Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/10393d-a030-4af5-8995-8f2d6684c814/1/5kbA-WlAeQVZvAEda_SFsNLJvBU.roa
File: 5kbA-WlAeQVZvAEda_SFsNLJvBU.roa (raw, json)
Hash identifier: wf2GcxM1Gz8mSQk88Yhwaa+WH7zHvOyRaexxwXxoJjA=
Subject key identifier: E6:46:C0:F9:69:40:79:05:59:BC:01:1D:6B:F4:85:B0:D2:C9:BC:15
Certificate issuer: /CN=1c864813c0862e6b4756f8dfda8957c6aeac6654
Certificate serial: 0C86A3AE
Authority key identifier: 1C:86:48:13:C0:86:2E:6B:47:56:F8:DF:DA:89:57:C6:AE:AC:66:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HIZIE8CGLmtHVvjf2olXxq6sZlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/10393d-a030-4af5-8995-8f2d6684c814/1/5kbA-WlAeQVZvAEda_SFsNLJvBU.roa
Signing time: Sat 01 Jan 2022 10:02:15 +0000
ROA not before: Sat 01 Jan 2022 10:02:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208333
IP address blocks: 2001:4d78:f200::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 210150318 (0xc86a3ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c864813c0862e6b4756f8dfda8957c6aeac6654
Validity
Not Before: Jan 1 10:02:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e646c0f96940790559bc011d6bf485b0d2c9bc15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:3c:f3:c5:73:ec:42:36:23:a6:5f:6a:d2:c5:
02:ec:1e:26:e8:01:b9:79:c3:86:6e:54:7e:91:c3:
75:0a:99:ae:c0:c4:c7:0b:e7:e2:fe:d7:51:97:a1:
f8:f8:32:d3:72:f0:bc:fb:67:1d:af:86:67:12:6c:
1b:92:b7:84:ca:dc:df:d0:30:c6:db:a6:a4:1a:44:
a2:f4:c3:30:6c:7d:23:5b:0f:6d:ea:45:45:42:7b:
17:85:d1:6d:68:bc:2e:64:c1:83:36:ba:1d:aa:21:
a3:ab:34:fa:fa:e3:a6:d6:47:e8:9b:e0:7d:3d:9e:
bd:47:71:4e:8f:e2:79:7c:03:d5:da:42:7c:55:31:
5e:96:bc:c9:39:7b:fe:c8:1b:b6:db:f1:58:01:d6:
fa:22:d3:1f:c1:7c:c1:f2:1f:00:4a:6b:3c:ac:2e:
82:26:61:2e:63:96:25:17:fa:f4:22:e8:2e:e7:6d:
97:68:f8:95:89:ff:75:a7:ce:19:36:b6:a1:9a:57:
22:27:4d:dc:41:1f:c3:ba:c4:d8:e2:14:8d:e1:b6:
ad:67:4e:e3:eb:4c:55:7c:97:51:72:a7:43:b1:ac:
51:e8:bd:98:e2:9c:78:77:db:fe:47:97:9b:bc:74:
6e:1d:27:65:02:75:33:5e:d6:37:94:d8:a0:c9:30:
fd:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:46:C0:F9:69:40:79:05:59:BC:01:1D:6B:F4:85:B0:D2:C9:BC:15
X509v3 Authority Key Identifier:
keyid:1C:86:48:13:C0:86:2E:6B:47:56:F8:DF:DA:89:57:C6:AE:AC:66:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HIZIE8CGLmtHVvjf2olXxq6sZlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/10393d-a030-4af5-8995-8f2d6684c814/1/5kbA-WlAeQVZvAEda_SFsNLJvBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/10393d-a030-4af5-8995-8f2d6684c814/1/HIZIE8CGLmtHVvjf2olXxq6sZlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:4d78:f200::/40
Signature Algorithm: sha256WithRSAEncryption
08:16:c1:29:56:e3:4f:6c:a3:9b:8f:cd:98:48:bd:23:f6:fd:
4e:87:d1:03:0d:f4:91:b8:8b:b4:c8:66:e0:f6:84:51:b4:08:
dd:3b:a5:6c:f9:22:9e:50:24:3f:37:43:10:50:a2:bb:4c:f6:
85:47:99:3b:c7:46:d4:64:3b:94:7e:d2:f4:99:ba:0a:2d:82:
a8:e2:16:4f:35:b0:57:c2:9e:a1:58:d5:1c:a1:c6:71:f3:09:
37:29:21:2e:63:db:08:e1:b3:2e:ea:78:85:03:35:9a:8b:03:
5c:3e:83:aa:76:a4:75:49:f6:82:fe:c0:ec:64:c7:a3:f9:2b:
84:bc:13:de:22:d0:d5:c4:4a:30:53:4f:70:7f:a9:56:8f:1a:
ae:94:7d:7a:65:04:e3:5d:d8:c1:00:66:1a:35:e9:2c:d2:13:
84:ce:a6:23:e5:7d:07:7d:95:2f:69:89:f3:bc:35:64:21:79:
7f:d5:9e:c1:40:84:66:7f:40:ca:15:d4:8a:46:e1:8b:17:bd:
3d:41:25:8b:dc:74:38:37:f4:50:db:d9:cd:6b:a5:2a:a8:04:
e0:c7:0f:29:da:74:e7:29:ff:6d:e7:78:b4:52:04:cf:81:90:
d7:89:72:e4:4e:ff:8d:7b:bf:30:24:d7:28:28:e2:27:69:41:
b3:b8:75:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:32 2024 by rpki-client on console-ams.rpki-client.org