Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/e792b0-0f79-4fa2-a5cb-94dbf3fd0e2d/1/lQgyUacseIfv7zMiT4Qsd4VQmW0.roa
File: lQgyUacseIfv7zMiT4Qsd4VQmW0.roa (raw, json)
Hash identifier: dMupQ3x8ZlOGOcsQwC72uZ4vWthC2VfzrpSXGCvXzTo=
Subject key identifier: 95:08:32:51:A7:2C:78:87:EF:EF:33:22:4F:84:2C:77:85:50:99:6D
Certificate issuer: /CN=0a4a861d7c14b4ca5e6d1c7d60aaeeb32ea8ef61
Certificate serial: 018511557C031DE69F10A494CDC0E94C7CF9
Authority key identifier: 0A:4A:86:1D:7C:14:B4:CA:5E:6D:1C:7D:60:AA:EE:B3:2E:A8:EF:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CkqGHXwUtMpebRx9YKrusy6o72E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/e792b0-0f79-4fa2-a5cb-94dbf3fd0e2d/1/lQgyUacseIfv7zMiT4Qsd4VQmW0.roa
Signing time: Wed 14 Dec 2022 15:51:32 +0000
ROA not before: Wed 14 Dec 2022 15:51:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12540
IP address blocks: 212.64.160.0/19 maxlen: 24
2a0d:fc0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:11:55:7c:03:1d:e6:9f:10:a4:94:cd:c0:e9:4c:7c:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a4a861d7c14b4ca5e6d1c7d60aaeeb32ea8ef61
Validity
Not Before: Dec 14 15:51:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95083251a72c7887efef33224f842c778550996d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1b:d4:f0:41:13:c2:a1:49:d3:0a:4f:0c:37:
48:66:3c:16:f4:ff:2f:cc:38:4e:54:47:a3:95:a4:
35:a2:06:91:86:2f:64:f4:46:18:da:cf:92:78:4a:
91:31:74:a6:16:12:76:53:3d:84:c8:3a:bc:91:63:
eb:08:5a:74:96:0b:00:d2:b1:5f:55:22:cb:06:30:
28:a2:46:33:f9:fd:19:c9:f1:46:08:46:08:a0:e9:
f6:1e:f3:a3:51:b1:65:1f:24:38:56:e7:6d:1c:46:
aa:d8:12:cb:74:39:af:87:cd:bd:1c:43:64:66:26:
3e:75:67:22:a5:26:68:0f:9d:31:4d:b9:25:e3:c1:
a2:f1:27:f9:b2:a6:61:33:fd:fc:cd:80:f6:19:45:
43:4b:cb:08:6e:87:fc:be:65:14:6d:c2:0f:d8:55:
b6:6d:d1:f7:1d:a4:2c:a9:3e:d8:e5:e1:a6:58:42:
bf:1b:d1:95:47:12:eb:d3:23:43:28:a6:15:aa:2d:
1d:24:c8:25:78:bb:03:78:5d:f1:af:a2:05:4b:68:
17:26:4a:9b:19:08:f4:78:75:37:21:18:0f:b8:d5:
bd:e9:af:3f:2c:8c:d2:64:8c:22:53:b2:87:23:3e:
57:d7:13:11:7e:d1:3f:45:41:16:4d:10:fd:01:f1:
03:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:08:32:51:A7:2C:78:87:EF:EF:33:22:4F:84:2C:77:85:50:99:6D
X509v3 Authority Key Identifier:
keyid:0A:4A:86:1D:7C:14:B4:CA:5E:6D:1C:7D:60:AA:EE:B3:2E:A8:EF:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CkqGHXwUtMpebRx9YKrusy6o72E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/e792b0-0f79-4fa2-a5cb-94dbf3fd0e2d/1/lQgyUacseIfv7zMiT4Qsd4VQmW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/e792b0-0f79-4fa2-a5cb-94dbf3fd0e2d/1/CkqGHXwUtMpebRx9YKrusy6o72E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.64.160.0/19
IPv6:
2a0d:fc0::/29
Signature Algorithm: sha256WithRSAEncryption
0a:4b:f5:a6:b3:56:85:08:d3:6a:45:55:3c:f7:e4:3c:73:d5:
43:eb:4e:43:83:9c:09:02:4d:a3:1d:12:db:22:2d:93:ca:a7:
45:cd:d5:ba:42:22:72:b1:d3:3a:97:82:cb:d4:f2:d2:79:93:
bb:03:18:83:fb:20:d6:51:a9:b4:31:70:41:97:65:99:a9:c3:
ed:80:75:ea:89:ae:64:46:67:06:a6:ae:08:85:5f:88:b9:f7:
e2:04:7e:98:2a:22:e7:85:38:c5:f5:a7:62:96:c9:47:67:ac:
75:99:ed:0e:2c:38:83:86:92:52:63:6b:ae:89:b0:27:6f:61:
28:e9:4b:ac:82:88:98:11:82:4c:2a:b7:2b:40:60:bf:8c:6f:
94:de:ca:27:10:1e:39:77:68:4c:93:ad:82:77:5c:7e:4f:94:
39:2f:68:e4:43:4e:57:9d:49:ec:80:94:27:bf:28:aa:80:36:
bb:57:f9:4b:11:b7:fa:0c:79:94:94:7a:4c:10:90:2c:07:17:
25:f7:f0:8a:af:32:21:68:77:f1:af:57:f6:ec:6e:f1:7e:0d:
d3:92:fc:72:15:f7:f9:c3:5d:e7:90:91:a5:9e:71:46:32:33:
e2:7d:aa:f9:79:e2:a0:ef:ce:13:66:9c:63:12:82:c5:e8:1b:
62:ef:2b:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:43 2024 by rpki-client on console-fra.rpki-client.org