Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/UekMJyfgDd-vmxRdq0ttXUwiQ6g.roa
File: UekMJyfgDd-vmxRdq0ttXUwiQ6g.roa (raw, json)
Hash identifier: h0LXCL7ir2AAyJ0kqYo4j0FFQlG3RQvam2hKgUaqKTY=
Subject key identifier: 51:E9:0C:27:27:E0:0D:DF:AF:9B:14:5D:AB:4B:6D:5D:4C:22:43:A8
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 018572BA72456990B72FE28DB29A15C757DA
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/UekMJyfgDd-vmxRdq0ttXUwiQ6g.roa
Signing time: Mon 02 Jan 2023 13:44:59 +0000
ROA not before: Mon 02 Jan 2023 13:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20555
IP address blocks: 2001:1a68:a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:72:45:69:90:b7:2f:e2:8d:b2:9a:15:c7:57:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 2 13:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51e90c2727e00ddfaf9b145dab4b6d5d4c2243a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1c:f6:5a:d0:70:72:73:c2:82:12:32:d0:5d:
ba:92:a0:c8:a2:a9:1c:1b:e8:72:6c:b8:1a:20:9e:
ea:cf:d7:e7:7d:9a:be:f9:62:36:66:31:6d:2b:53:
0f:a9:67:6c:37:fc:24:c7:1c:02:0d:20:6e:06:7b:
5e:3e:0c:98:fd:53:a5:ad:4d:ce:ff:56:46:e4:45:
cc:6b:3c:21:01:a3:d9:31:0a:6b:17:a2:9d:3c:df:
33:bf:93:53:87:bf:64:c5:e6:3c:29:b1:43:ab:a6:
06:ca:90:37:ec:ab:36:36:ae:9f:79:6e:8f:39:32:
bf:85:fa:94:c3:8a:34:e7:ab:11:e8:8b:84:c3:84:
16:28:18:b2:d8:07:a7:d5:f9:e1:6e:c5:4a:b9:d2:
da:14:75:f3:f7:35:b3:be:9f:5e:88:7e:a5:1d:b5:
d6:d8:c6:4d:e7:6d:24:24:36:1c:36:32:d9:15:f3:
48:15:01:eb:d1:33:27:69:37:fd:2e:00:78:17:77:
6c:c7:15:ca:ed:52:39:96:5d:bc:6c:74:0c:aa:0c:
a9:f0:b7:37:51:00:ad:fb:b7:e0:68:62:56:64:9b:
83:ff:1d:88:52:8c:f9:41:4f:8e:84:1b:d3:ec:53:
7d:d7:fc:ca:45:d9:43:4e:f6:11:06:48:4e:2f:95:
41:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:E9:0C:27:27:E0:0D:DF:AF:9B:14:5D:AB:4B:6D:5D:4C:22:43:A8
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/UekMJyfgDd-vmxRdq0ttXUwiQ6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:1a68:a::/48
Signature Algorithm: sha256WithRSAEncryption
55:74:49:6b:ed:49:2c:2d:00:ce:ed:ea:09:30:d2:50:b2:a6:
21:9c:1a:20:82:df:09:20:2a:35:46:b2:d2:57:50:76:f2:93:
cc:e5:2e:5f:a2:b4:96:36:fe:2a:eb:d2:e7:e5:88:89:6a:d8:
35:b1:65:74:ba:40:27:35:39:bd:b5:b8:95:fd:fb:7b:91:4d:
84:a5:5b:1c:f2:78:e9:e3:c0:20:62:23:d7:0b:ab:f6:f2:b5:
70:9f:c5:2d:b1:1a:cd:ec:66:36:f5:0e:8e:8d:c8:49:fa:ae:
b3:5c:c8:84:a1:5b:7a:73:4a:cc:dc:7c:21:e4:3a:96:63:ae:
09:e7:4c:b0:29:a0:e5:6a:a7:fd:1a:d9:30:c0:6e:ab:66:99:
a8:01:4a:c5:7d:c1:41:1c:c3:15:28:2b:d6:88:2a:80:9a:a3:
08:ff:c8:31:d8:7e:e3:14:42:0d:e8:a6:c7:79:1d:50:aa:4e:
6f:8b:50:1d:1e:42:22:e1:81:5d:91:6c:c7:43:d7:5f:c8:7c:
98:91:cf:5a:86:f9:1d:57:de:60:a1:fe:55:d5:af:d8:b8:e7:
4a:61:78:58:8e:f0:44:ba:ac:44:f9:4d:1a:ef:cf:65:47:9a:
11:8f:ad:3d:c8:eb:6f:b4:16:e8:7e:6a:70:bd:98:96:c9:78:
f0:c8:7d:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:15:12 2025 by rpki-client