Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/LnGuT_d6QBwqmLLzdW9eBpa5zBY.roa
File: LnGuT_d6QBwqmLLzdW9eBpa5zBY.roa (raw, json)
Hash identifier: B35mc+AGuD5dtxYt5rWhJJ4Kqann9MxfziFN32Lda6k=
Subject key identifier: 2E:71:AE:4F:F7:7A:40:1C:2A:98:B2:F3:75:6F:5E:06:96:B9:CC:16
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01910B2D
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/LnGuT_d6QBwqmLLzdW9eBpa5zBY.roa
Signing time: Thu 20 Jan 2022 08:12:50 +0000
ROA not before: Thu 20 Jan 2022 08:12:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209642
IP address blocks: 2a0c:b641:740::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26282797 (0x1910b2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 20 08:12:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e71ae4ff77a401c2a98b2f3756f5e0696b9cc16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d2:af:39:98:63:2c:a7:b2:e9:25:c3:2e:c5:
02:ad:be:0e:6a:a4:55:5e:f7:a5:a7:36:4a:50:e6:
8a:e4:33:21:23:0a:d5:a2:2e:44:0f:ec:81:81:25:
1e:33:56:09:3b:76:9e:36:b3:a3:7c:64:c5:06:e1:
f4:4d:93:44:f6:a9:6b:9c:4a:e0:de:89:a6:91:ca:
7b:e6:90:20:54:33:ff:d7:53:44:e0:4a:f2:f4:bd:
c1:bd:81:09:63:1f:9e:0c:c2:b7:1b:e8:a3:0a:f1:
fc:dd:b0:39:54:e6:47:df:3b:d9:b8:58:2e:4d:61:
8e:e5:25:75:05:ec:95:48:66:49:30:0b:67:77:cc:
e2:26:44:5d:a1:3d:2c:73:3c:d6:21:58:6f:c5:16:
fe:d7:1e:4b:07:62:d9:a2:ca:95:46:3e:fc:51:5a:
cf:bb:7f:3b:5e:cd:a7:8d:52:e1:36:34:02:3e:48:
c9:2e:41:98:37:91:9d:a9:16:87:0b:9f:41:fb:92:
c4:f1:e5:3b:37:43:04:2c:08:33:73:63:1c:31:f6:
8e:2c:ca:52:33:be:95:4b:78:62:28:f0:4f:2f:92:
60:f7:97:bc:a4:ec:97:d6:c6:73:1e:9a:f3:4f:35:
d3:f8:4d:64:c0:77:87:03:a9:ba:76:52:25:7b:f3:
2f:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:71:AE:4F:F7:7A:40:1C:2A:98:B2:F3:75:6F:5E:06:96:B9:CC:16
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/LnGuT_d6QBwqmLLzdW9eBpa5zBY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:740::/44
Signature Algorithm: sha256WithRSAEncryption
75:03:a1:76:81:8b:8c:33:7a:a8:c6:2f:04:f2:33:4d:28:a0:
e6:0e:9f:c4:2c:90:31:c8:78:72:56:e3:94:9e:08:97:95:c8:
bc:5d:4b:79:60:a4:37:68:cd:c5:07:e7:03:cf:f9:d7:cd:d3:
d1:f1:05:4d:4f:7d:9c:22:00:c3:52:41:9a:8c:3a:3e:a4:72:
a2:7f:97:9b:42:2e:17:86:da:57:d3:1c:80:39:b6:ea:b6:8d:
e7:7c:5a:57:c1:b2:46:d4:eb:63:f6:58:d3:e4:66:1c:89:4b:
cc:d3:2f:9e:b5:67:0e:c7:75:a2:36:8f:37:40:36:9d:af:4c:
cf:dd:53:fd:5d:e8:7a:9d:c0:b4:ab:ac:df:31:7b:00:98:68:
8c:d3:d5:07:3d:29:2c:a9:92:7c:ae:46:23:5b:5d:97:8c:80:
ed:97:8c:4e:9b:02:ab:f0:4b:59:5b:a7:ae:92:22:8c:e6:0e:
16:fe:d9:e8:79:89:68:bc:a9:91:2e:63:d2:c9:cd:5e:0a:49:
77:8c:bc:ce:f7:52:c1:ba:b9:ad:06:78:70:dc:03:fa:21:09:
f8:6d:18:5b:fb:d7:e1:6e:c9:a5:34:75:5c:a7:c2:1a:d9:10:
98:34:5d:8f:2f:6b:5d:7e:8e:77:12:69:f8:b9:22:9c:70:99:
ca:5f:d4:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:38 2024 by rpki-client on console-ams.rpki-client.org