Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/LO3MPEwaV1Z8-yaVl9R4Ii_iuWI.roa
File: LO3MPEwaV1Z8-yaVl9R4Ii_iuWI.roa (raw, json)
Hash identifier: 68K0ysufREV523dyMin5KpyF5PGqY9sEu6364KUF/W4=
Subject key identifier: 2C:ED:CC:3C:4C:1A:57:56:7C:FB:26:95:97:D4:78:22:2F:E2:B9:62
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 022191FE
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/LO3MPEwaV1Z8-yaVl9R4Ii_iuWI.roa
Signing time: Wed 16 Mar 2022 18:20:46 +0000
ROA not before: Wed 16 Mar 2022 18:20:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213154
IP address blocks: 2a0c:b641:100::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35754494 (0x22191fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Mar 16 18:20:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2cedcc3c4c1a57567cfb269597d478222fe2b962
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:80:46:25:37:1e:3a:83:30:0f:d9:3a:1f:a5:
35:5d:95:af:6e:97:e0:5d:f5:3a:eb:a4:41:1c:4e:
41:58:8e:34:15:12:9f:cf:dc:00:26:38:a8:ba:b8:
1b:e5:27:0e:83:8a:d7:58:41:44:2e:9f:aa:94:b7:
17:06:13:78:7f:e5:3c:b3:d2:5d:a0:d6:cc:05:12:
28:7f:50:ef:9d:8a:4f:15:4d:0c:73:c5:8e:72:9f:
86:bf:c7:a9:58:7f:e2:41:e4:e8:9b:57:4f:71:2a:
f4:01:94:b7:a1:56:da:37:a8:21:d7:bd:11:73:6e:
8c:18:36:3b:b2:d4:53:24:55:d1:16:12:47:83:4c:
e9:6f:55:61:ae:54:69:be:43:c2:96:e5:57:85:0f:
42:08:de:de:00:5f:ff:b8:63:0e:46:7c:fb:ed:0a:
88:c8:8b:c9:a6:37:38:b3:2d:c0:1e:98:86:16:db:
34:42:f0:4a:82:75:f7:59:fa:e9:86:d1:c3:53:e9:
dc:10:8b:b3:38:ab:0c:9e:65:65:78:db:a2:37:3a:
52:78:b6:00:62:11:6f:b9:5f:74:90:70:b0:5c:22:
10:64:e4:6e:0a:fc:d1:13:e2:35:66:d8:63:23:7d:
3c:9d:5e:1b:61:f0:6b:8a:54:24:a5:40:7e:51:0d:
42:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:ED:CC:3C:4C:1A:57:56:7C:FB:26:95:97:D4:78:22:2F:E2:B9:62
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/LO3MPEwaV1Z8-yaVl9R4Ii_iuWI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:100::/44
Signature Algorithm: sha256WithRSAEncryption
39:ca:3a:cd:6c:27:c4:de:c6:2a:21:ac:8d:6e:4f:9d:47:ac:
da:b8:1b:f1:2e:ff:db:11:c0:0d:ff:88:c4:33:dd:f4:1e:b8:
66:d3:21:17:3c:00:32:be:45:4d:eb:bc:38:29:73:f7:91:f7:
9c:2a:be:54:5f:a2:7d:96:7d:dd:e3:1b:d2:75:9a:e4:fc:d9:
f4:39:a6:aa:b0:2d:ba:98:51:86:a9:ed:0f:98:ba:49:bb:82:
c8:d6:20:95:08:7b:b5:65:2a:42:ca:c1:a6:2d:04:90:b9:42:
0e:b2:66:5d:35:d8:5d:39:ad:91:10:3b:21:78:3c:df:28:50:
16:ca:3c:af:87:34:21:53:1d:ce:c9:d8:76:2c:87:db:53:20:
ba:e0:44:29:3c:b9:34:c6:51:0d:bd:fe:93:80:e6:47:b9:5c:
35:93:70:60:59:51:fa:83:26:16:8f:5a:8f:83:b5:66:80:f9:
ab:fa:21:db:a5:a6:ca:67:4b:81:db:19:ce:df:dd:6c:d7:65:
60:be:e5:a6:32:d1:57:ee:59:00:0e:95:c6:ed:40:31:d4:a3:
f4:13:42:65:03:77:4d:b7:1f:13:4f:86:4d:a1:46:c6:ce:31:
bb:34:a6:0b:b6:e1:d0:36:62:5e:15:d7:20:fa:e8:e0:fb:37:
8b:87:cb:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:37 2023 by rpki-client on console-fra.rpki-client.org