Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/_HloBrvxDfflwsvv1G12iwfabGA.roa
File: _HloBrvxDfflwsvv1G12iwfabGA.roa (raw, json)
Hash identifier: D1YHsYpIadUDHa0xiUsdNLmAz1oRkmL82KusSWO9Scg=
Subject key identifier: FC:79:68:06:BB:F1:0D:F7:E5:C2:CB:EF:D4:6D:76:8B:07:DA:6C:60
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 010FA2D6
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/_HloBrvxDfflwsvv1G12iwfabGA.roa
Signing time: Sat 01 Jan 2022 00:59:35 +0000
ROA not before: Sat 01 Jan 2022 00:59:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61138
IP address blocks: 2a0c:b642:1a0e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17801942 (0x10fa2d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc796806bbf10df7e5c2cbefd46d768b07da6c60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f4:9f:56:b9:9c:fd:7d:86:6e:ca:e7:f2:82:
ba:74:60:f8:1e:b3:11:3d:c5:12:56:e0:88:37:4b:
f3:e9:7c:3f:07:01:66:2b:f4:75:4d:0f:00:36:48:
20:c1:b9:72:49:e3:0d:fc:cb:19:60:35:c4:e0:31:
fb:22:3c:2f:3c:9d:f6:67:db:48:d9:15:84:a8:4f:
34:57:34:6f:cc:03:5d:67:1b:e8:8e:d4:20:7b:c9:
e5:aa:7f:89:3c:ff:9d:39:e7:b5:a4:50:9a:c6:42:
38:0a:dc:03:0d:45:7d:2a:82:56:40:d3:1c:79:64:
c1:07:0d:43:a7:c5:5d:fd:e9:88:6b:ec:8f:a9:2d:
c0:3d:96:c9:25:ee:2d:5d:49:17:c1:8f:99:60:a1:
ea:bb:8b:2b:2a:bc:24:b4:79:2c:24:2e:d1:f6:e1:
6d:14:71:9d:36:e0:68:9a:62:87:c8:8b:0d:cc:30:
1c:2d:45:00:00:75:fc:da:48:aa:5b:61:84:cd:ad:
82:f2:6b:6f:c1:8a:b9:81:3b:e2:61:99:cb:0a:3f:
a3:df:65:5c:61:ef:d0:b1:e7:2c:fb:55:88:ea:bd:
b9:38:63:53:f4:ed:00:63:66:5a:e7:43:9d:62:83:
c5:05:a8:15:10:f3:c9:8f:35:65:6f:6f:fa:13:e6:
28:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:79:68:06:BB:F1:0D:F7:E5:C2:CB:EF:D4:6D:76:8B:07:DA:6C:60
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/_HloBrvxDfflwsvv1G12iwfabGA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b642:1a0e::/48
Signature Algorithm: sha256WithRSAEncryption
85:7b:5d:5d:79:45:8a:e8:21:27:55:4d:c1:99:4d:4e:8d:7a:
0d:a1:43:58:c7:1d:23:e8:47:c2:82:b3:5a:52:b3:32:84:f4:
b2:be:1b:26:83:be:4e:70:8c:fe:e5:98:89:c9:20:90:68:6d:
52:25:1a:3e:13:43:8e:e4:f0:03:36:63:0c:84:54:bb:7b:77:
9a:0e:b2:b9:fb:e4:72:05:18:f1:b6:cb:60:ed:d8:a3:04:50:
01:81:70:f1:9d:dd:4c:58:d5:8d:d1:e4:da:38:cb:b8:84:5e:
d3:6b:08:da:b8:88:9c:5a:d4:5e:48:e6:12:87:5a:d1:02:9c:
e7:bc:9f:cf:58:ed:1c:78:f1:cd:67:19:45:17:c6:72:52:7e:
c4:74:50:e3:ea:17:ff:98:a1:17:da:a7:21:30:d9:de:21:95:
7a:8b:8f:dc:95:70:b7:7d:1d:51:6d:d5:a2:1d:79:8e:f9:e1:
b3:d0:38:ee:ec:f5:91:ae:28:ed:cc:87:f0:23:16:04:ee:d5:
3a:12:25:e5:16:59:a5:f8:6f:2e:c3:8b:03:d7:4b:2c:38:35:
86:48:ee:6c:13:5e:9e:e4:fb:9e:53:95:0e:28:f5:06:c7:06:
ea:bf:bf:86:54:a9:cd:31:1f:9b:e4:b8:8c:92:32:1e:f3:8d:
24:ec:0c:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:37 2023 by rpki-client on console-fra.rpki-client.org