Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/fa81f4-6600-4079-93c5-4897261ba46b/1/cnU_whTN4-YGzap02Oc47bp1AOQ.roa
File: cnU_whTN4-YGzap02Oc47bp1AOQ.roa (raw, json)
Hash identifier: m0+BGuDk3fx3+wC+2KOz7BPutBo+d1xOcKnq4xrtto4=
Subject key identifier: 72:75:3F:C2:14:CD:E3:E6:06:CD:AA:74:D8:E7:38:ED:BA:75:00:E4
Certificate issuer: /CN=9665c8110d0dd86a7ebb0938aa32e09d1db122f6
Certificate serial: 5A0D34
Authority key identifier: 96:65:C8:11:0D:0D:D8:6A:7E:BB:09:38:AA:32:E0:9D:1D:B1:22:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lmXIEQ0N2Gp-uwk4qjLgnR2xIvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/fa81f4-6600-4079-93c5-4897261ba46b/1/cnU_whTN4-YGzap02Oc47bp1AOQ.roa
Signing time: Sat 01 Jan 2022 00:56:17 +0000
ROA not before: Sat 01 Jan 2022 00:56:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210466
IP address blocks: 2001:67c:2b64::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5901620 (0x5a0d34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9665c8110d0dd86a7ebb0938aa32e09d1db122f6
Validity
Not Before: Jan 1 00:56:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72753fc214cde3e606cdaa74d8e738edba7500e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e7:20:9a:55:c9:a5:c4:21:d0:49:98:2c:89:
eb:bc:b6:91:fc:cc:7a:ae:fd:db:3c:2c:3b:6f:8d:
9c:e3:ec:6b:bd:61:ee:4c:af:e2:14:f0:11:b0:a2:
eb:9d:8e:8c:48:8d:11:e2:38:67:1d:33:d1:b2:1c:
23:c9:20:7d:bc:53:03:b3:2e:da:34:8d:4f:1d:53:
44:51:9d:75:d3:58:2c:f3:7d:6d:9c:e5:3d:1d:24:
50:a5:40:5d:0c:73:a7:fe:a6:3b:40:ba:4c:76:42:
e4:0e:d8:d0:73:f7:88:8e:40:ed:ca:9d:2f:ce:ee:
8d:64:7e:c6:9d:ee:07:1c:4d:d3:5f:df:1c:56:e6:
35:1c:28:26:db:dd:ab:1c:ad:bb:ae:eb:91:6d:de:
a0:dc:7d:f8:70:ac:e7:7d:e4:11:43:fc:82:fb:a4:
54:ce:36:4f:6f:d5:a3:44:49:df:40:5b:ca:fc:69:
43:1f:81:3f:c7:0b:ec:27:61:2f:70:a5:fb:b9:46:
fe:d0:a9:3f:c4:bf:9f:3e:1e:4a:f3:a8:bf:c6:d7:
dc:06:ff:98:44:1a:b8:2d:c5:ed:d6:bb:a7:f0:e2:
ec:fc:92:f0:03:10:f5:fb:00:76:cc:c9:e9:2a:2d:
f6:8a:0b:dd:3f:72:d2:07:92:c4:b8:dd:cd:a1:24:
b7:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:75:3F:C2:14:CD:E3:E6:06:CD:AA:74:D8:E7:38:ED:BA:75:00:E4
X509v3 Authority Key Identifier:
keyid:96:65:C8:11:0D:0D:D8:6A:7E:BB:09:38:AA:32:E0:9D:1D:B1:22:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lmXIEQ0N2Gp-uwk4qjLgnR2xIvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/fa81f4-6600-4079-93c5-4897261ba46b/1/cnU_whTN4-YGzap02Oc47bp1AOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/fa81f4-6600-4079-93c5-4897261ba46b/1/lmXIEQ0N2Gp-uwk4qjLgnR2xIvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2b64::/48
Signature Algorithm: sha256WithRSAEncryption
40:2f:4d:4d:e4:cf:dc:fd:ee:5f:6e:6b:1c:81:37:86:00:b6:
3a:68:32:2c:6a:dd:4f:72:04:03:d7:da:9d:17:d9:ba:95:b4:
ea:86:7e:5a:44:95:fe:03:fc:87:ae:88:78:10:3f:d0:ca:48:
6e:cc:14:d9:1b:d5:b9:97:69:05:60:6c:3a:e2:6c:84:2e:ed:
5c:66:fe:d1:ba:c2:ec:02:b0:0a:c2:58:64:31:02:45:14:d7:
5b:73:53:ef:eb:5d:35:11:77:07:c6:2d:4f:d9:32:2e:4d:c3:
c4:91:1c:83:07:f6:d9:94:b3:3b:bd:5a:22:f1:66:34:c3:df:
a0:30:ca:b7:10:0d:6d:97:d8:ad:76:1d:8c:ce:2c:37:1b:43:
dd:17:f9:92:91:be:d3:2d:43:ec:1b:66:99:5a:5e:38:70:6e:
f9:54:f9:30:1a:1f:a5:1c:19:37:63:e3:35:64:36:e9:10:ca:
ec:ec:d8:b8:a8:9c:e1:fe:86:ca:67:8a:a3:b9:80:44:c1:4d:
00:81:9c:fa:71:42:01:52:e9:9e:9d:18:03:a1:b9:39:90:4e:
aa:26:9d:94:f8:91:fa:2a:9f:0b:fb:6f:45:55:c5:a9:c3:b3:
74:3c:f2:9f:bf:68:06:93:4f:5f:56:d5:4e:3d:96:ec:95:73:
9b:09:57:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:19 2024 by rpki-client on console-fra.rpki-client.org