Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/cd2f41-59e0-4b8b-8206-bed55c47a578/1/8pdh6LWW1DxKd8RCv6ZJdUOzyZ4.roa
File: 8pdh6LWW1DxKd8RCv6ZJdUOzyZ4.roa (raw, json)
Hash identifier: GPmfPfzs5Ew6Zr0aA4mPFIGxgNqqQEKNSQQahd04vmc=
Subject key identifier: F2:97:61:E8:B5:96:D4:3C:4A:77:C4:42:BF:A6:49:75:43:B3:C9:9E
Certificate issuer: /CN=54718af6a36f66a91939364aafc86445ab8a6e0e
Certificate serial: 0F5035B0
Authority key identifier: 54:71:8A:F6:A3:6F:66:A9:19:39:36:4A:AF:C8:64:45:AB:8A:6E:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VHGK9qNvZqkZOTZKr8hkRauKbg4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/cd2f41-59e0-4b8b-8206-bed55c47a578/1/8pdh6LWW1DxKd8RCv6ZJdUOzyZ4.roa
Signing time: Mon 03 Jan 2022 07:57:58 +0000
ROA not before: Mon 03 Jan 2022 07:57:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57763
IP address blocks: 2001:67c:2c2c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 256914864 (0xf5035b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54718af6a36f66a91939364aafc86445ab8a6e0e
Validity
Not Before: Jan 3 07:57:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f29761e8b596d43c4a77c442bfa6497543b3c99e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:7d:5e:ab:dc:8c:60:8b:3e:44:87:59:96:5d:
57:0c:7a:d1:0b:4b:ea:58:6a:3e:cd:28:68:e4:f0:
c9:b4:a0:d3:a3:cf:7e:ce:f0:18:b3:36:98:20:ba:
e0:a6:70:e4:28:e9:8f:c9:73:da:aa:28:0f:1c:45:
af:2a:9f:6f:8c:81:08:41:32:d8:b5:74:d1:b3:9e:
4c:4f:04:58:7e:5e:19:5e:2f:86:26:02:3b:58:c0:
0a:06:35:4d:9d:93:ed:e3:44:74:9f:6d:80:8c:88:
4f:88:36:8c:6b:da:8b:ff:4e:a8:60:b2:4c:f9:49:
77:a7:aa:a2:03:5a:ef:fa:eb:45:f8:18:67:97:96:
dc:93:52:5d:7e:da:04:71:2b:dd:4d:2a:ef:cd:7f:
8a:aa:e6:68:f3:8d:2a:0f:4d:62:0f:e9:58:56:af:
0a:f2:97:d6:9d:12:5f:ee:c8:4f:26:a9:08:03:07:
4d:e1:3c:26:af:1e:63:1f:be:8f:ca:45:ba:0f:60:
e6:6d:5d:7a:23:90:99:4d:ba:99:5d:c5:b7:38:de:
87:a7:3d:2e:0b:84:c7:d3:f3:d3:4c:ba:55:bd:85:
f4:a7:6c:b6:53:a9:5d:1e:7c:6a:60:e6:f8:36:97:
e7:e5:ad:76:e0:55:4c:d2:f8:a4:f9:26:5d:2c:a9:
83:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:97:61:E8:B5:96:D4:3C:4A:77:C4:42:BF:A6:49:75:43:B3:C9:9E
X509v3 Authority Key Identifier:
keyid:54:71:8A:F6:A3:6F:66:A9:19:39:36:4A:AF:C8:64:45:AB:8A:6E:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VHGK9qNvZqkZOTZKr8hkRauKbg4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/cd2f41-59e0-4b8b-8206-bed55c47a578/1/8pdh6LWW1DxKd8RCv6ZJdUOzyZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/cd2f41-59e0-4b8b-8206-bed55c47a578/1/VHGK9qNvZqkZOTZKr8hkRauKbg4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2c2c::/48
Signature Algorithm: sha256WithRSAEncryption
04:37:df:ce:57:1c:75:51:aa:83:64:64:bf:35:a8:b6:64:20:
61:f2:4b:ab:ee:0b:61:74:9e:48:ea:ff:2b:8a:35:32:0d:e1:
07:db:a4:75:b0:81:f8:08:4c:dc:15:40:47:12:9a:fe:8c:4e:
bd:ca:6d:46:c3:d8:97:31:8d:21:4f:be:82:d1:b3:26:1b:b2:
05:14:64:8c:b4:4d:83:8b:60:75:a3:e9:7c:f0:e4:5d:f7:df:
fb:8b:2a:93:2f:54:e0:b0:27:2c:0d:5a:38:7c:47:c3:2f:6a:
36:3d:a8:2f:ce:b7:d6:04:da:c0:58:16:4d:5c:8c:e1:49:dd:
ba:70:2e:7e:27:c7:f3:07:7c:61:38:9d:75:5a:21:8c:c7:a2:
2f:a6:2f:a3:51:2d:10:00:1b:6f:f2:b9:ed:c5:5f:4e:8d:5b:
72:be:af:1a:30:1b:bd:df:e3:01:2f:76:50:51:1b:ba:c8:54:
b4:dc:12:95:e8:88:aa:10:9b:5e:6d:b2:3a:cd:f1:05:19:09:
cc:88:a1:50:d5:90:72:76:2e:c7:06:f1:ac:0e:1a:a7:79:8f:
b5:ca:36:57:43:77:79:0b:d6:29:19:68:99:fe:f1:e8:1a:64:
f7:1f:16:1a:ef:18:9d:2a:45:e7:38:50:8b:e5:48:20:fa:80:
33:73:75:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:27 2024 by rpki-client on console-ams.rpki-client.org