Subject key identifier: 16:E5:0F:4F:2E:DC:83:6F:AA:9D:80:3D:C6:5A:21:ED:E5:F5:DC:61
Certificate issuer: /CN=58a5ed8e3ecc92a2de8c80abe9a8195d5ff997e6
Certificate serial: 0257AE
Authority key identifier: 58:A5:ED:8E:3E:CC:92:A2:DE:8C:80:AB:E9:A8:19:5D:5F:F9:97:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKXtjj7MkqLejICr6agZXV_5l-Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/c58189-d57e-415d-b977-0067bcaf3770/1/FuUPTy7cg2-qnYA9xloh7eX13GE.roa
Signing time: Mon 14 Mar 2022 22:31:26 +0000
ROA not before: Mon 14 Mar 2022 22:31:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48063
IP address blocks: 2001:678:6ac::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153518 (0x257ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58a5ed8e3ecc92a2de8c80abe9a8195d5ff997e6
Validity
Not Before: Mar 14 22:31:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=16e50f4f2edc836faa9d803dc65a21ede5f5dc61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:70:f3:92:b6:94:0a:ce:a6:7d:bc:cc:17:91:
7a:be:74:14:ac:9f:23:18:d3:8c:83:41:3b:9a:bc:
91:60:f0:3d:0e:a3:16:f1:87:be:3e:ed:a6:bb:c8:
3c:75:a4:1f:4f:95:88:ea:eb:83:cc:d9:30:f8:e9:
32:36:52:d9:d7:a0:40:62:7c:a7:d0:a2:d8:05:9b:
c1:1c:3a:95:d9:25:d6:fc:0d:44:92:68:bb:a0:7a:
76:03:39:b3:cb:08:06:2f:02:d0:4d:51:df:5b:35:
7d:16:40:e9:39:2d:b9:73:36:b5:20:fe:38:13:e4:
e0:1a:8a:6b:db:f7:86:e9:f1:87:3c:db:08:e3:26:
e1:e9:a8:f6:fe:3f:3f:47:49:78:86:28:97:f1:20:
e5:ea:9b:42:6e:68:be:14:ca:5d:bd:ae:d5:68:18:
5d:74:4c:f9:ff:6a:b7:29:e7:a4:0b:4d:d1:71:5a:
a6:f6:da:f9:89:f1:6f:3f:4a:f7:7d:0b:b5:b7:8f:
26:b0:4c:bb:dc:d6:74:bb:73:ce:6f:de:ee:d4:1a:
5f:f4:ef:ac:fb:66:dd:78:80:b0:c9:20:cc:9c:cb:
73:32:78:44:93:cf:75:fd:ac:6c:76:19:c0:72:3f:
23:d9:08:93:33:07:f0:2b:48:24:5c:15:b9:1b:a5:
92:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:E5:0F:4F:2E:DC:83:6F:AA:9D:80:3D:C6:5A:21:ED:E5:F5:DC:61
X509v3 Authority Key Identifier:
keyid:58:A5:ED:8E:3E:CC:92:A2:DE:8C:80:AB:E9:A8:19:5D:5F:F9:97:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKXtjj7MkqLejICr6agZXV_5l-Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c58189-d57e-415d-b977-0067bcaf3770/1/FuUPTy7cg2-qnYA9xloh7eX13GE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c58189-d57e-415d-b977-0067bcaf3770/1/WKXtjj7MkqLejICr6agZXV_5l-Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:6ac::/48
Signature Algorithm: sha256WithRSAEncryption
0b:3c:1b:da:85:f4:2e:e3:2a:a8:34:96:3c:de:f9:b8:f9:91:
02:48:74:e3:be:7d:7e:fc:0a:94:b6:28:93:36:cc:6f:72:ef:
19:f7:6c:44:2c:6a:62:c8:18:c3:32:21:a3:4b:e0:01:1e:2b:
45:a5:d6:25:25:06:f5:12:03:fd:1a:6e:08:0b:b3:1b:f5:35:
59:c6:b7:86:6c:59:01:00:48:2d:1a:4f:d5:ff:bc:7b:42:90:
64:2d:3e:31:c1:93:e9:c6:24:fd:33:66:c0:2a:56:0f:41:07:
64:bc:b7:42:27:47:a4:84:dd:67:94:3b:09:0e:be:5a:cc:80:
59:8e:a4:a4:6c:41:40:a6:30:fc:14:6b:29:6b:84:7d:d4:4c:
49:15:ce:bb:d3:a7:ee:a2:ac:48:3f:4e:5b:b8:0b:53:03:35:
f7:6e:ec:d9:c5:b6:d2:68:7f:cf:70:53:98:5f:ac:4b:9c:aa:
16:b9:d1:73:50:79:96:67:63:87:fa:bd:5c:5a:94:87:5c:de:
9a:18:90:07:d2:29:2f:95:e7:4d:05:75:e2:78:82:c9:40:f8:
15:c8:d3:ba:4d:f2:58:ec:3d:1e:cb:83:d9:5a:11:af:ad:52:
8c:d2:78:ee:af:a0:28:3e:fc:c3:2e:47:47:e2:27:bb:ca:7a:
9a:25:7b:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:02 2024 by rpki-client on console-ams.rpki-client.org