Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/Xo_QTxNQGG8H_UqPqoPoo_Ia9V0.roa
File: Xo_QTxNQGG8H_UqPqoPoo_Ia9V0.roa (raw, json)
Hash identifier: UHTofMsKBzFWMM521o4ElVhmJIvacB3EF/jWAZ1IAEU=
Subject key identifier: 5E:8F:D0:4F:13:50:18:6F:07:FD:4A:8F:AA:83:E8:A3:F2:1A:F5:5D
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 08C54B6D
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/Xo_QTxNQGG8H_UqPqoPoo_Ia9V0.roa
Signing time: Sat 01 Jan 2022 14:01:58 +0000
ROA not before: Sat 01 Jan 2022 14:01:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212357
IP address blocks: 2a0e:8f02:f011::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147147629 (0x8c54b6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 14:01:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e8fd04f1350186f07fd4a8faa83e8a3f21af55d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:3a:2a:c8:10:69:60:4c:ce:0a:ee:fd:fe:2d:
b0:51:25:c8:3a:22:04:8c:02:51:e2:76:cf:8f:2b:
78:ce:5c:70:fe:c3:b7:f7:5b:7d:ad:8d:24:b5:f4:
07:0b:ae:2c:e1:b9:c1:2d:c2:88:d8:2a:45:f4:93:
bf:db:12:c6:ad:55:8e:c8:ee:77:07:c6:fa:6b:60:
af:1d:ed:0e:b8:fc:99:93:0e:db:ea:0b:73:71:fe:
dd:eb:12:92:ab:45:38:13:68:22:a2:9f:2f:c0:9d:
9d:20:5c:75:91:f4:92:84:38:6b:35:52:4f:c6:0a:
15:f0:79:80:9b:64:ed:9a:57:6f:0e:99:8a:8e:3e:
3a:e6:e9:18:df:98:7e:03:9c:4c:9e:35:d7:29:c4:
0b:0f:98:b6:f1:fc:de:8a:cf:67:db:39:53:b9:a3:
56:67:8d:dc:7a:e9:80:f9:cc:07:d4:86:37:ac:20:
9f:36:75:53:43:cb:2a:f4:c2:09:69:8e:86:73:94:
75:45:11:02:d7:2f:3d:76:5a:22:bf:f0:06:b9:f8:
bb:5c:a0:64:9d:0f:e9:25:bf:f9:45:42:6a:10:88:
fc:39:0e:be:44:1e:64:f8:a1:5d:05:e0:42:61:48:
7c:76:41:38:0b:ab:64:9b:0f:44:9b:f3:97:b5:68:
74:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:8F:D0:4F:13:50:18:6F:07:FD:4A:8F:AA:83:E8:A3:F2:1A:F5:5D
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/Xo_QTxNQGG8H_UqPqoPoo_Ia9V0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f011::/48
Signature Algorithm: sha256WithRSAEncryption
96:24:e8:82:3b:c4:ca:00:10:00:dd:19:33:58:e9:ff:11:9e:
ad:78:cd:0e:17:7a:fb:33:be:17:43:a0:87:1d:ee:67:a4:2a:
4a:1c:35:e8:d3:6e:ba:34:89:59:d8:e6:c3:18:bb:d6:c0:8c:
67:8a:4b:02:59:a5:8a:ce:b0:af:10:14:97:f6:94:6a:0c:18:
5e:5a:89:02:df:d5:5d:c5:c0:b4:e5:ee:46:30:04:35:bc:b5:
ea:c5:6e:96:a3:0a:32:25:5f:07:79:26:82:37:49:4f:88:3b:
09:04:61:cd:a4:0a:d3:b3:a0:4b:bf:60:53:44:9d:d7:91:ef:
d3:e2:f7:7e:28:ca:76:ee:c4:d4:39:e8:01:d9:94:b9:50:94:
b8:ce:d7:79:29:f2:3b:e8:b4:38:c9:02:1d:e0:a0:ea:35:26:
09:df:cb:8a:5f:f2:88:f3:e5:21:33:19:d7:58:e4:9c:a6:62:
ee:7f:c1:e1:35:27:85:45:de:f8:59:f7:30:1a:4f:26:63:7d:
5e:2a:6b:3e:ee:de:89:1c:5e:da:02:90:ba:8d:d9:e1:62:aa:
cd:ed:8c:1f:b0:00:5a:7f:88:b1:61:b8:27:e5:8c:9c:f1:6a:
d6:75:bc:8c:51:9f:a4:06:3a:96:89:95:eb:bc:94:57:66:10:
68:2a:c7:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:24 2023 by rpki-client on console-fra.rpki-client.org