Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/lvuxq0DEaZivLGCI4FIdKF8W59o.roa
File: lvuxq0DEaZivLGCI4FIdKF8W59o.roa (raw, json)
Hash identifier: i0/CMTi113QnhjdiutvvupcUNVRFOi/ISSTEtLI9chg=
Subject key identifier: 96:FB:B1:AB:40:C4:69:98:AF:2C:60:88:E0:52:1D:28:5F:16:E7:DA
Certificate issuer: /CN=ec4fb061a9426e4fb2885d822867572a1b58a4c0
Certificate serial: 0CF78ABF
Authority key identifier: EC:4F:B0:61:A9:42:6E:4F:B2:88:5D:82:28:67:57:2A:1B:58:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7E-wYalCbk-yiF2CKGdXKhtYpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/lvuxq0DEaZivLGCI4FIdKF8W59o.roa
Signing time: Sat 01 Jan 2022 12:58:01 +0000
ROA not before: Sat 01 Jan 2022 12:58:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212025
IP address blocks: 2a0d:2406:11ea::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 217549503 (0xcf78abf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec4fb061a9426e4fb2885d822867572a1b58a4c0
Validity
Not Before: Jan 1 12:58:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=96fbb1ab40c46998af2c6088e0521d285f16e7da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:a3:ed:38:5b:2a:bd:47:b0:98:fc:93:bd:2d:
fd:9d:56:41:82:93:11:fc:b8:41:ad:cf:91:f2:8f:
41:27:08:e8:7a:a7:b3:10:bd:80:41:63:9a:75:61:
45:e9:90:22:b4:57:5a:8e:a9:36:60:d4:45:ad:a4:
e7:e0:7f:78:13:fe:a2:8c:fd:73:fd:97:9e:74:fc:
d1:7e:0f:f1:39:90:7d:84:51:b3:f1:a5:c0:47:c8:
ac:47:44:4c:c0:34:ad:1c:1c:17:e7:ff:01:75:22:
e6:03:96:48:d0:e7:69:29:a8:96:08:6b:fb:e1:e3:
bf:bf:e1:cd:ed:8d:d8:92:61:2a:99:5f:4b:40:80:
7f:c5:c2:ab:30:f8:ca:d3:05:10:93:dd:05:51:26:
44:47:04:92:fe:83:60:35:28:b8:7d:4a:9c:0b:4d:
d8:bc:26:3a:96:4a:ab:b3:0e:11:52:ad:2a:a6:50:
8d:4a:d1:eb:9d:66:d1:bc:c2:d5:3c:30:36:7b:01:
8a:a6:74:62:ad:af:bd:65:15:40:d5:7b:03:dc:75:
af:9f:8c:1d:35:6f:64:56:eb:53:1a:aa:9f:af:26:
9a:bf:00:59:21:b1:a8:3c:3f:2a:4d:df:b6:39:7e:
c7:69:76:41:49:11:f7:19:c6:f2:fb:d4:d5:b0:32:
ba:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:FB:B1:AB:40:C4:69:98:AF:2C:60:88:E0:52:1D:28:5F:16:E7:DA
X509v3 Authority Key Identifier:
keyid:EC:4F:B0:61:A9:42:6E:4F:B2:88:5D:82:28:67:57:2A:1B:58:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7E-wYalCbk-yiF2CKGdXKhtYpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/lvuxq0DEaZivLGCI4FIdKF8W59o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/7E-wYalCbk-yiF2CKGdXKhtYpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2406:11ea::/48
Signature Algorithm: sha256WithRSAEncryption
69:7c:da:f6:ef:40:22:b5:42:8d:6d:fe:1c:af:e0:94:45:17:
c6:a4:f3:a8:fe:4b:cb:78:22:5c:65:4a:c5:1d:0a:09:4e:5b:
5e:ec:84:ec:39:a0:36:36:16:ad:ce:15:29:11:f0:02:0a:54:
82:07:14:88:4a:c2:7b:96:a5:2d:e5:37:4f:94:86:09:a4:54:
d5:e4:c2:1d:ff:f5:a7:39:19:5d:56:04:24:49:6f:f7:21:76:
ab:d9:b9:0a:05:62:73:96:47:b4:f1:dc:0e:60:d5:55:e4:c2:
64:f1:0b:ca:c5:a4:e0:05:a5:15:54:38:89:93:40:3c:e1:6d:
0e:4d:19:b0:71:72:13:1c:a5:8a:a2:65:ab:5a:e4:58:47:67:
5a:e2:7b:58:b8:73:6a:a6:ce:a8:1d:4e:2b:0e:ef:00:98:a3:
f2:6c:78:f7:a2:73:bb:1f:9e:34:7a:2f:45:5a:0c:8f:fb:17:
7e:f9:04:f2:2f:58:ed:45:a5:2a:fb:56:16:1f:3f:e6:9a:dd:
bf:95:3a:6d:cb:c6:40:f2:27:6c:e9:4e:4e:9b:34:20:4d:5e:
d0:06:8e:f1:fc:15:a1:48:8a:a8:f5:0e:8b:26:c4:13:be:a9:
91:ae:0f:00:0a:f4:4c:eb:43:7e:7e:0e:82:bd:2a:e5:06:74:
2b:d1:f3:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:18 2024 by rpki-client on console-fra.rpki-client.org