Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/LlJAcK46tWrd1zwiNdQVGY_0k-E.roa
File: LlJAcK46tWrd1zwiNdQVGY_0k-E.roa (raw, json)
Hash identifier: BTrimoNtYpDwJwRNqn7XhweQnnSESz0ioTBeUgLZH3w=
Subject key identifier: 2E:52:40:70:AE:3A:B5:6A:DD:D7:3C:22:35:D4:15:19:8F:F4:93:E1
Certificate issuer: /CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Certificate serial: 018375F8452C4B0115B00917D45DA97FAE69
Authority key identifier: 97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/LlJAcK46tWrd1zwiNdQVGY_0k-E.roa
Signing time: Sun 25 Sep 2022 18:45:48 +0000
ROA not before: Sun 25 Sep 2022 18:45:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50028
IP address blocks: 2a0f:d300::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:75:f8:45:2c:4b:01:15:b0:09:17:d4:5d:a9:7f:ae:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Validity
Not Before: Sep 25 18:45:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e524070ae3ab56addd73c2235d415198ff493e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:7e:df:94:79:14:47:21:d3:8c:2f:c9:c7:39:
99:f4:a2:50:47:33:cd:d5:4a:a8:a6:70:a1:44:be:
07:77:61:45:21:de:18:ba:90:08:ca:6f:99:64:91:
65:b0:fd:b4:3d:cf:60:40:6a:cb:7b:a6:4a:39:94:
0f:e0:21:c6:d6:67:98:88:97:c3:ac:39:04:3e:67:
86:c9:52:35:a9:b4:5c:5a:a9:3e:73:3b:e8:b4:dd:
12:41:44:9f:ea:38:04:7a:55:71:f5:2a:bf:42:e2:
18:0b:62:b3:01:43:67:1c:77:29:2b:fb:49:2d:c3:
6e:4b:8b:b9:a1:b2:b4:89:91:eb:d9:5b:c9:34:76:
09:13:8a:87:4c:78:c4:da:49:59:c9:13:b0:6b:06:
34:7a:93:87:cd:c4:0f:19:f3:c5:8e:bf:9d:41:02:
c2:01:1c:6d:fb:70:00:0c:9e:c8:e4:c9:a8:8a:f2:
cd:1d:81:2d:2d:11:5e:f8:d0:a5:d0:4f:10:a6:fd:
63:ad:68:83:c9:86:85:22:b9:f6:c8:e6:61:1a:c7:
cb:73:7b:0b:56:90:7c:a8:54:dd:5a:97:6e:5a:a3:
cb:a3:d2:59:84:d4:4e:54:6a:d3:ca:dc:79:e7:21:
ba:2b:78:5b:b2:a6:6b:dc:eb:40:6b:7a:7b:25:2b:
97:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:52:40:70:AE:3A:B5:6A:DD:D7:3C:22:35:D4:15:19:8F:F4:93:E1
X509v3 Authority Key Identifier:
keyid:97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/LlJAcK46tWrd1zwiNdQVGY_0k-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/l59cqMM_E0w8FX1IucKuTpG2ML8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:d300::/29
Signature Algorithm: sha256WithRSAEncryption
1c:e8:ca:9c:a1:29:1f:74:7c:fb:5e:b1:03:c8:cd:4b:13:14:
9b:1d:5b:26:2a:15:59:d4:3e:22:0b:35:5f:dd:4b:ae:ec:92:
b8:7c:e7:41:34:c8:6f:88:27:14:68:2b:b9:6e:20:26:b1:39:
5c:01:9f:a1:1b:fd:0a:9f:38:86:b2:b0:2f:e7:22:bd:ee:5a:
5a:d8:d6:ae:87:32:bd:09:0f:8b:2d:6d:6e:d9:0b:6f:5d:c4:
d5:13:d0:58:01:14:7b:09:74:4e:37:8d:86:03:7b:35:8f:b7:
18:26:ce:d1:54:4f:59:3a:ef:d6:ec:d7:10:a7:14:ef:05:52:
85:d8:f1:28:78:41:5a:16:d9:81:3c:26:a3:c0:da:57:e9:3b:
da:8e:96:44:a7:96:d9:91:19:12:76:6b:cc:18:aa:f6:dc:1c:
e6:9c:cc:bc:83:b9:3c:fe:81:31:c7:0e:9a:4c:16:55:f7:ea:
0a:d8:50:95:7b:13:11:26:ca:28:62:bc:f8:62:bd:2b:de:d7:
43:59:76:65:81:1e:d6:4a:03:4b:06:a5:85:dc:a5:2a:03:90:
15:c7:69:db:e0:99:dc:55:ef:e1:f7:a4:e8:c0:ce:c4:1f:15:
71:d1:70:53:98:cb:9b:03:4f:29:7c:bb:42:62:c8:77:69:8b:
f5:78:41:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:29 2024 by rpki-client on console-fra.rpki-client.org