Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/_LYizdN_GM1BrYyObapXWqvqQAE.roa
File: _LYizdN_GM1BrYyObapXWqvqQAE.roa (raw, json)
Hash identifier: YQXXtucLxLwfp/JqVzJbvViM0wVK+Rb7qQ0i9rEmV5U=
Subject key identifier: FC:B6:22:CD:D3:7F:18:CD:41:AD:8C:8E:6D:AA:57:5A:AB:EA:40:01
Certificate issuer: /CN=67ce179cbe13ddb14012985a067100ef98a55601
Certificate serial: 01849B31B286811CF90F6BC7D0287F7C8EB2
Authority key identifier: 67:CE:17:9C:BE:13:DD:B1:40:12:98:5A:06:71:00:EF:98:A5:56:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z84XnL4T3bFAEphaBnEA75ilVgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/_LYizdN_GM1BrYyObapXWqvqQAE.roa
Signing time: Mon 21 Nov 2022 17:17:16 +0000
ROA not before: Mon 21 Nov 2022 17:17:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51345
IP address blocks: 2a13:1c40::/29 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9b:31:b2:86:81:1c:f9:0f:6b:c7:d0:28:7f:7c:8e:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67ce179cbe13ddb14012985a067100ef98a55601
Validity
Not Before: Nov 21 17:17:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fcb622cdd37f18cd41ad8c8e6daa575aabea4001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:85:17:db:5b:80:62:d4:41:be:a5:74:6d:d7:
28:ca:8f:31:54:05:08:67:45:04:cb:7c:fe:8a:6f:
ef:05:a6:33:b5:1a:9d:f4:91:54:66:09:07:b8:ee:
5f:55:a0:51:a0:5f:13:95:9c:12:dc:15:8c:86:e2:
87:ed:b5:23:25:0f:2d:67:7b:0a:30:9e:c4:1d:16:
9d:5f:ea:ef:2b:d0:29:50:c1:e4:73:95:f7:87:93:
bd:42:ad:cf:1e:5b:45:64:7d:40:8e:40:ab:b7:72:
9c:93:5b:c7:87:2e:6e:dc:18:2c:79:9c:6c:bf:1a:
b6:35:db:cb:ef:61:16:0e:12:ac:22:ac:cc:86:0c:
18:f0:45:44:67:71:e1:5d:aa:d7:61:97:0e:74:48:
1c:16:81:5a:7a:c9:12:bc:56:8d:6b:7d:d7:ef:97:
83:7d:66:21:e6:a4:94:ae:04:ca:ce:1e:15:13:bd:
92:4d:fc:e2:24:24:b3:26:4e:79:bc:b2:c5:8a:59:
96:20:cb:4a:c2:a6:90:d8:4a:47:fb:19:b6:40:76:
40:80:18:c5:90:3c:52:d9:5b:2b:2a:6e:55:a6:ed:
3e:5a:f9:54:f7:70:61:56:b3:8b:a0:08:02:16:c2:
97:9c:73:90:c7:ba:ad:a9:c6:e8:f9:b5:80:26:c4:
0a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:B6:22:CD:D3:7F:18:CD:41:AD:8C:8E:6D:AA:57:5A:AB:EA:40:01
X509v3 Authority Key Identifier:
keyid:67:CE:17:9C:BE:13:DD:B1:40:12:98:5A:06:71:00:EF:98:A5:56:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z84XnL4T3bFAEphaBnEA75ilVgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/_LYizdN_GM1BrYyObapXWqvqQAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/Z84XnL4T3bFAEphaBnEA75ilVgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1c40::/29
Signature Algorithm: sha256WithRSAEncryption
6b:86:51:cc:fc:b9:8f:69:26:30:e0:83:30:81:e3:0e:75:1a:
29:b4:55:38:2e:e2:a9:22:88:8a:c2:a3:a0:3e:79:06:15:39:
ba:d4:fd:18:98:86:a9:70:f5:2d:ae:50:df:40:04:07:86:ab:
c1:3a:ff:14:79:d4:ff:aa:34:86:c4:13:94:04:02:64:72:bc:
a7:b1:a3:c7:9e:a2:8f:5d:bd:c0:cb:f1:aa:0f:0f:ce:e3:51:
24:61:9c:96:9d:bd:6b:ff:95:b0:a3:a0:18:cb:3b:45:c5:fa:
f7:58:f7:c1:98:f2:c6:80:af:e5:de:db:27:5a:43:5f:3a:d4:
86:6d:77:1b:5b:ff:67:d8:f6:a9:b5:81:f5:03:9d:77:a9:ab:
aa:e3:50:26:83:8f:15:eb:52:29:fb:83:89:9f:c9:af:83:0c:
ff:d5:06:db:1d:f0:8b:36:83:7c:f7:08:b6:f4:c7:0d:86:97:
b4:78:be:1f:65:1b:b3:3b:76:0f:90:17:75:0c:7f:e0:be:9d:
bb:53:89:92:3c:d9:f8:23:38:b6:b7:e5:13:76:b1:29:e4:83:
f2:3a:47:e0:87:60:68:6c:55:b5:0c:51:47:a8:06:d6:58:ae:
7d:1c:5c:d7:c4:ae:35:60:93:80:cb:87:0f:4e:a4:6f:56:17:
55:de:83:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:44 2024 by rpki-client on console-fra.rpki-client.org