Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/l96SEMB2TZOkReIfpTmIiyMuwXo.roa
File: l96SEMB2TZOkReIfpTmIiyMuwXo.roa (raw, json)
Hash identifier: LU9ZZ4ZDFqsG7uoNp/Yce0Zs6S4n72hoWG8QqD+jAl8=
Subject key identifier: 97:DE:92:10:C0:76:4D:93:A4:45:E2:1F:A5:39:88:8B:23:2E:C1:7A
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 09026720
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/l96SEMB2TZOkReIfpTmIiyMuwXo.roa
Signing time: Sun 23 Jan 2022 11:59:02 +0000
ROA not before: Sun 23 Jan 2022 11:59:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38230
IP address blocks: 2a0e:8f01::/35 maxlen: 48
2a0e:8f01::/48 maxlen: 48
2a0e:8f01:10b::/48 maxlen: 48
2a0e:8f01:104::/48 maxlen: 48
2a0e:8f01:10c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151152416 (0x9026720)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 23 11:59:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97de9210c0764d93a445e21fa539888b232ec17a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:0f:68:47:06:84:6c:52:10:ef:32:1a:e7:38:
ae:f6:71:1b:78:43:c5:1f:72:75:31:e9:99:23:51:
13:75:a2:b6:ed:a9:99:cc:45:56:fb:12:f1:20:7c:
9e:0c:e8:a6:7f:d0:53:79:f7:81:79:63:5f:fb:c4:
4f:12:a7:06:cb:e0:9f:37:c7:a6:5c:24:70:ce:d1:
da:88:a6:3e:74:cd:60:8a:96:94:87:3b:3f:c8:d3:
5e:a9:46:89:56:fb:cb:4e:f5:7b:59:3d:5a:04:0a:
09:6a:90:16:6c:e1:3d:26:f4:78:a3:27:3c:c7:b5:
3d:46:54:da:a0:64:01:de:ed:2a:e5:1f:e4:9e:2a:
46:12:bb:7f:6a:4e:68:ab:98:34:87:f6:f0:62:04:
92:41:a6:dd:40:2c:5b:01:a7:f2:72:f9:66:d1:87:
f8:a7:7c:ac:0d:9e:77:33:23:d6:b1:12:54:72:e5:
c1:bf:ca:68:2e:50:6a:49:8e:29:ad:ad:ca:3c:c4:
be:76:e9:c3:31:25:a3:07:68:11:1e:cf:5d:92:47:
41:bb:34:5c:a2:7f:2c:a4:68:26:b1:d4:04:1e:fe:
df:59:33:25:5d:9e:37:ff:01:0a:0d:fc:70:f4:d6:
2f:f5:21:7b:f9:d2:d4:06:0e:c2:2d:22:10:e2:48:
3c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:DE:92:10:C0:76:4D:93:A4:45:E2:1F:A5:39:88:8B:23:2E:C1:7A
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/l96SEMB2TZOkReIfpTmIiyMuwXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f01::/35
Signature Algorithm: sha256WithRSAEncryption
63:f9:54:72:bf:c2:b2:34:83:9e:bc:6d:78:11:0f:58:ac:f4:
44:c3:7a:80:9e:f1:4c:f8:6b:7d:b3:9b:85:17:5e:0c:7d:50:
eb:7e:f5:6b:dc:94:23:db:88:e2:c4:c7:2e:a4:ee:ef:e2:b1:
04:da:c7:dc:c7:37:f7:30:67:b8:ce:a5:7a:46:95:c5:12:4d:
9d:14:d6:cd:dc:f1:40:de:e8:5d:fb:3d:39:85:c7:36:ef:7c:
d3:47:4b:a4:4a:7c:de:96:fd:d8:ad:05:b9:c8:31:18:e1:16:
e5:1b:1c:a3:bd:b7:85:55:61:35:4d:31:17:e5:72:8e:09:a7:
af:23:14:ac:7e:1f:ae:64:74:b3:2d:4c:8d:fe:cf:7f:a2:9e:
d0:db:5b:5f:0a:61:b1:7c:b7:bb:49:62:81:bb:7d:1a:29:6f:
52:43:7b:3b:1f:29:0a:fe:29:7e:18:e1:d6:18:c4:61:ad:bb:
6b:6a:d2:c7:5c:2e:5f:4a:8e:8d:d8:d9:c6:43:7c:9c:94:59:
2e:89:a2:f9:f1:56:8e:e1:e8:b2:3f:9c:77:0c:ec:34:4f:da:
a9:4f:16:e9:2a:79:75:2f:48:9e:6c:e5:cd:5d:b5:35:58:f5:
4d:96:f7:5e:51:c9:2c:a1:92:00:f9:8c:af:cd:5b:e6:df:a0:
78:10:17:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:12 2023 by rpki-client on console-ams.rpki-client.org