Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/DrfWOmJIscf5d2b35P8si6LF--A.roa
File: DrfWOmJIscf5d2b35P8si6LF--A.roa (raw, json)
Hash identifier: 7nfl/FDN8Zh0qGaAI/nqUpL5Q+Wn1zqhpLHBrwUzUgs=
Subject key identifier: 0E:B7:D6:3A:62:48:B1:C7:F9:77:66:F7:E4:FF:2C:8B:A2:C5:FB:E0
Certificate issuer: /CN=67ce179cbe13ddb14012985a067100ef98a55601
Certificate serial: 0185071855D0673EF374444F379A08A2B4EB
Authority key identifier: 67:CE:17:9C:BE:13:DD:B1:40:12:98:5A:06:71:00:EF:98:A5:56:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z84XnL4T3bFAEphaBnEA75ilVgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/DrfWOmJIscf5d2b35P8si6LF--A.roa
Signing time: Mon 12 Dec 2022 16:08:33 +0000
ROA not before: Mon 12 Dec 2022 16:08:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51144
IP address blocks: 2a13:1c47:ffe0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:07:18:55:d0:67:3e:f3:74:44:4f:37:9a:08:a2:b4:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67ce179cbe13ddb14012985a067100ef98a55601
Validity
Not Before: Dec 12 16:08:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0eb7d63a6248b1c7f97766f7e4ff2c8ba2c5fbe0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ef:d1:3a:fa:f4:28:0e:63:ed:65:0c:9e:28:
5b:3c:94:11:5b:80:79:72:12:f0:63:95:97:b1:9d:
fb:d0:c5:ac:91:36:83:21:4e:08:4c:3e:14:f7:4d:
49:5c:1e:6b:b6:c0:9e:c0:9d:4e:81:dc:9b:7e:26:
c9:f4:0e:52:5e:7a:de:bc:77:0a:e2:7d:59:0d:e9:
26:7f:46:5c:91:50:a0:b8:ec:28:2c:d3:8f:56:e8:
69:a2:8a:21:e3:81:f5:cc:9b:11:43:f6:b0:48:30:
67:21:56:65:6e:56:7f:dd:ec:4c:29:fd:28:0d:fd:
4f:21:72:4b:70:0a:12:73:d3:93:60:27:34:0b:83:
e1:39:de:a0:73:cc:85:71:23:ac:6a:0e:aa:4d:d7:
bc:42:09:61:8c:79:13:54:4c:17:95:5a:2c:1e:7d:
88:19:2c:29:25:16:e2:d8:c3:58:84:8b:6b:71:2f:
45:61:78:32:cc:a7:ab:74:10:cb:ab:d5:3f:a7:f0:
e8:0f:9c:d6:d8:40:06:26:79:91:5f:b6:e8:da:9c:
8b:49:60:17:34:6f:fc:9f:e8:37:38:01:01:dd:84:
ac:65:35:37:8b:06:45:8f:c1:a4:1c:65:43:7d:44:
22:53:a5:ce:17:6c:6a:6e:1a:8f:6a:bf:70:60:26:
5e:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:B7:D6:3A:62:48:B1:C7:F9:77:66:F7:E4:FF:2C:8B:A2:C5:FB:E0
X509v3 Authority Key Identifier:
keyid:67:CE:17:9C:BE:13:DD:B1:40:12:98:5A:06:71:00:EF:98:A5:56:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z84XnL4T3bFAEphaBnEA75ilVgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/DrfWOmJIscf5d2b35P8si6LF--A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/Z84XnL4T3bFAEphaBnEA75ilVgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1c47:ffe0::/44
Signature Algorithm: sha256WithRSAEncryption
d0:35:7b:04:48:bb:24:4a:00:0d:5d:8f:91:9a:d9:0c:2d:5d:
42:af:70:29:1c:a1:63:da:d2:47:1b:a3:13:ae:dc:57:89:98:
e0:ec:cb:68:d0:2a:34:89:1a:6d:e2:e7:17:c0:e4:dd:a2:b9:
15:91:68:dc:87:95:b8:fb:24:49:7f:6b:f2:9c:87:24:f1:fd:
fc:c7:f4:d8:b2:aa:ba:c9:ba:ab:a5:d0:f9:f9:92:af:72:c5:
47:c7:54:0f:32:ab:dd:0c:1c:ab:fc:7e:52:c5:99:38:a1:2a:
e2:71:c7:60:ff:dc:14:9b:8e:2e:6a:d2:52:c5:db:47:2f:c2:
ef:82:c9:1c:54:c4:8c:9f:4d:22:d8:50:ec:8b:5a:76:26:c1:
dd:2b:05:d7:44:30:b5:a7:b9:08:4b:60:77:28:45:ed:47:93:
b4:c1:82:b1:dd:fb:9f:a4:26:3d:0e:35:d6:66:c2:8f:68:bc:
e9:09:fc:d1:ae:fe:ef:99:c2:59:42:10:c3:7e:4b:50:90:12:
02:83:38:3c:b1:49:df:07:72:ae:15:5c:62:d9:bc:1d:63:d8:
4b:7e:5b:33:93:55:1c:56:6a:4f:c8:6a:82:c2:a7:02:ba:85:
41:7d:9e:7a:77:31:a2:cf:76:02:a8:4e:89:d2:1f:2d:8c:5d:
3e:a3:ea:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:44 2024 by rpki-client on console-fra.rpki-client.org