Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/hqdc8IklIpKhV8SmhL32J6YgUfQ.roa
File: hqdc8IklIpKhV8SmhL32J6YgUfQ.roa (raw, json)
Hash identifier: lHNPeGeWoECGqgSHhFB9eLqSB2kRMIOzif8nVKcrZuU=
Subject key identifier: 86:A7:5C:F0:89:25:22:92:A1:57:C4:A6:84:BD:F6:27:A6:20:51:F4
Certificate issuer: /CN=67ce179cbe13ddb14012985a067100ef98a55601
Certificate serial: 01848AF09EE83862E76285DA52B8FE74DC55
Authority key identifier: 67:CE:17:9C:BE:13:DD:B1:40:12:98:5A:06:71:00:EF:98:A5:56:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z84XnL4T3bFAEphaBnEA75ilVgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/hqdc8IklIpKhV8SmhL32J6YgUfQ.roa
Signing time: Fri 18 Nov 2022 13:32:15 +0000
ROA not before: Fri 18 Nov 2022 13:32:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51345
IP address blocks: 2a13:1c47:ffff::/48 maxlen: 48
2a13:1c40::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:8a:f0:9e:e8:38:62:e7:62:85:da:52:b8:fe:74:dc:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67ce179cbe13ddb14012985a067100ef98a55601
Validity
Not Before: Nov 18 13:32:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86a75cf089252292a157c4a684bdf627a62051f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:48:0c:67:6e:d0:c4:24:ff:0b:d9:bf:7d:74:
04:7e:f7:5b:89:a4:ac:4a:5f:ca:53:cb:0b:cd:ad:
7c:47:70:35:fe:7b:09:e9:49:65:2a:e3:20:5d:27:
f8:a8:ad:e6:a5:78:da:c1:87:1f:1d:69:e8:42:f4:
70:b8:d0:7d:1d:ba:02:c9:e7:1f:4b:08:84:db:07:
b6:55:5a:a3:61:c8:06:39:b2:eb:8f:31:ca:ba:8d:
97:c9:23:d2:26:f4:7b:5f:57:65:81:38:1b:94:77:
2c:6b:6e:29:63:65:d0:e5:b4:6d:a4:6a:b8:ac:27:
f9:30:49:61:cd:ca:05:fa:01:d0:7d:23:e2:33:7d:
34:f8:a0:76:4c:62:5c:16:fe:94:3a:5f:b3:2f:45:
b6:3c:11:a2:69:25:90:07:a0:b5:07:24:51:0f:ed:
8b:53:61:18:14:5d:26:b4:d0:43:12:b0:15:dc:05:
23:83:fe:89:06:81:f9:5e:e3:0b:62:bc:65:5d:c7:
16:38:fc:3f:68:a0:8a:06:0b:08:cb:db:6a:0a:2a:
6e:aa:80:95:e1:e1:69:16:1b:aa:85:83:2b:72:ce:
ae:f5:d3:3e:b4:1a:88:33:38:13:5f:c0:dc:5f:df:
23:92:9e:e4:ec:91:3c:e8:1f:ca:27:e2:d1:7c:9d:
ec:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:A7:5C:F0:89:25:22:92:A1:57:C4:A6:84:BD:F6:27:A6:20:51:F4
X509v3 Authority Key Identifier:
keyid:67:CE:17:9C:BE:13:DD:B1:40:12:98:5A:06:71:00:EF:98:A5:56:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z84XnL4T3bFAEphaBnEA75ilVgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/hqdc8IklIpKhV8SmhL32J6YgUfQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/Z84XnL4T3bFAEphaBnEA75ilVgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1c40::/29
Signature Algorithm: sha256WithRSAEncryption
17:ea:0d:1e:83:75:4a:5d:05:9a:bd:45:c1:3a:55:ba:6a:5d:
74:3c:f1:e8:df:94:e7:97:57:84:80:0d:58:f1:f8:61:d4:f3:
15:25:f3:4a:6f:b0:2d:54:a9:ee:1e:98:6a:13:46:2f:75:b4:
1a:9d:bb:f3:53:be:e4:29:6f:84:d1:19:07:02:78:45:b1:42:
43:c3:7b:60:7b:cc:6f:cb:80:ef:cb:58:44:7a:98:bc:1b:73:
67:60:a4:4c:4a:5e:56:31:83:79:65:c2:84:5b:51:26:ea:b1:
61:73:fe:c4:dc:c4:fe:2e:a6:6a:1b:df:9d:3f:35:60:d8:36:
99:8f:0d:52:eb:71:35:a7:62:2e:3f:b5:97:f1:87:af:40:1a:
dd:05:5f:6c:13:26:16:6b:bd:7b:7e:f2:f5:1f:0c:29:b0:ab:
61:78:79:06:f1:0f:81:9b:13:6a:71:6f:57:b0:7f:60:55:45:
03:6f:1e:43:17:c8:d6:c0:49:a5:64:36:1f:05:44:39:cc:f2:
f0:7a:87:44:e1:a5:b8:ca:16:45:41:8e:72:3c:cc:9a:e0:39:
30:67:0f:5a:0a:96:c7:f3:63:81:fe:b9:de:24:f2:a7:32:ce:
38:e3:0e:6e:49:b1:74:5c:56:3f:98:ab:c6:7a:a0:29:8f:4a:
ef:95:f1:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:44 2024 by rpki-client on console-fra.rpki-client.org