Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/0TT_N59k1l2WWCqd9W8Nmmiq8l0.roa
File: 0TT_N59k1l2WWCqd9W8Nmmiq8l0.roa (raw, json)
Hash identifier: fMND6s1Rc3QDvH6ue7mUVrkJu4Oufy1c10CYLXCiUlQ=
Subject key identifier: D1:34:FF:37:9F:64:D6:5D:96:58:2A:9D:F5:6F:0D:9A:68:AA:F2:5D
Certificate issuer: /CN=5ae8c78f161397ae1dbd0ac322584f62fb740097
Certificate serial: 0D3E8881
Authority key identifier: 5A:E8:C7:8F:16:13:97:AE:1D:BD:0A:C3:22:58:4F:62:FB:74:00:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WujHjxYTl64dvQrDIlhPYvt0AJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/0TT_N59k1l2WWCqd9W8Nmmiq8l0.roa
Signing time: Sat 01 Jan 2022 09:00:40 +0000
ROA not before: Sat 01 Jan 2022 09:00:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57651
IP address blocks: 2001:78c::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 222201985 (0xd3e8881)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae8c78f161397ae1dbd0ac322584f62fb740097
Validity
Not Before: Jan 1 09:00:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d134ff379f64d65d96582a9df56f0d9a68aaf25d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:d3:23:91:a6:a7:fd:a6:44:a4:fc:53:8c:29:
ae:81:cf:fd:0d:14:d0:6f:cb:eb:82:21:fa:99:6b:
78:51:fd:be:df:af:54:fd:8d:01:d0:8e:45:c6:4a:
b2:b1:70:b2:00:e6:56:51:b2:9a:60:13:8d:0f:a6:
a4:d5:22:2c:d4:49:77:f5:91:4f:8d:bc:72:f6:53:
ec:4d:37:dd:c9:8c:1d:a9:0c:a9:af:1e:bb:73:0a:
b0:7f:2b:6c:60:ca:58:27:70:13:b6:d6:67:75:7f:
db:d9:76:5f:8d:e6:98:36:3b:f8:54:37:b2:c3:7f:
bc:6c:ce:ef:67:cd:57:66:0f:3f:69:9e:89:d5:5a:
2b:c5:4a:b4:20:90:55:02:d6:63:d0:21:24:87:28:
a5:51:de:9e:5b:95:62:15:da:61:72:ff:db:f5:9a:
5c:4f:0e:57:3f:7a:9a:2a:ed:67:88:2b:56:e4:fe:
4c:d7:0a:14:d2:91:2f:04:92:0f:db:ef:99:ef:a2:
1b:b3:92:13:2b:2b:82:21:1d:31:ed:39:60:9e:35:
6f:c0:3e:9b:7f:0b:e9:e8:c7:e2:7d:25:64:79:f4:
7d:3f:92:a1:ae:36:04:f5:5e:1d:ef:46:f3:b1:48:
62:83:57:d8:bf:b5:01:7c:3c:b0:84:de:49:da:a3:
ea:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:34:FF:37:9F:64:D6:5D:96:58:2A:9D:F5:6F:0D:9A:68:AA:F2:5D
X509v3 Authority Key Identifier:
keyid:5A:E8:C7:8F:16:13:97:AE:1D:BD:0A:C3:22:58:4F:62:FB:74:00:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WujHjxYTl64dvQrDIlhPYvt0AJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/0TT_N59k1l2WWCqd9W8Nmmiq8l0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/WujHjxYTl64dvQrDIlhPYvt0AJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:78c::/32
Signature Algorithm: sha256WithRSAEncryption
82:9c:6b:96:de:65:20:95:ff:6b:1a:0e:7b:42:39:ad:92:d1:
c5:bb:29:5d:cf:f7:0d:10:79:96:d2:19:29:b7:a3:12:f1:3d:
44:e8:19:f7:e3:68:df:b5:c1:76:d1:6e:df:e3:08:9a:a6:36:
bb:50:66:bc:2c:9b:b8:94:be:3d:9d:9b:f1:6a:83:56:25:8c:
02:c1:91:7c:8a:6f:15:8d:cd:9a:41:aa:6b:0e:e8:29:f1:7c:
a3:e3:a7:53:cd:f6:21:34:52:7e:91:fc:4a:ed:02:82:21:6e:
db:9a:3a:2b:43:d3:d9:28:81:c9:93:9f:c2:62:29:12:2a:68:
2d:ca:35:64:10:8e:0f:62:0f:81:36:31:b1:93:fd:45:58:7b:
e2:87:a4:02:76:6f:8c:45:59:2e:fb:00:9a:04:45:a6:03:97:
d6:c7:94:2c:7f:b5:76:ba:b9:b3:0b:ef:28:cb:e4:63:f9:3d:
ed:15:f1:90:b7:a2:42:74:e3:b2:97:6b:30:58:ca:90:24:db:
53:70:89:a2:37:8c:71:35:88:dd:bc:c3:78:a3:a1:34:b4:b4:
b6:89:d6:9d:18:be:91:6a:ea:a5:9a:89:1b:c8:a4:64:0c:1c:
ad:bc:34:36:77:c2:1b:1c:93:c4:0f:f5:e6:df:24:fa:73:4b:
56:9e:71:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:18 2024 by rpki-client on console-fra.rpki-client.org