Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/b73add-ea0f-4c22-980e-059bab015cc3/1/XEWAKFaSB56WnvpdWOFi-Z1UfdM.roa
File: XEWAKFaSB56WnvpdWOFi-Z1UfdM.roa (raw, json)
Hash identifier: WNXvD89tHy716WIVaqYBzczxKOqKNVg7pj3Gz/OQRRY=
Subject key identifier: 5C:45:80:28:56:92:07:9E:96:9E:FA:5D:58:E1:62:F9:9D:54:7D:D3
Certificate issuer: /CN=bbe026ef26920909d931ea4dac9d9390486b4153
Certificate serial: 04F9AE50
Authority key identifier: BB:E0:26:EF:26:92:09:09:D9:31:EA:4D:AC:9D:93:90:48:6B:41:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u-Am7yaSCQnZMepNrJ2TkEhrQVM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/b73add-ea0f-4c22-980e-059bab015cc3/1/XEWAKFaSB56WnvpdWOFi-Z1UfdM.roa
Signing time: Sat 01 Jan 2022 04:03:53 +0000
ROA not before: Sat 01 Jan 2022 04:03:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6697
IP address blocks: 2a10:641::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83471952 (0x4f9ae50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbe026ef26920909d931ea4dac9d9390486b4153
Validity
Not Before: Jan 1 04:03:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c4580285692079e969efa5d58e162f99d547dd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:20:cb:d7:62:77:fe:38:69:ac:2d:7a:46:ec:
0d:a5:c4:5c:0a:ea:1b:de:a5:24:d9:91:02:12:e2:
91:4f:fe:3c:ed:80:92:38:f7:f4:a3:c6:30:61:4c:
cd:4b:f0:e3:be:e9:1a:22:24:56:b5:ae:14:e1:83:
e9:8b:6b:40:e3:67:07:7e:32:e5:a6:19:22:71:35:
04:b9:33:bb:de:0d:32:a3:d2:e5:e0:ab:bb:68:58:
dc:b4:ce:9d:8a:0d:b7:9d:b2:7b:18:01:20:1b:15:
a0:d6:5b:1c:af:f6:1a:c0:73:9d:e9:d6:04:42:1d:
5b:af:ba:11:40:d7:37:77:75:36:c1:d0:1a:b3:16:
40:7a:02:0b:76:06:7f:f6:6a:d2:ec:a9:2f:bb:e4:
a8:bb:ee:23:04:1c:20:f4:63:b2:37:aa:46:c3:c8:
e6:d4:66:6d:89:8c:b0:74:31:2b:88:fb:54:20:cf:
eb:73:db:b2:4d:68:74:c6:83:26:af:85:02:c5:03:
9e:d3:40:7e:7b:88:31:71:9d:5b:8f:6b:86:7a:94:
c0:96:24:e9:e7:28:65:68:83:40:33:91:cf:3c:29:
c7:ea:d6:59:66:0f:9c:8c:11:9f:37:13:91:61:6b:
93:30:64:1a:03:ee:54:7c:a2:7b:de:97:e0:9b:6d:
4e:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:45:80:28:56:92:07:9E:96:9E:FA:5D:58:E1:62:F9:9D:54:7D:D3
X509v3 Authority Key Identifier:
keyid:BB:E0:26:EF:26:92:09:09:D9:31:EA:4D:AC:9D:93:90:48:6B:41:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u-Am7yaSCQnZMepNrJ2TkEhrQVM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/b73add-ea0f-4c22-980e-059bab015cc3/1/XEWAKFaSB56WnvpdWOFi-Z1UfdM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/b73add-ea0f-4c22-980e-059bab015cc3/1/u-Am7yaSCQnZMepNrJ2TkEhrQVM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:641::/32
Signature Algorithm: sha256WithRSAEncryption
51:3c:6d:2b:cc:30:73:1c:d5:37:f3:72:fe:04:43:e5:1b:fc:
02:1e:80:f1:da:94:a6:63:65:ad:83:af:38:f4:3b:cf:b4:f8:
ae:ff:7f:2e:9a:ad:7a:fa:12:4d:1d:31:c2:7f:60:8c:c3:0d:
f3:5c:90:08:ae:47:f5:ad:52:33:c5:57:c5:d0:89:2c:ab:1f:
49:15:37:1e:01:a1:58:e0:9e:59:67:39:d1:99:53:74:82:33:
9d:8b:cf:c3:83:10:97:95:db:fa:5b:38:ec:c2:44:4a:62:29:
53:ad:25:a2:a9:84:3d:7f:44:48:96:21:a5:73:68:fc:8d:fc:
be:1c:2b:56:c0:ba:ba:aa:7c:e5:b6:2f:91:8e:68:9e:3f:34:
98:6e:3c:61:4c:f4:d3:99:fb:1d:7b:bc:26:78:3d:dc:f9:a2:
78:2b:93:98:ea:c0:9a:c3:40:6e:a2:67:0e:31:4e:c0:8e:8b:
04:30:63:b2:fa:e7:ea:0f:6a:b2:a3:c9:7c:d2:41:c1:87:98:
93:0a:66:c5:31:dc:8d:8b:ab:f5:d7:6b:b4:a1:62:83:12:1b:
bc:b4:ba:2a:0e:0e:be:f4:43:d0:e9:44:13:56:d8:fb:80:9e:
7d:1f:c5:e8:54:d5:fe:3c:45:fc:f0:a2:9c:b6:38:e7:c6:6b:
a7:5d:0f:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:15 2024 by rpki-client on console-ams.rpki-client.org