Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/DHih1xW3alwtywmkp04sRllxrd8.roa
File: DHih1xW3alwtywmkp04sRllxrd8.roa (raw, json)
Hash identifier: lLzEQAs4gP/MunUJaMH/s2fZE1ddXda+Txq2dzWlVTI=
Subject key identifier: 0C:78:A1:D7:15:B7:6A:5C:2D:CB:09:A4:A7:4E:2C:46:59:71:AD:DF
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 1381D42F
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/DHih1xW3alwtywmkp04sRllxrd8.roa
Signing time: Thu 07 Apr 2022 11:10:45 +0000
ROA not before: Thu 07 Apr 2022 11:10:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 138211
IP address blocks: 2a0e:b107:580::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 327275567 (0x1381d42f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Apr 7 11:10:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c78a1d715b76a5c2dcb09a4a74e2c465971addf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:cf:7c:ef:45:cc:b4:bd:08:07:1a:be:54:2a:
77:b7:05:72:46:60:0e:26:7f:bd:00:ba:96:b1:c2:
33:01:ca:44:74:4d:08:ae:56:7b:25:b6:80:93:0e:
ee:b4:c9:20:54:4c:17:85:49:c3:5d:2f:08:9b:e8:
e4:cb:6d:7f:61:92:a6:f3:14:7d:36:ce:e3:d7:37:
66:a4:1b:4e:90:7a:14:96:60:31:cc:15:1d:e6:75:
e2:d3:1c:b6:4e:e5:b7:48:27:65:ed:04:88:70:bf:
e0:b3:0b:64:55:63:ca:aa:04:a8:b5:9c:8d:ff:6c:
89:3d:b6:1d:ba:ee:96:cc:12:b4:b7:3d:91:24:8d:
4d:d9:86:9b:38:ec:93:9a:c4:bb:47:50:d2:2e:bc:
70:89:ca:8e:1b:4e:b9:f3:3c:b8:1a:0b:33:22:58:
16:42:fc:27:4a:04:2b:74:16:9b:b5:d4:76:63:e7:
ab:d3:5a:6e:12:79:50:6f:c0:72:3e:2f:da:9e:56:
e8:16:7b:78:cd:29:46:fd:4d:7c:64:9e:4a:1f:6c:
40:f3:eb:55:b2:cd:35:4f:86:ed:d0:45:10:c9:3f:
b7:99:61:54:31:49:b9:bb:85:a5:6c:d4:bd:b3:fe:
8a:2f:23:0e:77:16:44:46:53:e3:e0:74:66:00:d2:
d9:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:78:A1:D7:15:B7:6A:5C:2D:CB:09:A4:A7:4E:2C:46:59:71:AD:DF
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/DHih1xW3alwtywmkp04sRllxrd8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:580::/44
Signature Algorithm: sha256WithRSAEncryption
b8:64:3a:ac:5e:7a:29:7b:79:a1:12:26:cd:5b:c5:ce:00:72:
cc:af:74:9a:c4:26:8a:7d:96:a3:8c:ed:4f:db:bf:66:76:d3:
b5:7c:6d:54:4f:5a:3d:69:53:f1:9d:08:6a:fa:5c:c9:2c:db:
36:fb:af:b4:54:8a:24:99:2e:e2:ec:f8:f5:a8:fb:61:aa:9f:
e6:bf:b5:a9:19:ff:45:75:51:5e:e7:5a:2a:bb:5b:41:c8:0d:
c3:d8:ea:8b:82:2c:03:51:45:81:00:16:41:53:58:99:af:5f:
51:37:a7:d0:42:c9:d1:bc:e3:06:14:62:fe:7f:c4:f5:c7:66:
ec:99:ef:eb:b8:86:cb:4b:3a:17:b5:4c:52:1b:29:79:13:0d:
59:1e:06:34:9b:e7:e6:35:1a:47:2a:de:d5:30:5e:6e:47:35:
8c:f8:8d:48:81:a8:23:79:41:77:be:62:cc:04:a1:95:32:e6:
9c:3b:2c:ff:ec:b8:18:10:f8:e8:e5:d1:a6:28:40:43:da:6b:
67:c3:a5:50:ef:74:76:0b:2a:4d:2a:b5:ac:3f:04:a9:f0:f8:
c9:1e:f6:b1:1f:60:df:51:be:c8:6e:42:a4:fe:cf:79:6e:ae:
58:83:21:88:9c:1a:3c:9d:08:b7:56:c1:75:15:71:e1:41:65:
d3:87:d2:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:57 2024 by rpki-client on console-ams.rpki-client.org