Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/RwVsN4KLOeyPe9cNoXY5uzijgKk.roa
File: RwVsN4KLOeyPe9cNoXY5uzijgKk.roa (raw, json)
Hash identifier: 6mMhvRST57h66ntm4dOdkGOkvKSp1UoB1wb3OW3dNZ8=
Subject key identifier: 47:05:6C:37:82:8B:39:EC:8F:7B:D7:0D:A1:76:39:BB:38:A3:80:A9
Certificate issuer: /CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Certificate serial: 0A07D47D
Authority key identifier: E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/RwVsN4KLOeyPe9cNoXY5uzijgKk.roa
Signing time: Sat 01 Jan 2022 05:03:27 +0000
ROA not before: Sat 01 Jan 2022 05:03:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50801
IP address blocks: 2a0d:2146:be00::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168285309 (0xa07d47d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Validity
Not Before: Jan 1 05:03:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=47056c37828b39ec8f7bd70da17639bb38a380a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:b1:60:7e:0e:40:5c:f7:b8:66:af:f5:0b:9f:
79:dc:90:10:00:01:53:f8:93:1b:21:61:e3:8c:0a:
1c:48:b2:4e:2d:9d:c0:13:72:99:b8:ac:6b:0c:58:
be:d9:3b:ee:b0:dc:a4:87:ca:78:61:85:92:bf:f0:
47:87:8c:d6:e4:72:ed:97:a9:dd:bb:ca:1c:66:1f:
a7:bf:d7:1f:43:bc:ea:a0:60:f0:e6:1f:f9:83:e9:
7d:16:0f:fe:79:d5:92:9c:ac:d8:29:dc:5b:f0:ab:
0b:e5:fb:d4:d2:86:8c:ef:14:fa:47:33:b9:d1:6d:
19:8f:75:0e:13:19:9c:62:d4:a8:75:a4:9f:bf:59:
df:d6:60:19:2b:0e:38:8e:ca:02:f4:1a:b1:90:a3:
fb:f6:61:81:bb:52:2b:6e:04:94:96:fe:86:47:75:
b6:16:08:20:cf:2a:43:b9:8d:c2:46:f7:a4:92:fb:
93:8d:ab:7a:b1:7d:0a:45:82:cd:63:ba:42:de:3d:
1e:f0:8a:69:d1:07:88:70:27:b1:aa:43:74:06:b9:
f2:d7:ed:47:26:1d:46:df:31:11:11:a1:e8:68:e1:
88:35:f5:76:80:9c:fe:71:b1:d8:8d:da:a5:89:fc:
10:1e:53:b2:51:2c:5c:0b:1f:38:60:78:a1:ae:3a:
a9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:05:6C:37:82:8B:39:EC:8F:7B:D7:0D:A1:76:39:BB:38:A3:80:A9
X509v3 Authority Key Identifier:
keyid:E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/RwVsN4KLOeyPe9cNoXY5uzijgKk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/4UrGEWFN0WXZRVcpbtftRsj8Al8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2146:be00::/40
Signature Algorithm: sha256WithRSAEncryption
69:79:38:b1:46:d5:ec:26:a3:c8:3d:f7:1d:9c:a1:c3:ef:7b:
d2:76:36:25:25:22:d5:f1:94:91:bc:9e:20:3b:b5:66:32:bf:
86:82:80:18:24:c0:a7:d2:74:0b:4a:69:74:46:8e:45:54:31:
33:45:10:f8:59:5c:fe:36:4f:d6:77:45:43:71:1c:50:53:c2:
77:59:04:78:1a:f6:87:c8:f8:39:f2:e3:32:3b:b7:e8:c3:3a:
72:60:94:c0:8c:96:6a:a8:70:78:03:62:89:ba:5d:5d:e1:45:
47:68:91:5b:df:da:77:3c:48:e4:19:a9:44:e5:46:eb:85:3a:
cd:e7:ef:32:d9:5a:5b:01:12:86:06:9d:58:5c:d1:1f:6e:ce:
13:40:7e:90:1b:0e:a7:9f:98:6c:2f:07:50:f9:4e:1b:1d:2b:
44:7f:f7:8b:2e:86:cc:d4:0f:0f:24:36:4c:50:f4:16:0e:5f:
7a:5b:ee:da:88:b1:79:0a:d4:cc:84:76:27:f8:5f:81:b3:19:
dc:ea:84:27:8d:45:60:3a:bf:a2:6a:4a:37:2d:fe:2f:60:71:
01:f3:cb:68:bf:23:34:9b:fe:c8:f3:79:42:5d:73:40:a3:a9:
73:54:af:4e:b7:5d:a1:19:fc:13:b8:7b:74:79:95:fa:ae:26:
b4:76:ed:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:39 2024 by rpki-client on console-ams.rpki-client.org