Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/bf9e51-cc2b-4ff4-86ac-2f7e52fb8bd3/1/3uWBbPHW1Zsfl761wlWP5LTF5mU.roa
File: 3uWBbPHW1Zsfl761wlWP5LTF5mU.roa (raw, json)
Hash identifier: Gcl4aHpARP0g+7MZF9PXFmHipoEa0iEza3Kkt+lhrNc=
Subject key identifier: DE:E5:81:6C:F1:D6:D5:9B:1F:97:BE:B5:C2:55:8F:E4:B4:C5:E6:65
Certificate issuer: /CN=6d3006dcd289c47f9f58e128eb29757239144bb6
Certificate serial: 018292C1FC727E041DCD2492E7AF291B656F
Authority key identifier: 6D:30:06:DC:D2:89:C4:7F:9F:58:E1:28:EB:29:75:72:39:14:4B:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bTAG3NKJxH-fWOEo6yl1cjkUS7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/bf9e51-cc2b-4ff4-86ac-2f7e52fb8bd3/1/3uWBbPHW1Zsfl761wlWP5LTF5mU.roa
Signing time: Fri 12 Aug 2022 15:52:42 +0000
ROA not before: Fri 12 Aug 2022 15:52:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204778
IP address blocks: 2a13:2180::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:92:c1:fc:72:7e:04:1d:cd:24:92:e7:af:29:1b:65:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d3006dcd289c47f9f58e128eb29757239144bb6
Validity
Not Before: Aug 12 15:52:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dee5816cf1d6d59b1f97beb5c2558fe4b4c5e665
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:bc:a8:dc:8d:47:10:8c:44:22:27:77:7a:58:
c4:3b:77:5b:52:f6:69:3c:e3:d5:25:ef:76:87:b7:
21:b0:1d:78:1b:c2:da:c6:29:8f:05:28:82:50:16:
83:d8:1c:b0:c2:12:6e:a6:ad:f0:63:80:d1:9c:53:
ee:4c:80:b2:5e:74:eb:7b:c3:4c:0a:35:a0:f7:3c:
6d:3b:1a:e5:c0:01:da:fe:2d:30:39:d5:4d:2f:c8:
85:3a:94:9f:e9:e2:c8:ad:b2:73:2d:60:4c:de:f7:
53:71:61:15:53:04:77:bd:2d:f2:c7:b7:9a:39:c5:
10:26:83:25:69:5f:4b:3f:4e:61:74:37:a1:3b:eb:
3c:33:53:50:29:0a:d5:8c:cf:c3:a9:33:4b:fb:9e:
38:bc:0f:22:e5:85:f3:db:a5:1c:28:d0:01:b3:ac:
f6:1a:74:93:73:f2:35:60:f0:68:70:a6:7b:a5:5d:
34:cf:fc:17:84:93:be:92:73:f3:81:94:52:15:52:
b3:bd:d9:12:34:4e:9e:5e:1c:7b:94:ed:c9:a6:ec:
7c:03:6f:73:ec:1f:13:23:fd:12:c5:b5:ff:41:fc:
b7:d0:0f:fc:ab:db:23:28:60:ad:6f:00:93:db:32:
db:6d:c8:e7:54:2e:32:1d:6c:07:69:59:70:90:5c:
da:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:E5:81:6C:F1:D6:D5:9B:1F:97:BE:B5:C2:55:8F:E4:B4:C5:E6:65
X509v3 Authority Key Identifier:
keyid:6D:30:06:DC:D2:89:C4:7F:9F:58:E1:28:EB:29:75:72:39:14:4B:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bTAG3NKJxH-fWOEo6yl1cjkUS7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/bf9e51-cc2b-4ff4-86ac-2f7e52fb8bd3/1/3uWBbPHW1Zsfl761wlWP5LTF5mU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/bf9e51-cc2b-4ff4-86ac-2f7e52fb8bd3/1/bTAG3NKJxH-fWOEo6yl1cjkUS7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:2180::/48
Signature Algorithm: sha256WithRSAEncryption
44:35:f1:fb:b2:29:f3:51:03:47:cf:1b:c1:d3:3e:be:18:36:
c6:2f:38:7e:d4:97:e6:09:4b:61:ab:cf:62:fa:b2:fe:70:a8:
27:a3:d5:b7:89:47:db:61:0f:cd:5a:f2:a5:fe:8a:d9:db:f8:
ee:15:3b:40:bc:be:66:6f:0e:d7:f5:02:f3:8c:2b:05:7a:69:
7e:65:97:c4:49:95:d1:0a:92:36:d7:f6:1e:f1:2c:2c:fc:da:
e3:40:25:d6:6f:13:d1:ee:11:0c:f9:a6:8f:a8:60:f5:47:bd:
04:d2:ad:ea:e6:49:ef:b0:d1:2c:65:57:f6:c3:c5:57:73:8b:
29:62:7a:91:82:ee:30:eb:b9:fb:2e:d6:fd:47:71:95:08:3d:
9a:25:86:13:3e:75:dc:fb:8a:6a:ab:c0:30:c2:f9:50:cb:81:
7d:15:9d:f9:b2:58:a2:0c:7d:45:e5:b3:00:aa:58:88:60:2a:
43:7f:57:ef:20:cb:a8:fc:f0:2f:2d:14:4d:7d:f3:f9:77:49:
ef:c7:3a:72:df:4c:75:7e:cc:77:b4:1e:ec:03:b4:b7:d0:11:
50:68:c7:7e:4a:64:1b:01:b7:25:c8:33:98:ed:ed:8c:d3:0d:
f0:fb:8e:19:5d:f7:86:73:74:2e:47:f5:6a:8f:22:46:32:75:
f1:71:85:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:50 2024 by rpki-client on console-fra.rpki-client.org