Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/5e6720-0f51-4014-ba1f-bda0bb885544/1/2X5Qk7B9jXlodUWxfVrWZwp6e7I.roa
File: 2X5Qk7B9jXlodUWxfVrWZwp6e7I.roa (raw, json)
Hash identifier: zlkGFjp2EzSkY4nkxhtUyBvyGa3ysZ5YAW5u7BeRbes=
Subject key identifier: D9:7E:50:93:B0:7D:8D:79:68:75:45:B1:7D:5A:D6:67:0A:7A:7B:B2
Certificate issuer: /CN=56bfb0ccb5d9bcb3974ab939e20c895d21f46c71
Certificate serial: 05CC19AD
Authority key identifier: 56:BF:B0:CC:B5:D9:BC:B3:97:4A:B9:39:E2:0C:89:5D:21:F4:6C:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vr-wzLXZvLOXSrk54gyJXSH0bHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/5e6720-0f51-4014-ba1f-bda0bb885544/1/2X5Qk7B9jXlodUWxfVrWZwp6e7I.roa
Signing time: Sat 01 Jan 2022 11:00:14 +0000
ROA not before: Sat 01 Jan 2022 11:00:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204671
IP address blocks: 2001:678:5e0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97261997 (0x5cc19ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56bfb0ccb5d9bcb3974ab939e20c895d21f46c71
Validity
Not Before: Jan 1 11:00:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d97e5093b07d8d79687545b17d5ad6670a7a7bb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:33:78:8b:07:1d:11:18:81:b1:5e:51:90:3d:
e3:65:b1:bd:89:2b:be:be:b8:38:9f:fa:c0:07:47:
0c:26:e4:b3:0e:87:c9:bd:5f:fa:c1:3b:df:6b:e6:
c2:5d:a2:e6:3f:34:83:af:15:04:59:8f:e9:0d:16:
60:11:a2:eb:b3:fa:23:a2:15:45:c5:a9:dc:63:c1:
54:fb:57:c6:32:a1:8d:62:92:a3:02:ec:15:53:5c:
55:aa:96:83:91:58:81:9f:66:6e:02:fa:7c:27:ad:
8e:60:19:e5:d8:65:be:5d:ab:ec:01:21:f2:91:8c:
57:71:e3:25:18:d7:9d:bc:d9:7e:5f:66:e1:da:97:
a7:ba:ce:37:7b:4f:8d:f2:3c:1f:66:03:1c:f9:72:
89:ab:18:54:f3:35:b1:20:a2:4c:ea:35:e4:2a:10:
eb:44:5e:59:1c:eb:c4:b7:0e:d3:39:15:92:af:34:
97:0f:e4:9e:4d:b4:4b:94:db:a6:3c:39:40:69:d6:
d5:00:88:e7:3e:67:b2:43:4b:50:b3:ab:d8:97:6e:
02:ad:d2:8b:f8:30:2c:f4:bb:99:75:8d:4c:40:4d:
3e:4c:4a:02:cc:be:a0:de:57:3e:66:36:d5:1b:7f:
78:63:dc:15:ce:cd:4b:bf:1f:2b:f4:f4:e5:e9:e1:
dc:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:7E:50:93:B0:7D:8D:79:68:75:45:B1:7D:5A:D6:67:0A:7A:7B:B2
X509v3 Authority Key Identifier:
keyid:56:BF:B0:CC:B5:D9:BC:B3:97:4A:B9:39:E2:0C:89:5D:21:F4:6C:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vr-wzLXZvLOXSrk54gyJXSH0bHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5e6720-0f51-4014-ba1f-bda0bb885544/1/2X5Qk7B9jXlodUWxfVrWZwp6e7I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5e6720-0f51-4014-ba1f-bda0bb885544/1/Vr-wzLXZvLOXSrk54gyJXSH0bHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:5e0::/48
Signature Algorithm: sha256WithRSAEncryption
3b:fd:4f:bc:1a:03:a9:18:37:2d:30:d6:35:e0:28:37:a5:cf:
00:2f:fb:e3:22:bf:94:75:93:35:cf:18:38:6e:f9:50:87:72:
a0:d3:7c:1d:fa:2f:80:e8:db:e7:55:69:57:13:ad:91:87:70:
25:e3:14:23:62:40:dc:72:4f:e5:29:09:93:4b:70:b2:27:c7:
52:bc:1d:30:67:21:4c:67:55:68:67:d1:0b:8c:d8:2a:8d:28:
c9:7f:2f:3b:45:ba:09:7a:52:c9:c2:c3:d2:35:d7:7d:4a:74:
82:0f:21:f5:af:93:0b:bc:b9:41:4f:e5:97:9d:7b:93:62:6b:
0d:23:24:f5:25:ca:d3:45:db:93:95:fd:3b:7f:ce:5b:22:f2:
61:8e:7d:5f:a7:6d:73:6f:23:8e:15:3f:37:29:9e:ae:8c:2f:
ce:c6:ba:16:18:72:50:b9:82:01:89:20:b9:a4:86:87:4c:0f:
e0:cd:ad:23:17:47:2d:7d:b4:31:8a:5a:12:92:e2:61:d3:3e:
bf:35:98:9d:9a:bf:63:87:20:83:c8:c2:04:c1:21:a8:c0:9a:
1e:61:dd:e6:58:80:86:62:e6:dc:54:bf:a7:31:b4:14:1b:aa:
a9:c8:f7:32:21:c2:ee:bf:06:c4:8d:91:4d:94:10:fb:fb:c2:
ca:a7:1d:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:11 2024 by rpki-client on console-fra.rpki-client.org