Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/ea8170-0db3-4d02-aa8a-e744c5bef561/1/5CqA2vxcbQuLkjj0GYOuHN7xT9Y.roa
File: 5CqA2vxcbQuLkjj0GYOuHN7xT9Y.roa (raw, json)
Hash identifier: VYHKEcuiy8lKAlTUX5G3azdQpUGEbOXKd0PaEuSIHYU=
Subject key identifier: E4:2A:80:DA:FC:5C:6D:0B:8B:92:38:F4:19:83:AE:1C:DE:F1:4F:D6
Certificate issuer: /CN=c125ef4dc9d3ecdf486655c2dd231e9cbbb0a0b7
Certificate serial: 0A084DCE
Authority key identifier: C1:25:EF:4D:C9:D3:EC:DF:48:66:55:C2:DD:23:1E:9C:BB:B0:A0:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wSXvTcnT7N9IZlXC3SMenLuwoLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/ea8170-0db3-4d02-aa8a-e744c5bef561/1/5CqA2vxcbQuLkjj0GYOuHN7xT9Y.roa
Signing time: Sat 01 Jan 2022 02:57:06 +0000
ROA not before: Sat 01 Jan 2022 02:57:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209859
IP address blocks: 2001:67c:1768::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168316366 (0xa084dce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c125ef4dc9d3ecdf486655c2dd231e9cbbb0a0b7
Validity
Not Before: Jan 1 02:57:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e42a80dafc5c6d0b8b9238f41983ae1cdef14fd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:38:46:db:6c:eb:7c:2e:5e:f2:26:bc:6d:d4:
6c:94:ba:ed:c5:ec:f0:f6:05:c9:2d:3a:d5:c3:73:
77:a9:b2:2f:a8:79:ad:ef:e6:76:85:45:80:86:90:
26:4e:b6:34:ac:86:bc:28:cb:7e:72:ed:e9:e2:5f:
ca:61:7f:c8:41:5d:78:14:6f:9a:96:23:a5:b8:67:
e3:08:1f:72:57:45:5c:07:3d:52:b9:71:dc:13:9c:
d8:fa:37:71:19:44:e4:63:b7:59:bf:8b:a4:f4:3a:
00:30:4c:ab:59:bd:92:f8:f6:8b:80:a1:ad:a3:ca:
5f:d9:f7:7e:0c:0f:47:ea:7e:69:ff:76:b2:35:6c:
f4:44:ce:82:02:88:e4:5d:db:7b:f1:10:e3:03:4c:
d6:ab:80:29:53:7e:c2:eb:6b:06:b5:af:f5:dc:e6:
f0:3f:67:1b:32:00:c0:0e:76:e3:c3:f6:c4:ae:77:
bb:8b:1c:3c:7e:fb:da:bc:ec:f0:70:bf:28:98:63:
dc:58:56:3f:6b:f7:3d:0c:2f:c3:cd:bc:d1:9e:54:
7b:86:b1:93:d5:bc:a3:7e:da:8a:74:43:65:a5:81:
d9:85:1d:85:a7:7d:cf:cd:83:54:7c:6d:78:1e:0f:
bf:4d:21:a4:eb:3c:cf:4b:48:48:70:0a:e2:69:15:
62:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:2A:80:DA:FC:5C:6D:0B:8B:92:38:F4:19:83:AE:1C:DE:F1:4F:D6
X509v3 Authority Key Identifier:
keyid:C1:25:EF:4D:C9:D3:EC:DF:48:66:55:C2:DD:23:1E:9C:BB:B0:A0:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wSXvTcnT7N9IZlXC3SMenLuwoLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/ea8170-0db3-4d02-aa8a-e744c5bef561/1/5CqA2vxcbQuLkjj0GYOuHN7xT9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/ea8170-0db3-4d02-aa8a-e744c5bef561/1/wSXvTcnT7N9IZlXC3SMenLuwoLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1768::/48
Signature Algorithm: sha256WithRSAEncryption
90:47:6f:3c:dc:29:23:ad:a3:71:2a:e4:bd:3a:3d:67:82:7c:
ac:b5:b5:c0:89:5f:47:ce:6f:11:14:ff:20:13:e9:49:7e:fe:
bd:28:4f:95:b7:ff:d5:65:8a:74:e6:a1:bb:00:71:90:45:81:
e4:71:fc:d7:3c:39:2e:98:8c:74:3c:6e:50:8c:25:a3:c5:02:
db:3b:7d:c1:bd:ec:90:50:f2:5b:b6:40:ba:81:a7:47:4e:af:
ea:5c:e9:1b:5e:b0:32:cf:6d:2b:e8:26:2a:91:5d:4f:6f:a5:
16:3e:e6:99:6d:72:03:85:47:8d:18:e2:cd:62:1b:cb:67:ae:
63:52:dc:6f:47:80:e8:ec:cb:00:4a:5b:6d:6b:e0:c0:dc:94:
57:c0:d6:02:93:42:59:3e:6f:6d:18:35:75:a1:bd:59:0f:5b:
b6:78:95:82:3d:1e:cf:fb:a7:9a:80:46:b6:00:d1:f1:99:24:
ae:2d:cf:56:31:f6:be:d6:0a:a2:f0:b6:8e:80:6f:eb:bf:3c:
a4:2e:be:d5:8e:02:03:dd:e6:ce:3d:b7:25:12:fb:a7:fb:3e:
3b:3f:cd:ff:71:76:fd:d0:69:83:b7:90:8c:5b:b7:c1:82:39:
cc:b0:15:92:e5:54:51:09:98:91:71:ae:6c:d1:dc:58:4b:89:
81:bc:78:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:35 2023 by rpki-client on console-fra.rpki-client.org