Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/X1cWtuxTpZtucgnADDBIVLzmCdA.roa
File: X1cWtuxTpZtucgnADDBIVLzmCdA.roa (raw, json)
Hash identifier: CywSJkM3d0eHxFy8I9Dnop9wYktvrZOW5uiuv4hc5gk=
Subject key identifier: 5F:57:16:B6:EC:53:A5:9B:6E:72:09:C0:0C:30:48:54:BC:E6:09:D0
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 02F30E43
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/X1cWtuxTpZtucgnADDBIVLzmCdA.roa
Signing time: Wed 08 Jun 2022 11:24:03 +0000
ROA not before: Wed 08 Jun 2022 11:24:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204767
IP address blocks: 2a0c:b641:8c0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49483331 (0x2f30e43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jun 8 11:24:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f5716b6ec53a59b6e7209c00c304854bce609d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c0:03:a4:43:ed:0f:c8:55:96:0d:2a:c7:23:
d7:94:22:cc:54:7d:d4:f6:95:59:72:ad:1a:6c:e5:
36:e0:bf:e7:72:e8:eb:46:0b:03:84:83:e0:29:66:
9f:fd:90:fe:ef:37:a0:b4:fd:e7:3d:a7:33:13:e8:
6c:79:8f:07:eb:58:3f:a7:f4:d3:65:8f:43:e8:94:
28:da:1d:94:42:96:9e:75:fb:3d:47:f5:35:6e:98:
20:08:06:d2:0d:57:f5:2e:c6:37:97:86:e8:2d:95:
b0:f6:90:6d:c8:c6:c2:60:2f:bc:6d:29:95:f6:e3:
c4:58:af:10:af:fa:07:3c:91:af:cb:99:9b:c2:93:
01:b1:04:f7:0d:96:17:3b:3e:5d:0d:77:3c:d3:fe:
82:ef:4e:8d:d1:5d:34:f5:f4:bd:82:50:7d:39:a6:
6b:f6:33:de:f8:3c:17:5c:c1:d5:fa:da:a8:3f:36:
39:c4:08:b3:89:1f:e7:3f:e4:79:2c:30:4f:f9:ba:
ce:7a:c5:99:5f:21:da:9e:92:f8:38:4a:77:a8:d5:
e1:dc:26:c1:df:09:1f:31:12:da:e2:7e:38:97:13:
50:4a:cb:6b:b1:db:5f:60:b8:35:0d:ba:aa:c0:7f:
9e:1c:04:50:7b:dd:af:35:53:84:b4:e9:66:1a:e2:
e6:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:57:16:B6:EC:53:A5:9B:6E:72:09:C0:0C:30:48:54:BC:E6:09:D0
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/X1cWtuxTpZtucgnADDBIVLzmCdA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:8c0::/44
Signature Algorithm: sha256WithRSAEncryption
69:74:eb:c9:a0:1b:05:ef:1a:ba:84:81:6f:02:e6:9f:c7:72:
a2:2d:1c:51:ec:04:e2:21:e7:0a:ba:7d:ad:c7:0e:25:0a:41:
5f:3b:fd:9e:bd:0f:c0:b5:49:20:54:c6:5f:24:37:6d:db:8a:
ce:8b:cf:57:eb:dd:33:18:38:9a:0e:07:46:5c:4a:22:8c:01:
41:d3:48:8f:2d:0f:06:91:f5:be:e1:4a:1c:37:9f:1a:37:21:
5e:27:d0:74:6b:6e:89:10:86:4b:79:97:d8:39:f4:3f:4f:ed:
f4:2c:93:85:db:1b:b3:28:5e:78:30:56:51:37:5f:4c:83:2d:
ba:aa:3d:10:08:66:3c:7c:89:24:b5:58:a2:60:71:78:41:0e:
de:c5:8b:15:40:0e:20:14:d8:36:dc:55:d2:93:92:94:37:16:
de:b7:a1:1f:ff:d1:e4:a2:9d:bd:e3:8a:81:61:8b:88:ea:04:
28:42:a8:24:1a:26:2f:32:ed:89:34:42:5b:ec:3d:1d:33:7f:
36:5d:f0:76:9c:61:94:91:c5:1d:80:79:1a:57:24:6c:10:ba:
51:ed:31:75:e5:7d:48:c5:87:86:bf:de:49:4e:34:50:d2:9c:
af:58:f2:65:e9:0e:91:f8:78:6d:38:d2:e1:a8:ab:da:ae:c4:
c8:9a:30:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:38 2024 by rpki-client on console-ams.rpki-client.org