Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/c00a5b-6a59-41dd-b13b-73495fc08fc4/1/bZug8l8S3hADZAW41-O6GTDxVL4.roa
File: bZug8l8S3hADZAW41-O6GTDxVL4.roa (raw, json)
Hash identifier: LFoJ0IYS4PzvPR/rvJjrRz/ipZvFD+oTDkQB3DDkljA=
Subject key identifier: 6D:9B:A0:F2:5F:12:DE:10:03:64:05:B8:D7:E3:BA:19:30:F1:54:BE
Certificate issuer: /CN=2ee6d560a08a013f3fe0e66dadaf6fd02beaf43f
Certificate serial: 1BE6DCD2
Authority key identifier: 2E:E6:D5:60:A0:8A:01:3F:3F:E0:E6:6D:AD:AF:6F:D0:2B:EA:F4:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LubVYKCKAT8_4OZtra9v0Cvq9D8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/c00a5b-6a59-41dd-b13b-73495fc08fc4/1/bZug8l8S3hADZAW41-O6GTDxVL4.roa
Signing time: Sat 01 Jan 2022 06:06:17 +0000
ROA not before: Sat 01 Jan 2022 06:06:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56448
IP address blocks: 2a03:4d47::/32 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 468114642 (0x1be6dcd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ee6d560a08a013f3fe0e66dadaf6fd02beaf43f
Validity
Not Before: Jan 1 06:06:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d9ba0f25f12de10036405b8d7e3ba1930f154be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:09:4c:c3:99:d8:4b:76:d2:46:29:48:b8:c3:
e8:81:95:45:6e:2c:11:e1:d8:8c:a1:b8:3a:b6:5f:
20:f0:3f:50:8f:d7:2a:e3:43:54:aa:3c:03:0e:7f:
1c:88:50:ce:4d:30:4a:6d:38:a6:e3:fd:e1:7d:a3:
9a:e2:bb:9b:9b:15:3f:c5:9f:78:92:c8:53:5d:5c:
d4:01:e3:e6:d7:78:8c:3e:58:03:bc:99:84:13:36:
e0:85:81:b0:cc:22:25:77:6f:1b:22:2b:72:ba:a9:
1d:e0:93:9d:d4:93:ae:95:5e:46:da:76:0b:7c:10:
92:85:fd:d1:ab:50:ee:9d:14:f5:20:7d:1f:10:5f:
aa:37:8c:e4:82:cb:3d:79:d0:d8:38:8f:21:f3:b5:
53:78:36:7f:72:a0:fe:6c:e8:ab:80:f4:5a:f8:89:
0f:e4:6a:b8:c5:f0:81:36:7f:b5:fe:93:ff:6b:9e:
35:c6:4e:7f:c8:49:6b:53:a3:4f:5b:60:61:38:40:
bb:26:c5:d6:e0:6c:bd:18:53:80:96:21:5a:02:4c:
fd:8d:7e:b9:60:46:30:21:2f:6f:ab:7a:e9:72:a1:
9f:26:57:04:7b:fb:7f:4b:6a:ab:6d:f5:ec:42:b6:
7e:1a:b1:55:9a:9f:d1:7f:1b:8e:f4:9d:b0:3b:a9:
cc:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:9B:A0:F2:5F:12:DE:10:03:64:05:B8:D7:E3:BA:19:30:F1:54:BE
X509v3 Authority Key Identifier:
keyid:2E:E6:D5:60:A0:8A:01:3F:3F:E0:E6:6D:AD:AF:6F:D0:2B:EA:F4:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LubVYKCKAT8_4OZtra9v0Cvq9D8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/c00a5b-6a59-41dd-b13b-73495fc08fc4/1/bZug8l8S3hADZAW41-O6GTDxVL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/c00a5b-6a59-41dd-b13b-73495fc08fc4/1/LubVYKCKAT8_4OZtra9v0Cvq9D8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:4d47::/32
Signature Algorithm: sha256WithRSAEncryption
13:82:5d:61:1b:18:d8:80:c3:7a:74:ac:b8:9b:6f:d8:d9:69:
44:75:11:b2:4e:20:9c:7a:60:67:b0:73:7d:9f:24:a3:1e:9b:
82:7a:d5:aa:58:93:6c:4e:a1:c8:27:84:b1:cb:04:c5:28:cd:
26:dd:b8:e4:ad:ac:9d:7a:15:cb:41:d6:86:b2:14:d0:88:1c:
11:39:6b:1b:6f:83:17:db:18:a4:90:cb:16:19:c8:22:41:61:
e9:b0:62:17:93:46:e0:a6:df:73:4a:02:d7:17:a4:cb:7b:76:
f1:cc:11:d0:23:1e:9d:69:53:8c:8c:96:27:c3:78:91:46:8d:
9d:18:bb:9c:01:e0:25:93:64:2c:51:72:b2:a5:43:7a:72:e1:
7e:2f:46:ec:59:54:bc:08:48:1f:a2:89:b5:8d:a6:e4:f4:0d:
da:2c:b3:0b:6d:62:e4:3e:1a:1f:11:7f:c1:86:52:33:41:02:
36:61:6c:00:16:00:5a:ee:cd:63:72:c7:3a:24:85:80:28:36:
5d:31:6d:5c:70:fb:d2:d3:6e:72:a0:7b:b8:df:40:65:77:1d:
60:8a:c6:07:fa:a6:b0:e3:bb:6b:a3:68:d4:f0:10:eb:d2:80:
9f:e3:f5:d4:d1:e9:d5:61:f2:9a:b4:b4:ed:04:5e:67:85:cf:
40:0f:a7:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:01 2024 by rpki-client on console-fra.rpki-client.org