Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/19NyllWZbTs6y4w8k1tHP6DTEYQ.roa
File: 19NyllWZbTs6y4w8k1tHP6DTEYQ.roa (raw, json)
Hash identifier: YdYDP+ORPRJM/lcHHtxyMZRB7g7zxTM5Z7GfoW+ZbH4=
Subject key identifier: D7:D3:72:96:55:99:6D:3B:3A:CB:8C:3C:93:5B:47:3F:A0:D3:11:84
Certificate issuer: /CN=c228348e9054973d7a5f8193bd4e5c44f67399e1
Certificate serial: 0FBB1368
Authority key identifier: C2:28:34:8E:90:54:97:3D:7A:5F:81:93:BD:4E:5C:44:F6:73:99:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wig0jpBUlz16X4GTvU5cRPZzmeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/19NyllWZbTs6y4w8k1tHP6DTEYQ.roa
Signing time: Sat 01 Jan 2022 09:57:04 +0000
ROA not before: Sat 01 Jan 2022 09:57:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44592
IP address blocks: 2a05:b0c6:5c1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 263918440 (0xfbb1368)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c228348e9054973d7a5f8193bd4e5c44f67399e1
Validity
Not Before: Jan 1 09:57:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7d3729655996d3b3acb8c3c935b473fa0d31184
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:4a:b8:1e:22:dc:0c:e6:f3:fd:e5:8e:c1:f1:
84:17:35:a6:93:b7:fb:ba:8d:3f:20:95:d5:e7:e3:
cc:10:98:c4:4d:75:bf:51:19:79:75:ba:a7:c1:ba:
71:78:10:68:3d:66:40:1d:a7:7f:bf:65:e0:60:59:
09:4e:9d:3a:2d:8c:28:84:ec:5d:b2:f7:e0:3b:2c:
ea:18:5a:b3:b1:53:8b:56:be:79:96:52:fd:06:4b:
c3:55:14:c6:0e:65:19:c2:8b:c5:ce:58:da:dd:60:
33:ee:19:1b:59:10:bb:a2:13:20:45:3a:e6:39:21:
6d:20:52:f6:a6:48:81:93:33:d6:af:86:d1:9a:02:
43:cc:96:03:c3:19:24:37:2d:e1:c6:1e:75:88:e1:
8f:75:6d:3b:ba:c1:39:0a:c9:36:94:c3:38:35:59:
a1:91:34:2b:39:76:87:ec:bf:ef:68:b1:72:ac:d6:
a2:81:89:01:78:99:85:8c:5d:7a:e4:2c:5e:7e:f8:
6a:0c:90:03:93:00:3c:3e:04:03:3e:1b:dd:3d:72:
85:4a:85:c4:61:8c:b8:67:b8:e6:ab:22:b8:07:81:
dc:f5:13:86:be:d7:8a:13:9f:a8:7d:22:10:cc:34:
c3:77:9e:14:c6:f8:69:34:78:fb:72:78:a7:12:a4:
43:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:D3:72:96:55:99:6D:3B:3A:CB:8C:3C:93:5B:47:3F:A0:D3:11:84
X509v3 Authority Key Identifier:
keyid:C2:28:34:8E:90:54:97:3D:7A:5F:81:93:BD:4E:5C:44:F6:73:99:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wig0jpBUlz16X4GTvU5cRPZzmeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/19NyllWZbTs6y4w8k1tHP6DTEYQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/wig0jpBUlz16X4GTvU5cRPZzmeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:b0c6:5c1::/48
Signature Algorithm: sha256WithRSAEncryption
2a:8d:fd:aa:62:af:0f:3b:27:24:28:37:e7:46:80:bd:b9:22:
73:e0:e1:41:54:b1:cf:ad:13:42:d2:d7:97:94:85:f8:80:17:
ed:4e:9f:41:7d:51:cd:cb:68:99:17:99:ba:d5:9c:ff:cc:3c:
64:2b:0d:df:65:64:cf:f0:eb:2b:a0:d1:63:29:1f:7e:3f:49:
eb:d4:9b:6e:5b:24:4b:e8:4a:1c:ab:95:ad:03:4e:10:ce:23:
ec:3a:c8:7e:79:80:d2:9e:27:07:dd:07:6a:45:89:d0:39:78:
79:72:be:5a:8b:b5:55:44:cb:3d:f3:df:6e:06:b9:1d:f5:aa:
b5:f2:78:cd:c4:5e:5f:92:86:23:d6:64:a9:98:f4:60:e8:46:
14:2a:59:6b:d5:31:53:8b:65:7e:10:b0:9f:6f:ba:0f:8f:b0:
42:66:ed:9c:ea:87:2c:f8:9d:90:f2:50:cc:b2:55:44:7b:6c:
06:c4:78:7f:a7:6a:56:60:86:df:61:b2:ed:af:1a:b2:8c:e1:
87:eb:9d:f7:5d:61:b5:24:4e:f1:89:27:d1:64:c8:f3:e2:c1:
41:64:ce:bd:ff:8d:4b:7d:1e:a2:f7:09:c2:de:e4:23:58:eb:
bc:f0:df:c7:a1:67:ea:72:1c:fc:bf:31:b1:82:35:6c:6c:c3:
10:0e:c8:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:21 2024 by rpki-client on console-fra.rpki-client.org