Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/SU7twUgFUfDnFS9sbx9rqCxhdcw.roa
File: SU7twUgFUfDnFS9sbx9rqCxhdcw.roa (raw, json)
Hash identifier: JzMIzM9TTW08jXfcm3X6pnT/sRUWDqYBBBfO5CHmVG4=
Subject key identifier: 49:4E:ED:C1:48:05:51:F0:E7:15:2F:6C:6F:1F:6B:A8:2C:61:75:CC
Certificate issuer: /CN=67ce179cbe13ddb14012985a067100ef98a55601
Certificate serial: 01844A5BA29A92C0A99E6690093507911310
Authority key identifier: 67:CE:17:9C:BE:13:DD:B1:40:12:98:5A:06:71:00:EF:98:A5:56:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z84XnL4T3bFAEphaBnEA75ilVgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/SU7twUgFUfDnFS9sbx9rqCxhdcw.roa
Signing time: Sun 06 Nov 2022 00:33:50 +0000
ROA not before: Sun 06 Nov 2022 00:33:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34872
IP address blocks: 2a13:1c47:ffff::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:4a:5b:a2:9a:92:c0:a9:9e:66:90:09:35:07:91:13:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67ce179cbe13ddb14012985a067100ef98a55601
Validity
Not Before: Nov 6 00:33:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=494eedc1480551f0e7152f6c6f1f6ba82c6175cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:63:eb:dd:f1:a1:46:c1:66:ca:ae:89:f5:0f:
6d:eb:67:9a:f5:67:a0:49:a0:4d:d6:d8:8d:a7:48:
65:5e:48:eb:c9:6e:5a:49:5d:63:6a:3e:2b:99:4b:
51:d1:8a:b9:32:d9:ef:c8:ad:5d:24:51:3e:3a:28:
ea:74:55:55:6f:36:a6:8c:79:20:5a:64:64:f1:5f:
b5:47:bd:59:00:2e:5e:b7:c4:2c:b6:62:1f:2b:22:
3a:02:f4:72:1f:0c:92:29:4b:46:e8:ce:ea:e8:09:
91:dd:45:55:64:24:ae:af:96:fe:93:4c:e9:76:20:
8e:6a:64:4a:8c:32:17:04:6b:a6:97:6c:80:cd:9e:
66:d3:b4:c8:de:54:f8:02:de:05:90:89:7c:1f:9f:
03:2b:e4:76:ae:9f:93:9a:61:11:49:a9:20:5e:0d:
9a:cd:5c:25:a4:7e:41:aa:70:43:e1:0c:6c:87:2c:
ec:01:2c:e0:75:6e:00:95:cb:cb:c8:bf:8c:8c:60:
91:e1:5c:36:87:07:b7:da:dc:62:2e:2f:75:5d:8a:
d9:58:d6:d7:75:9a:d7:b3:c4:27:88:17:bb:7b:2e:
13:02:51:a1:5f:41:af:c0:b6:a1:d9:a0:12:8c:66:
95:56:8b:b6:34:b1:8e:f6:16:cb:da:1c:d4:a1:f6:
d0:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:4E:ED:C1:48:05:51:F0:E7:15:2F:6C:6F:1F:6B:A8:2C:61:75:CC
X509v3 Authority Key Identifier:
keyid:67:CE:17:9C:BE:13:DD:B1:40:12:98:5A:06:71:00:EF:98:A5:56:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z84XnL4T3bFAEphaBnEA75ilVgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/SU7twUgFUfDnFS9sbx9rqCxhdcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/Z84XnL4T3bFAEphaBnEA75ilVgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1c47:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
27:a9:b8:8a:4f:11:f7:8c:d5:59:04:40:bd:b9:68:b1:ed:a8:
9c:c2:3d:96:cf:a0:52:fa:57:9d:da:52:9b:d9:35:21:99:5e:
99:ad:82:aa:17:4e:45:34:07:85:88:ad:e3:49:e7:e2:e1:d2:
3a:6a:1b:98:90:70:31:90:ba:a2:fb:7e:63:59:e8:f1:1e:9e:
97:6c:40:f6:f8:34:a0:dd:b1:7c:62:b8:50:34:42:b9:d2:74:
87:7a:3f:de:30:49:49:20:53:b3:72:6f:d6:a7:60:e5:f9:a4:
1d:57:d9:9a:81:55:3b:fd:76:14:7e:f0:20:98:87:95:e3:38:
fc:ea:06:4e:20:b4:27:97:84:8f:bd:ce:c7:57:2b:35:3d:c6:
de:9e:33:c0:19:58:42:92:73:31:1c:e9:12:f7:81:e6:a6:31:
f4:79:cf:d8:ac:48:39:da:ab:f1:db:46:98:2c:48:55:2a:8b:
14:eb:66:9e:dc:dd:f3:ea:86:fc:ff:3e:3f:d7:26:fc:7f:3a:
0f:b1:bb:61:a7:57:6d:51:c2:e5:41:43:6d:4d:f0:21:07:f5:
65:c6:01:ee:0b:20:53:17:72:da:ac:27:86:de:27:85:a4:d1:
7e:92:cb:97:d2:52:2d:2b:f6:56:4b:cc:98:1a:8e:fa:c6:fe:
a7:f0:85:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:44 2024 by rpki-client on console-fra.rpki-client.org