Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/19XhoiX9TKf7hdjC_FcLks_Yemg.roa
File: 19XhoiX9TKf7hdjC_FcLks_Yemg.roa (raw, json)
Hash identifier: WUD6hE9C0ZO5gaNMxPFAX6vpnx3Hxw0zBbnh7Txz1aU=
Subject key identifier: D7:D5:E1:A2:25:FD:4C:A7:FB:85:D8:C2:FC:57:0B:92:CF:D8:7A:68
Certificate issuer: /CN=67ce179cbe13ddb14012985a067100ef98a55601
Certificate serial: 01850713C1C5082D5D75DEC71071FB3E8F85
Authority key identifier: 67:CE:17:9C:BE:13:DD:B1:40:12:98:5A:06:71:00:EF:98:A5:56:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z84XnL4T3bFAEphaBnEA75ilVgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/19XhoiX9TKf7hdjC_FcLks_Yemg.roa
Signing time: Mon 12 Dec 2022 16:03:33 +0000
ROA not before: Mon 12 Dec 2022 16:03:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213045
IP address blocks: 2a13:1c47:ffd0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:07:13:c1:c5:08:2d:5d:75:de:c7:10:71:fb:3e:8f:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67ce179cbe13ddb14012985a067100ef98a55601
Validity
Not Before: Dec 12 16:03:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7d5e1a225fd4ca7fb85d8c2fc570b92cfd87a68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:36:e2:6f:37:d8:a8:54:b1:9c:58:e7:d0:a3:
3c:83:54:81:d2:00:57:7a:8e:59:ee:11:d2:4f:2d:
74:09:03:b2:5f:db:ff:e5:32:83:0c:83:61:d2:88:
c1:09:d5:b2:00:88:31:5a:d5:72:36:11:3d:a4:c4:
ef:8f:d2:ee:40:b1:18:d6:26:99:a4:8a:9a:9a:97:
37:ee:1c:de:f7:ea:d2:38:9e:1c:96:ff:09:d5:61:
58:28:bc:d0:6e:36:3f:2f:a8:29:a4:df:b1:98:47:
5e:44:a3:a7:60:cc:4b:07:06:ea:a1:1a:98:6f:ac:
d5:5e:8a:f2:d7:72:97:77:19:48:ee:48:62:9b:03:
08:69:a0:bd:3d:11:81:00:ff:2e:ef:7f:bc:eb:9f:
7a:39:54:ed:e9:3f:d3:5c:b4:10:26:5b:1f:7a:89:
c4:a6:6d:61:55:8a:2d:21:b3:47:50:ad:22:08:22:
98:d3:f4:cb:6c:83:09:29:01:cd:8f:95:b9:7a:08:
78:74:0c:05:e7:04:8d:0f:94:0a:4e:10:d0:97:2a:
a2:7d:d6:a0:21:b8:3e:e8:be:f6:78:a5:fc:c4:56:
30:bd:dd:66:5e:80:3d:9e:57:25:1b:b6:4b:0c:bc:
9f:0c:35:41:a3:85:d0:1e:34:fd:cb:66:70:5b:af:
78:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:D5:E1:A2:25:FD:4C:A7:FB:85:D8:C2:FC:57:0B:92:CF:D8:7A:68
X509v3 Authority Key Identifier:
keyid:67:CE:17:9C:BE:13:DD:B1:40:12:98:5A:06:71:00:EF:98:A5:56:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z84XnL4T3bFAEphaBnEA75ilVgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/19XhoiX9TKf7hdjC_FcLks_Yemg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/Z84XnL4T3bFAEphaBnEA75ilVgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1c47:ffd0::/44
Signature Algorithm: sha256WithRSAEncryption
19:7d:d7:39:5a:d5:74:50:15:56:0d:79:cd:a6:09:1c:d7:61:
2e:28:57:19:2e:ce:47:56:b3:76:74:69:04:c0:34:43:1c:5f:
7a:06:4e:11:0e:1c:3d:0f:be:12:a4:66:de:ba:89:0d:0d:3c:
fa:71:08:2d:7f:c7:57:b3:52:98:a5:c3:45:ce:20:4d:9a:46:
a1:3c:e3:5a:7f:23:40:38:53:9d:df:be:83:32:a4:70:38:d6:
94:d0:d2:aa:20:42:29:7d:b7:f2:29:67:36:65:c5:2d:2d:64:
54:89:b0:e7:66:bc:2a:4b:6c:33:e0:28:e3:6e:a5:bd:41:77:
b1:db:a0:a5:fe:05:ac:d3:60:25:21:1c:63:85:a5:2b:f3:62:
93:20:b6:f1:c5:cc:9d:fe:b2:ca:ff:cc:b4:04:00:98:80:15:
d6:03:73:78:9e:cf:7b:82:6f:bb:3c:0c:f1:75:de:17:02:fb:
bf:28:ef:03:8e:d3:b5:fe:45:7d:92:38:ee:ee:d7:27:4c:c2:
94:c0:28:d2:50:52:5a:2c:20:45:bf:f3:69:fe:1f:5a:20:be:
17:b0:01:41:62:e1:26:4a:62:bc:73:84:30:80:07:2f:c5:f6:
5d:09:1a:26:66:91:ae:37:52:dc:48:72:07:7c:03:b3:46:62:
32:c8:9d:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:44 2024 by rpki-client on console-fra.rpki-client.org