Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/c1fe4d-ab5a-4071-ba2a-d5a06d8ab984/1/lR_zS-_KfVKG5uwJ_f90TZRs0fE.roa
File: lR_zS-_KfVKG5uwJ_f90TZRs0fE.roa (raw, json)
Hash identifier: xvC7dO33kNHBnQB1iyMrjXbdx75AD4CC3g5wiNTGh30=
Subject key identifier: 95:1F:F3:4B:EF:CA:7D:52:86:E6:EC:09:FD:FF:74:4D:94:6C:D1:F1
Certificate issuer: /CN=dfa24f8298be18c8a69f18128f064e7003e1d3dd
Certificate serial: 14A6
Authority key identifier: DF:A2:4F:82:98:BE:18:C8:A6:9F:18:12:8F:06:4E:70:03:E1:D3:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/36JPgpi-GMimnxgSjwZOcAPh090.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/c1fe4d-ab5a-4071-ba2a-d5a06d8ab984/1/lR_zS-_KfVKG5uwJ_f90TZRs0fE.roa
Signing time: Thu 21 Apr 2022 12:16:08 +0000
ROA not before: Thu 21 Apr 2022 12:16:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60033
IP address blocks: 2001:678:b5c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5286 (0x14a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfa24f8298be18c8a69f18128f064e7003e1d3dd
Validity
Not Before: Apr 21 12:16:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=951ff34befca7d5286e6ec09fdff744d946cd1f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:fd:e2:a4:32:68:f4:07:a5:04:b6:0c:63:3f:
64:32:2a:b2:9d:05:36:8f:51:3d:23:8e:87:a6:bd:
19:e6:b4:54:5a:2c:bc:94:33:19:c9:4e:93:c3:e1:
b6:c6:88:0e:a1:6e:be:64:ac:f2:47:30:fb:c1:e8:
50:fd:1b:37:91:62:d6:9b:35:5c:fb:e0:f7:71:ca:
70:c7:a6:4f:6f:ea:f6:3d:11:7c:37:04:23:4c:ef:
cb:dc:37:e1:ae:e1:b7:45:9a:de:9d:1c:a0:ee:2f:
d7:7f:38:07:75:10:5a:a9:a8:74:de:53:20:ac:8d:
aa:a0:ca:8b:06:3c:c5:eb:c6:b9:5b:8f:15:5f:83:
3a:66:d1:eb:84:47:8b:4c:84:78:1f:55:28:49:03:
3b:39:cc:e0:45:5f:b8:49:ab:d2:57:dd:b7:eb:45:
76:b7:09:52:9f:c2:06:19:63:7f:54:c9:fd:ff:bf:
e6:50:30:80:0b:ad:9b:95:38:5b:fb:72:bf:e6:4d:
66:18:a9:a3:65:58:19:87:78:55:86:a4:60:db:1b:
71:62:e7:fb:97:27:2e:0e:02:75:99:f9:7d:6f:2c:
b2:d1:80:4a:6c:37:7c:58:20:fd:6d:2d:0c:2e:df:
4e:58:e8:04:ee:0b:28:a3:30:f1:36:e9:0f:7c:02:
9f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:1F:F3:4B:EF:CA:7D:52:86:E6:EC:09:FD:FF:74:4D:94:6C:D1:F1
X509v3 Authority Key Identifier:
keyid:DF:A2:4F:82:98:BE:18:C8:A6:9F:18:12:8F:06:4E:70:03:E1:D3:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/36JPgpi-GMimnxgSjwZOcAPh090.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/c1fe4d-ab5a-4071-ba2a-d5a06d8ab984/1/lR_zS-_KfVKG5uwJ_f90TZRs0fE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/c1fe4d-ab5a-4071-ba2a-d5a06d8ab984/1/36JPgpi-GMimnxgSjwZOcAPh090.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:b5c::/48
Signature Algorithm: sha256WithRSAEncryption
2d:1b:d0:3a:ed:63:e2:e3:08:80:aa:bc:2c:80:1e:0b:1d:33:
1d:31:02:15:15:5a:4c:59:f2:a6:fd:11:bc:1d:d2:16:b3:bc:
73:c3:23:85:88:71:4d:5e:27:99:20:c5:53:1d:e2:f0:e1:27:
80:56:b3:4f:a3:b2:98:58:d3:59:90:3b:8d:74:d0:29:f7:23:
0a:2c:24:d4:1e:f5:64:62:05:e0:26:17:ff:20:0d:2e:3e:14:
6f:f6:71:93:ba:f4:62:5a:f5:50:fd:80:f7:82:28:e9:52:c1:
90:ec:07:64:47:0d:57:c0:00:62:d2:68:6d:d8:66:f4:5c:2f:
ff:74:0e:18:73:0a:40:21:bf:9a:1e:2e:36:a9:59:74:1f:6b:
3b:80:6d:bb:2e:2f:10:93:f6:1f:1a:0b:43:5e:3b:e3:21:5c:
02:6e:ad:51:be:f5:23:28:38:a3:7d:9c:8e:c1:68:65:98:01:
7a:06:9e:2d:66:e1:8c:aa:16:ea:e3:15:63:60:f3:df:3d:ed:
5f:b4:dd:a6:87:88:f1:da:04:e6:92:fc:5a:36:74:47:c3:30:
5f:30:29:d0:1d:44:22:de:82:ea:2a:47:b1:7d:2a:f9:22:ef:
0e:b4:45:87:3b:e2:a2:36:e0:05:45:6f:97:2c:10:eb:da:27:
b7:cd:6a:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:10 2023 by rpki-client on console-ams.rpki-client.org