Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/0d6655-c0eb-4626-96d5-e63c91adce7f/1/VlQrCo8lexePWo57HP0c8Y9bUlc.roa
File: VlQrCo8lexePWo57HP0c8Y9bUlc.roa (raw, json)
Hash identifier: qintnQg9uFaICfpKpozSIT7iRQl6rrxf/X0WJhNNjz0=
Subject key identifier: 56:54:2B:0A:8F:25:7B:17:8F:5A:8E:7B:1C:FD:1C:F1:8F:5B:52:57
Certificate issuer: /CN=5485c8ef037cb897c8e94cf621c5a37d651c5ea5
Certificate serial: 039B99D9
Authority key identifier: 54:85:C8:EF:03:7C:B8:97:C8:E9:4C:F6:21:C5:A3:7D:65:1C:5E:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VIXI7wN8uJfI6Uz2IcWjfWUcXqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/0d6655-c0eb-4626-96d5-e63c91adce7f/1/VlQrCo8lexePWo57HP0c8Y9bUlc.roa
Signing time: Sat 01 Jan 2022 05:53:17 +0000
ROA not before: Sat 01 Jan 2022 05:53:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199086
IP address blocks: 2001:678:4cc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60529113 (0x39b99d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5485c8ef037cb897c8e94cf621c5a37d651c5ea5
Validity
Not Before: Jan 1 05:53:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56542b0a8f257b178f5a8e7b1cfd1cf18f5b5257
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:8b:fd:64:d6:47:84:cf:df:b1:3b:47:68:04:
9e:53:62:3b:95:c9:0f:25:4b:c9:8b:2d:41:cf:e8:
19:f4:48:2c:e2:95:9e:2f:60:aa:21:68:f0:64:84:
69:e3:1b:a3:11:0b:83:46:79:08:b7:6b:e5:30:f7:
cc:4f:ec:36:a3:c5:70:2c:90:fa:8b:29:ef:9e:06:
b0:92:35:a6:54:f0:ca:33:d3:a3:76:47:86:6d:61:
a0:56:0d:d4:35:ae:ef:d6:38:30:9f:0d:7b:b8:3e:
77:bb:c2:6d:f5:9e:fc:a0:cb:46:e8:73:36:c3:64:
1a:c6:e0:c5:73:e4:80:cf:c2:92:c4:42:3a:0b:8b:
e5:f9:ed:4a:1c:35:7e:35:bf:a3:4f:b6:50:40:ae:
a5:3d:9d:ec:8b:70:ff:52:fc:6d:54:37:8e:d9:b2:
0f:b7:07:7d:6c:c7:da:04:7d:a7:a4:9b:dc:ae:7b:
a4:24:3b:11:b5:f7:ee:8e:11:8f:c1:51:68:ed:10:
61:fb:c8:1a:d1:e5:68:06:e1:6d:15:7b:0c:ac:9a:
58:a7:bf:1c:d9:4f:76:91:9d:ff:ea:c8:c0:c2:dc:
a9:10:0d:ff:55:9c:a0:bc:ac:fd:fa:79:bc:15:09:
9d:ce:c0:e5:1f:67:b8:55:9e:08:ad:74:77:89:ce:
9e:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:54:2B:0A:8F:25:7B:17:8F:5A:8E:7B:1C:FD:1C:F1:8F:5B:52:57
X509v3 Authority Key Identifier:
keyid:54:85:C8:EF:03:7C:B8:97:C8:E9:4C:F6:21:C5:A3:7D:65:1C:5E:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VIXI7wN8uJfI6Uz2IcWjfWUcXqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/0d6655-c0eb-4626-96d5-e63c91adce7f/1/VlQrCo8lexePWo57HP0c8Y9bUlc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/0d6655-c0eb-4626-96d5-e63c91adce7f/1/VIXI7wN8uJfI6Uz2IcWjfWUcXqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:4cc::/48
Signature Algorithm: sha256WithRSAEncryption
16:fb:1c:bc:1a:35:77:e8:8d:a6:83:26:b5:9b:13:58:83:bb:
da:15:7a:a6:de:27:b6:41:7a:f4:3b:88:cd:11:cd:f0:52:d2:
1e:f1:f0:de:10:40:6a:79:22:04:7c:73:6e:61:ea:33:77:f4:
5d:05:88:2c:ce:43:9e:5f:a4:b7:bf:af:ba:d8:d0:b6:da:0a:
2d:b5:b3:15:f6:77:54:d2:41:b0:81:0c:2d:11:1c:7f:d2:8c:
11:ce:e6:da:13:75:8f:b9:69:04:80:c5:0c:93:28:6d:c9:fa:
bb:5e:dd:63:af:e6:4c:e9:d0:ab:32:df:de:19:e0:48:c9:0e:
76:a6:9e:6a:1c:ab:03:50:b9:08:8b:ae:23:fe:88:6f:b0:87:
ab:40:e5:31:82:25:fa:2f:a8:10:7e:76:0f:2b:f3:5b:a0:2c:
96:04:ec:a1:9a:70:94:da:bf:5b:bb:c6:dc:20:b7:ff:39:a2:
4f:92:65:37:57:d6:89:ef:eb:58:14:52:01:f4:d7:54:30:61:
86:fd:9c:ac:40:0b:19:c0:1a:6c:89:75:19:94:48:81:16:57:
94:af:ef:c5:e8:f7:a6:38:9a:a1:76:1d:f5:1f:13:4d:19:67:
d4:58:df:83:9b:4e:de:20:fa:09:e4:49:a8:44:1d:95:4a:b8:
c0:1c:a2:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:15 2024 by rpki-client on console-fra.rpki-client.org