Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/xX7WSRNszNzmoVAjqfdRizgJ70k.roa
File: xX7WSRNszNzmoVAjqfdRizgJ70k.roa (raw, json)
Hash identifier: KrqxbNd5za6XrGmFFS0v4VIZF7BJ3RaA0URLRPeW1ZY=
Subject key identifier: C5:7E:D6:49:13:6C:CC:DC:E6:A1:50:23:A9:F7:51:8B:38:09:EF:49
Certificate issuer: /CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Certificate serial: 03FD7995
Authority key identifier: C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/xX7WSRNszNzmoVAjqfdRizgJ70k.roa
Signing time: Thu 23 Jun 2022 18:50:10 +0000
ROA not before: Thu 23 Jun 2022 18:50:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49245
IP address blocks: 2a05:4140:14::/48 maxlen: 48
2a05:4140:12::/48 maxlen: 48
2a05:4140:15::/48 maxlen: 48
2a05:4140:13::/48 maxlen: 48
2a05:4140:3::/48 maxlen: 48
2a05:4140:11::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66943381 (0x3fd7995)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Validity
Not Before: Jun 23 18:50:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c57ed649136cccdce6a15023a9f7518b3809ef49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:aa:e3:c5:f2:33:f9:70:c6:42:68:d3:68:01:
15:b7:76:9e:69:ca:75:76:00:63:a8:83:52:3a:ff:
db:0e:10:ad:9f:01:b7:2a:f6:01:37:db:5c:e2:80:
f9:02:c9:1d:91:ae:3b:cc:a1:07:b3:2e:1c:51:51:
04:44:57:da:8b:6c:23:e4:eb:60:6c:3f:9b:dc:ef:
3a:15:b0:2a:2e:d9:2a:35:ed:ec:9e:b7:d4:37:e6:
3c:4f:69:ed:26:30:d1:df:03:8e:ad:8a:60:2b:dc:
ed:a2:b9:d1:d5:06:0c:08:df:be:af:12:06:c5:7e:
ef:7e:84:bc:f7:3d:1f:76:e2:f5:c2:3a:f4:a1:c7:
8a:44:79:bc:be:82:d4:3d:36:cd:94:91:0f:11:ad:
b1:b0:40:72:0e:53:57:6c:1b:ff:a7:76:3b:d8:e2:
ca:74:a9:bb:b0:5e:e4:8f:42:c5:4c:d7:6d:cb:7c:
10:ab:af:19:04:07:a1:e8:20:b5:fb:24:43:9c:1a:
7e:94:03:54:99:92:1a:6c:af:23:fb:20:c7:e9:3b:
02:55:63:95:bb:1f:5d:8a:57:da:b8:90:66:84:0b:
17:d0:a9:43:33:1e:40:c2:42:3e:6f:56:e9:ef:9a:
d5:63:3a:f8:38:e5:77:77:a9:29:95:a9:ae:10:07:
7f:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:7E:D6:49:13:6C:CC:DC:E6:A1:50:23:A9:F7:51:8B:38:09:EF:49
X509v3 Authority Key Identifier:
keyid:C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/xX7WSRNszNzmoVAjqfdRizgJ70k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/x0xgresM1XaM91b1YrG1zFucGAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:4140:3::/48
2a05:4140:11::-2a05:4140:15:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
34:50:2e:c9:fb:18:a0:40:a3:7c:6d:fe:78:0c:5f:af:f6:94:
99:74:34:c7:36:13:2e:f4:b7:1f:79:7a:69:b9:ea:71:14:b2:
5b:86:b8:a9:c6:9f:1e:23:b8:d6:f7:20:a2:82:0e:83:95:63:
66:b5:93:fb:17:53:22:5b:e3:28:6c:8d:f7:fb:3a:6b:3b:80:
11:de:ec:db:d3:39:cf:e3:45:47:ec:d0:14:eb:27:71:21:f8:
30:7d:04:5f:f2:5a:77:bb:5d:09:aa:8d:8f:b9:31:df:df:09:
c1:9f:78:9a:e6:35:f4:0f:7f:6b:3d:f5:0e:5e:ad:db:4a:77:
6b:25:d3:ce:2c:6a:a2:fe:ee:e1:00:e6:2d:59:49:dd:c5:d7:
52:68:20:84:3c:c2:87:3f:9f:52:12:b0:3a:1f:89:8b:78:3c:
99:59:2a:2b:13:b0:0c:3f:06:27:90:bb:e4:77:69:94:0f:3a:
d0:0d:6c:54:ef:c8:70:ff:03:0f:5c:59:d9:d7:ec:74:a8:84:
97:91:0b:d9:6e:7e:c8:ee:30:fc:29:3d:e2:7c:8b:28:99:73:
2b:88:20:3a:00:4a:c2:f4:ca:08:75:a6:99:70:31:43:7a:31:
d9:6e:32:b2:b1:f4:6f:dd:36:57:9a:87:21:70:8b:a0:54:27:
44:9b:3b:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:53 2024 by rpki-client on console-fra.rpki-client.org