Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/G15s8SJOPJj-LpD0peisGkRC4WE.roa
File: G15s8SJOPJj-LpD0peisGkRC4WE.roa (raw, json)
Hash identifier: itgNxKdEGGy4ZXAzZWJ4bJ4tmWppwKiOcMD1FS3Nc2U=
Subject key identifier: 1B:5E:6C:F1:22:4E:3C:98:FE:2E:90:F4:A5:E8:AC:1A:44:42:E1:61
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 2CAF25D7
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/G15s8SJOPJj-LpD0peisGkRC4WE.roa
Signing time: Sat 01 Jan 2022 04:59:41 +0000
ROA not before: Sat 01 Jan 2022 04:59:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198430
IP address blocks: 2001:1a68:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 749675991 (0x2caf25d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 1 04:59:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b5e6cf1224e3c98fe2e90f4a5e8ac1a4442e161
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f5:9e:9e:cc:fc:00:ba:ea:88:fa:a6:ba:79:
92:37:e4:56:42:a0:95:95:42:01:87:a0:3d:1d:2d:
9f:2e:57:1d:79:2c:14:3a:c0:da:a1:7e:06:9b:00:
91:67:38:31:ea:e2:93:7d:0f:b7:00:11:b8:c2:b7:
cf:4f:85:c3:d2:a2:d9:b8:18:48:25:ab:22:c4:44:
90:f5:58:66:96:3a:1a:e5:84:25:f0:c6:1c:59:c3:
89:83:ea:64:ef:7d:7d:b7:65:8f:b3:11:2a:04:69:
a3:a0:d0:bc:6a:80:d9:dd:39:69:23:1e:24:70:fa:
3c:04:ac:fc:57:fb:72:0f:78:ab:75:60:71:b6:87:
cc:d4:2c:0f:31:ee:85:4f:82:5b:4b:49:18:30:2c:
84:5a:41:08:9d:64:c1:f0:4b:f3:40:aa:93:c7:28:
d4:4a:17:33:3b:70:d3:07:8f:58:27:78:fc:6a:1f:
c4:56:08:de:50:ac:a8:72:77:13:82:33:a8:55:91:
ef:b7:c4:04:de:91:19:ef:50:3a:5b:ae:6e:72:11:
7f:26:12:45:ce:41:4e:94:98:0a:7f:21:aa:fd:8d:
60:f1:08:db:f5:33:86:4a:ad:b4:f7:88:28:f0:b5:
5a:04:14:20:dc:d8:62:02:23:ae:9c:0f:39:19:d2:
37:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:5E:6C:F1:22:4E:3C:98:FE:2E:90:F4:A5:E8:AC:1A:44:42:E1:61
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/G15s8SJOPJj-LpD0peisGkRC4WE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:1a68:2::/48
Signature Algorithm: sha256WithRSAEncryption
a4:ea:a9:36:a2:ff:85:78:4f:b5:1c:3b:92:a8:fd:e9:53:01:
7b:80:41:eb:e1:f1:90:a8:8b:c0:04:f9:39:50:06:58:67:f6:
e3:0a:96:3c:16:02:c3:be:2b:70:9a:b7:10:8c:0e:1c:5b:41:
86:3c:11:f7:64:6c:d4:42:d9:3a:51:43:13:7b:7a:2f:1f:f7:
c0:d8:25:30:e6:03:a5:53:48:d2:1d:dd:fb:2c:36:d1:27:7b:
64:64:7d:71:47:f4:3e:2d:cc:ae:2f:39:e8:9f:2c:1f:f2:3b:
b7:a2:dd:36:25:2b:64:7a:6e:6d:a3:94:7a:af:46:d4:c2:a7:
26:f5:d0:be:24:5a:92:86:ed:31:0e:25:35:4a:5a:80:27:d5:
a3:49:da:07:11:b3:4f:35:5a:9f:88:96:3b:82:7d:10:8e:53:
41:20:aa:83:3e:7b:a1:f0:5f:4a:c7:43:4d:e4:95:67:8a:9a:
31:62:4a:d6:56:93:2d:76:39:33:9c:86:37:21:db:39:20:00:
07:f4:65:cc:73:a2:99:03:45:3e:49:7b:00:e5:93:b1:5b:4d:
3d:82:91:5d:8c:4b:41:ff:4f:80:e7:b4:fe:b9:13:4f:79:92:
64:4e:66:bf:48:d7:15:89:a6:49:e9:b5:66:76:36:4e:2f:95:
62:45:d7:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:52 2024 by rpki-client on console-ams.rpki-client.org