Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/e52b30-cd47-4c27-b6fc-d097cd2c7d82/1/Ls69MIx2a-5sdawFXO7yeCpiOxM.roa
File: Ls69MIx2a-5sdawFXO7yeCpiOxM.roa (raw, json)
Hash identifier: Qfky9YTMeDNnE5cU7MmIFIeA8ANTwlO26hAbG+PFsP8=
Subject key identifier: 2E:CE:BD:30:8C:76:6B:EE:6C:75:AC:05:5C:EE:F2:78:2A:62:3B:13
Certificate issuer: /CN=88f6580a229ccfd5369e19e252adcb728cdacd39
Certificate serial: 03106EB4
Authority key identifier: 88:F6:58:0A:22:9C:CF:D5:36:9E:19:E2:52:AD:CB:72:8C:DA:CD:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPZYCiKcz9U2nhniUq3LcozazTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/e52b30-cd47-4c27-b6fc-d097cd2c7d82/1/Ls69MIx2a-5sdawFXO7yeCpiOxM.roa
Signing time: Sat 01 Jan 2022 12:57:10 +0000
ROA not before: Sat 01 Jan 2022 12:57:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400061
IP address blocks: 2a10:e580:6969::/48 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51408564 (0x3106eb4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88f6580a229ccfd5369e19e252adcb728cdacd39
Validity
Not Before: Jan 1 12:57:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ecebd308c766bee6c75ac055ceef2782a623b13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f5:ea:39:05:1a:98:8c:cb:47:a7:50:3c:1f:
52:2d:c3:32:9a:e5:19:c6:5b:b8:aa:21:ae:28:57:
a9:b2:9f:12:13:6b:7c:a1:1c:06:82:97:c9:92:ba:
f9:15:35:3e:e2:3f:64:d1:43:81:2b:b0:02:99:33:
fa:ab:ab:c2:a7:01:6a:16:c1:a9:63:3d:26:d5:7e:
c5:72:73:7d:81:2e:6d:da:1d:22:eb:36:df:13:2e:
e5:67:5f:5e:2e:aa:6a:cf:3c:bf:45:bb:81:94:17:
fb:32:dc:b4:ff:27:2e:1c:82:ea:46:6c:cb:cb:06:
c5:18:27:84:46:23:2e:e2:dd:96:d3:2b:d9:9c:54:
58:c1:ad:eb:3c:aa:34:cd:3c:14:b9:15:58:d4:25:
23:40:62:ac:53:34:b9:19:0c:17:62:a7:8d:f6:31:
82:e4:96:81:55:ad:43:45:b8:dc:03:21:e9:c2:5b:
f4:d1:55:02:6c:c9:ff:36:76:df:41:2b:a7:31:7b:
da:c3:54:d7:40:20:ba:d1:24:a1:30:2d:fe:b5:b7:
1d:78:05:6f:78:00:1e:8e:6e:1f:de:a9:31:af:28:
aa:c1:96:94:1e:3c:9a:da:f6:c8:94:c7:99:7d:30:
47:6d:83:0d:39:d6:c0:9c:36:d2:a4:5f:a8:94:30:
d9:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:CE:BD:30:8C:76:6B:EE:6C:75:AC:05:5C:EE:F2:78:2A:62:3B:13
X509v3 Authority Key Identifier:
keyid:88:F6:58:0A:22:9C:CF:D5:36:9E:19:E2:52:AD:CB:72:8C:DA:CD:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPZYCiKcz9U2nhniUq3LcozazTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/e52b30-cd47-4c27-b6fc-d097cd2c7d82/1/Ls69MIx2a-5sdawFXO7yeCpiOxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/e52b30-cd47-4c27-b6fc-d097cd2c7d82/1/iPZYCiKcz9U2nhniUq3LcozazTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:e580:6969::/48
Signature Algorithm: sha256WithRSAEncryption
9a:60:6d:e7:99:c1:b8:bb:5d:47:bf:9a:ab:0a:16:41:19:5f:
f8:3c:33:62:f3:b8:68:db:6b:01:85:b6:50:ff:0e:e2:07:fd:
83:ae:0c:17:c5:21:1e:6c:8d:cf:48:3b:d3:56:c4:da:33:1a:
66:2a:a1:67:85:4d:82:17:62:2b:3a:1e:59:87:48:49:72:83:
53:df:dd:3c:97:a5:be:87:32:b6:64:90:bb:50:7c:c8:97:2c:
15:b8:18:a2:55:cb:15:b2:88:94:4e:b1:b0:10:e1:20:04:b9:
01:f1:49:75:ad:97:c9:5a:1c:d1:ec:1a:05:78:a4:db:56:b6:
bf:86:f2:68:8d:f6:11:3b:a7:15:17:65:ee:78:0a:19:60:67:
3a:a5:ce:29:82:71:5d:27:46:13:10:bb:0d:a9:36:0c:d9:2b:
2c:69:17:44:05:3d:53:9c:ee:19:06:f3:58:16:79:c6:ad:e6:
42:65:be:63:33:39:3d:9a:0f:2a:3c:12:ec:66:93:b2:29:4b:
d9:cf:db:c5:8b:2a:39:86:a1:0a:4f:16:31:67:06:cc:8b:e0:
f9:c9:ba:4d:98:67:95:7a:4d:0e:70:d0:d9:22:9b:1b:fc:82:
3c:1d:08:a7:e8:f1:cf:a0:0b:d3:25:ce:42:8d:3a:72:60:33:
5b:ea:0d:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:26 2023 by rpki-client on console-ams.rpki-client.org