Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/u5xS6yHMbLVzJktyO9bmxbsvSGw.roa
File: u5xS6yHMbLVzJktyO9bmxbsvSGw.roa (raw, json)
Hash identifier: hrEYOTvLKamGCrsxH1u7ve8YN0ZA1xnIzDpNtUZ7pPA=
Subject key identifier: BB:9C:52:EB:21:CC:6C:B5:73:26:4B:72:3B:D6:E6:C5:BB:2F:48:6C
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 09590DA3
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/u5xS6yHMbLVzJktyO9bmxbsvSGw.roa
Signing time: Tue 11 Jan 2022 11:28:25 +0000
ROA not before: Tue 11 Jan 2022 11:28:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210977
IP address blocks: 2a0e:c7c1::/45 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156831139 (0x9590da3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 11 11:28:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb9c52eb21cc6cb573264b723bd6e6c5bb2f486c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d1:ed:97:5d:0a:19:2b:6b:d2:7b:8e:3f:2d:
16:0c:8b:2e:ab:ff:b0:a3:17:ae:bd:bb:9b:be:17:
82:3a:b4:69:ab:af:30:fe:e4:24:66:67:ea:2f:73:
b0:c8:c9:73:b4:05:f9:cb:5c:50:e9:1c:8f:7d:00:
25:ae:3f:35:c5:06:06:f6:48:1a:85:3b:ad:14:30:
4d:a7:54:e6:de:d1:69:70:f8:b0:da:e2:81:4a:4d:
6a:f5:80:22:89:50:8e:33:ca:d9:70:a3:b3:9f:0c:
d3:3b:5b:42:b1:2b:20:93:26:3f:11:37:46:ca:99:
c8:77:72:45:52:ad:f5:a5:37:a9:32:aa:3b:64:30:
b8:71:4f:fe:21:93:f6:e7:2c:6e:4b:97:d0:6e:7f:
80:22:a1:4e:3f:7d:22:13:7f:1d:68:6f:d1:57:c1:
8a:ec:62:ed:cf:14:4e:ec:81:45:90:16:62:be:0d:
05:f2:95:3e:3d:81:0c:d9:43:88:2a:34:53:20:14:
b5:b8:97:a1:ac:85:a7:c0:c9:ef:eb:3d:45:6e:19:
2e:f1:3a:45:29:dc:5f:34:7e:cf:b6:3a:f9:a9:e5:
cc:61:55:80:7e:08:02:d9:b8:04:37:6f:dc:ea:00:
23:cd:c5:64:64:ce:20:b7:ed:78:68:c4:65:d6:7c:
3f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:9C:52:EB:21:CC:6C:B5:73:26:4B:72:3B:D6:E6:C5:BB:2F:48:6C
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/u5xS6yHMbLVzJktyO9bmxbsvSGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:c7c1::/45
Signature Algorithm: sha256WithRSAEncryption
12:b2:1e:8d:65:d2:b2:e1:d1:96:87:7a:19:ba:d1:a2:68:b6:
f8:dc:ef:93:bc:fe:67:17:7a:80:19:36:d2:c0:33:d6:7c:c4:
fc:a6:91:c8:2b:fc:03:ca:b3:6b:46:4d:77:d5:3a:ad:86:a5:
69:5a:0b:19:a6:ee:3e:22:5b:9f:0c:e1:d7:49:2b:52:0a:a1:
33:51:4f:b2:5a:3c:4a:de:c1:a8:43:06:d2:2b:d6:c9:44:6a:
a8:1d:8a:08:0f:8d:6a:49:c5:71:1a:1f:ed:72:eb:24:0f:e0:
1d:40:dd:a2:15:a8:50:01:b6:cc:7f:23:09:db:d3:80:51:75:
cc:f5:5a:b3:36:b1:cc:6a:04:be:12:d8:cc:68:e4:28:30:79:
c4:29:17:96:aa:7d:07:02:38:42:db:83:c7:95:69:72:d1:25:
45:53:8c:18:07:19:82:da:3b:69:9b:7a:6f:1e:eb:d0:00:28:
6d:bf:fd:00:6c:2e:df:b0:bc:0f:1b:39:63:d2:78:0e:59:ad:
e5:84:c7:ff:4f:3e:a2:bb:45:38:47:70:d1:10:25:40:bd:16:
e9:b5:5b:be:c3:60:19:f9:9e:c4:07:40:2e:70:ce:71:0c:1b:
d1:16:4f:55:06:a0:0a:42:c5:1b:10:86:e6:6e:f4:b9:8e:d0:
63:93:37:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:49 2024 by rpki-client on console-fra.rpki-client.org