Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/xlEPAfPSGjVF-8INV1_Oho8Ze6E.roa
File: xlEPAfPSGjVF-8INV1_Oho8Ze6E.roa (raw, json)
Hash identifier: KSCTmgaiXzO2PcviE9N0GFw2ksXzC3dQn4rNx1PxYoU=
Subject key identifier: C6:51:0F:01:F3:D2:1A:35:45:FB:C2:0D:57:5F:CE:86:8F:19:7B:A1
Certificate issuer: /CN=80a9fff63a3477957ff75ccdc003dab68cf9d155
Certificate serial: 0182E8D8EA715353280AF8CD278C51C11F8A
Authority key identifier: 80:A9:FF:F6:3A:34:77:95:7F:F7:5C:CD:C0:03:DA:B6:8C:F9:D1:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKn_9jo0d5V_91zNwAPatoz50VU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/xlEPAfPSGjVF-8INV1_Oho8Ze6E.roa
Signing time: Mon 29 Aug 2022 09:05:05 +0000
ROA not before: Mon 29 Aug 2022 09:05:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16276
IP address blocks: 135.125.0.0/17 maxlen: 17
135.125.128.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:e8:d8:ea:71:53:53:28:0a:f8:cd:27:8c:51:c1:1f:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a9fff63a3477957ff75ccdc003dab68cf9d155
Validity
Not Before: Aug 29 09:05:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c6510f01f3d21a3545fbc20d575fce868f197ba1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:b0:1f:f2:37:24:9c:b6:69:5a:7f:2a:29:fb:
e8:8d:bf:1d:79:58:b4:70:20:aa:88:66:66:7a:e2:
37:32:4b:5f:03:8d:b8:fa:d7:30:10:bd:36:12:6a:
e5:1d:6e:9d:f1:41:82:fb:06:59:90:66:ca:3e:30:
25:ff:4d:bf:47:65:0f:50:cc:6c:be:5f:52:ab:70:
84:23:c2:73:8b:97:7f:24:3a:b9:32:0e:fb:25:45:
dc:d9:e2:a7:21:7b:e1:77:22:75:f9:e3:86:52:ae:
33:18:15:ed:d9:31:48:f1:b2:ee:0d:c4:e6:e7:05:
10:be:00:19:2f:3d:fe:4c:51:c2:5f:e4:fb:ed:56:
86:a3:8c:af:b6:d3:e2:6c:d2:d2:6d:01:9c:75:aa:
84:04:ae:ea:ac:a9:09:2d:6a:4f:a3:6e:21:11:91:
d4:10:90:c8:21:e9:0c:c8:2b:05:26:48:86:c9:e5:
e2:05:c7:00:32:8f:87:85:b9:b9:5c:ce:8b:8c:8c:
c4:75:54:bb:2e:3e:8f:fb:fc:47:93:5e:12:b0:02:
61:61:d1:9a:cb:45:86:24:31:55:14:72:16:37:65:
a2:7f:cf:92:1e:5b:c3:a2:eb:40:73:56:35:24:b3:
ab:e3:82:0a:cc:d7:66:3f:66:55:82:ce:75:fe:e3:
2e:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:51:0F:01:F3:D2:1A:35:45:FB:C2:0D:57:5F:CE:86:8F:19:7B:A1
X509v3 Authority Key Identifier:
keyid:80:A9:FF:F6:3A:34:77:95:7F:F7:5C:CD:C0:03:DA:B6:8C:F9:D1:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKn_9jo0d5V_91zNwAPatoz50VU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/xlEPAfPSGjVF-8INV1_Oho8Ze6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/gKn_9jo0d5V_91zNwAPatoz50VU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
135.125.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8f:78:3f:4e:97:63:1d:2c:54:06:05:39:8a:54:c4:38:73:75:
52:93:98:0d:18:34:1b:df:c3:6f:dd:60:e2:e7:c7:78:dd:45:
0b:e4:f4:37:99:72:65:0a:73:94:5c:c9:53:87:90:47:97:b1:
36:df:d9:14:37:15:b7:92:e1:ca:c9:06:56:ca:8c:72:fd:d4:
81:e2:74:3f:da:e5:fe:86:13:b0:2a:2c:73:17:8d:41:b1:c1:
b5:5d:8c:a3:36:f3:2b:5b:c9:65:c7:60:b2:67:e3:3a:37:2d:
44:4e:ef:fe:fb:5e:01:a4:53:cc:cd:a5:0f:1d:6d:ac:72:39:
e4:31:79:0e:ac:a9:fd:6a:6f:6b:c5:d6:c4:83:5b:37:71:60:
5a:6f:17:3e:bf:13:4f:fe:e8:db:bc:be:cf:77:84:e8:71:37:
1f:c0:7f:62:99:3c:f9:0d:77:be:f0:65:ba:39:fc:2b:4a:aa:
1e:b6:be:f9:c0:ce:67:f5:7c:fb:18:49:04:39:39:61:0c:91:
9d:4d:50:17:d9:2a:4f:3b:86:94:48:de:db:f8:4b:e2:b5:02:
be:15:d8:02:99:ce:44:1b:42:1d:c2:17:74:57:5d:c5:ed:61:
0a:96:3e:f8:59:0d:ab:56:d5:2f:fb:4e:e8:f1:0f:7c:5a:71:
81:99:d2:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:19 2024 by rpki-client on console-ams.rpki-client.org