Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/5rCuGjF6fA-g1WQyPqi5UOibh2c.roa
File: 5rCuGjF6fA-g1WQyPqi5UOibh2c.roa (raw, json)
Hash identifier: 73CDNyb/FuVgUwi53sAUZEujsIXWCaoU5GfaNoRYt3I=
Subject key identifier: E6:B0:AE:1A:31:7A:7C:0F:A0:D5:64:32:3E:A8:B9:50:E8:9B:87:67
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 08CA7DFD
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/5rCuGjF6fA-g1WQyPqi5UOibh2c.roa
Signing time: Sat 01 Jan 2022 14:02:05 +0000
ROA not before: Sat 01 Jan 2022 14:02:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213031
IP address blocks: 2a0e:8f02:f004::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147488253 (0x8ca7dfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 14:02:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6b0ae1a317a7c0fa0d564323ea8b950e89b8767
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:2a:ce:4b:50:51:d0:3d:95:dc:bb:f6:e7:85:
a0:cd:11:66:ec:17:ee:07:a8:4d:ff:2e:58:76:29:
3e:46:0e:b8:c4:a5:25:31:ab:95:b6:5c:fa:ff:9c:
68:48:8d:33:4f:03:ea:f3:12:c5:c4:dd:18:7c:68:
b9:21:c6:18:87:03:ad:05:ef:73:83:e5:1f:29:02:
67:c1:a1:c9:ff:de:48:64:de:4e:f6:ba:67:11:85:
ac:f4:f6:c3:31:27:48:84:25:c4:cf:22:26:ac:79:
86:ab:e4:1d:30:d1:b5:bf:10:49:ae:79:29:76:14:
2e:cf:87:ac:f6:01:e3:69:81:2b:53:37:ac:75:88:
68:1d:43:ce:82:a8:e3:5f:3e:0f:21:c6:8f:27:b2:
5c:72:e0:e9:dc:66:00:a1:b4:f5:69:6f:82:8f:d7:
bf:fa:9f:fe:7d:0c:64:fc:01:a2:81:53:6b:89:d0:
c6:7a:15:f4:ed:97:61:39:5a:a7:ad:6a:6a:ec:d6:
0a:5b:85:5b:a6:91:41:39:08:f1:cb:34:8b:52:f4:
96:da:32:8e:d1:31:e6:90:05:fd:80:4e:f3:89:92:
57:e0:6b:3d:b3:7a:40:63:dd:96:5f:e3:d6:04:95:
19:a2:78:fc:99:fe:a4:d2:35:41:02:66:9e:11:f9:
f9:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:B0:AE:1A:31:7A:7C:0F:A0:D5:64:32:3E:A8:B9:50:E8:9B:87:67
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/5rCuGjF6fA-g1WQyPqi5UOibh2c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f004::/48
Signature Algorithm: sha256WithRSAEncryption
9d:46:ce:98:f2:9f:51:a2:ab:9c:72:da:f9:bb:fc:a8:6b:8b:
65:85:a8:df:1d:26:9b:11:37:b3:45:2c:dc:d5:4c:db:11:37:
2a:7b:c3:70:1a:a4:7a:62:e6:4e:af:0d:54:7a:1a:d0:99:aa:
e7:de:f1:ee:57:4f:23:ed:c6:43:de:f5:dd:bf:1c:af:c3:67:
a6:31:4a:a2:31:7d:2d:5b:32:be:88:67:2d:69:ad:57:2e:2f:
1b:d5:13:f5:60:6d:8a:d4:fd:0b:c6:c2:fd:f8:11:f4:20:42:
7b:e7:2c:d5:36:1d:02:ba:21:69:5c:ca:53:c5:04:b2:36:18:
8d:ae:6e:72:ec:20:8a:cb:5e:d3:2a:99:ea:31:8c:9f:a7:cd:
6a:47:2b:dd:6d:4d:55:1c:3f:38:58:14:54:cb:8b:25:2a:0e:
a2:5c:41:91:cf:79:08:6b:66:f6:95:33:54:d0:8a:e1:0d:ed:
10:f0:96:a6:4a:0b:45:cc:c6:64:80:56:18:3d:4c:3b:46:e0:
44:1e:08:32:ad:e7:04:f6:5f:56:9a:ff:f8:76:20:29:a8:1c:
92:b0:f0:94:de:78:84:66:4b:be:d1:58:2e:ba:37:0a:ff:02:
9a:b5:ec:08:27:9d:ac:c7:ec:ba:5f:88:38:88:db:97:4b:b4:
10:d4:63:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:12 2023 by rpki-client on console-ams.rpki-client.org