Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/e29c87-4683-443e-883f-9abd1aa64be1/1/XyD-qJFl_uSmW40Qp-lJJDWyb74.roa
File: XyD-qJFl_uSmW40Qp-lJJDWyb74.roa (raw, json)
Hash identifier: zUlJndIRptvGAlCPpahj1ZYECXbMB0PTDj9KYi8/GH0=
Subject key identifier: 5F:20:FE:A8:91:65:FE:E4:A6:5B:8D:10:A7:E9:49:24:35:B2:6F:BE
Certificate issuer: /CN=5ac466cc89f9db4e31c5400d2ae7a2bffdb22547
Certificate serial: 0F26329B
Authority key identifier: 5A:C4:66:CC:89:F9:DB:4E:31:C5:40:0D:2A:E7:A2:BF:FD:B2:25:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WsRmzIn5204xxUANKueiv_2yJUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/e29c87-4683-443e-883f-9abd1aa64be1/1/XyD-qJFl_uSmW40Qp-lJJDWyb74.roa
Signing time: Sat 01 Jan 2022 04:52:27 +0000
ROA not before: Sat 01 Jan 2022 04:52:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8220
IP address blocks: 2a06:6541:1440::/48 maxlen: 48
2a06:6541:1382::/48 maxlen: 48
2a06:6540:1440::/48 maxlen: 48
2a06:6541:104b::/48 maxlen: 48
2a06:6540:1382::/48 maxlen: 48
2a06:6541:1201::/48 maxlen: 48
2a06:6541:1341::/48 maxlen: 48
2a06:6541:1381::/48 maxlen: 48
2a06:6541:13c1::/48 maxlen: 48
2a06:6541:1301::/48 maxlen: 48
2a06:6541:1281::/48 maxlen: 48
2a06:6541:1241::/48 maxlen: 48
2a06:6541:1001::/48 maxlen: 48
2a06:6541:4181::/48 maxlen: 48
2a06:6541:12c1::/48 maxlen: 48
2a06:6541:11c1::/48 maxlen: 48
2a06:6541:4101::/48 maxlen: 48
2a06:6540:104b::/48 maxlen: 48
2a06:6540:1201::/48 maxlen: 48
2a06:6540:12c1::/48 maxlen: 48
2a06:6540:1381::/48 maxlen: 48
2a06:6540:1001::/48 maxlen: 48
2a06:6540:4181::/48 maxlen: 48
2a06:6540:1341::/48 maxlen: 48
2a06:6540:1301::/48 maxlen: 48
2a06:6540:13c1::/48 maxlen: 48
2a06:6540:4101::/48 maxlen: 48
2a06:6540:1281::/48 maxlen: 48
2a06:6540:11c1::/48 maxlen: 48
2a06:6540:1241::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 254161563 (0xf26329b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ac466cc89f9db4e31c5400d2ae7a2bffdb22547
Validity
Not Before: Jan 1 04:52:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f20fea89165fee4a65b8d10a7e9492435b26fbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:63:ee:2c:0a:1d:51:4b:4a:e2:20:1a:9f:63:
99:53:7b:eb:f8:34:14:fe:11:69:eb:6f:b4:c8:e4:
44:a3:ba:c0:dc:d2:e8:e6:a9:77:69:57:7b:d4:ee:
33:f6:17:84:0e:25:c0:14:f8:ac:48:49:40:46:26:
6e:2a:a4:0c:76:3a:5f:2f:57:dd:d3:2a:6f:28:0e:
63:40:d5:c3:51:e4:cb:96:7c:60:be:b1:ec:be:e3:
18:b9:35:ee:32:5d:d0:9d:81:55:f0:93:c4:3d:93:
4b:ad:60:37:e7:dd:51:8f:29:e4:f3:a1:5d:fd:20:
a1:5f:89:1b:82:3f:22:ca:d0:f7:db:78:f7:6a:bb:
28:64:df:62:af:ba:0e:3c:f6:c4:2d:62:a6:93:27:
03:d4:c5:e5:b2:12:74:c7:16:96:f9:f1:f9:93:cc:
47:4c:14:4e:85:18:58:22:45:69:d4:a7:1b:23:dd:
3d:e9:e6:2e:24:50:57:25:5d:d0:98:7d:de:e1:20:
91:13:a6:04:f3:42:4c:95:b5:c1:84:c6:5a:1e:31:
f1:46:26:7f:10:df:47:1a:9d:5b:00:4f:23:fe:dd:
1d:31:e9:70:e2:08:bd:c5:d5:1d:3b:24:ab:78:0f:
a1:08:75:2b:e0:69:5d:79:c9:c9:78:36:17:fb:04:
da:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:20:FE:A8:91:65:FE:E4:A6:5B:8D:10:A7:E9:49:24:35:B2:6F:BE
X509v3 Authority Key Identifier:
keyid:5A:C4:66:CC:89:F9:DB:4E:31:C5:40:0D:2A:E7:A2:BF:FD:B2:25:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WsRmzIn5204xxUANKueiv_2yJUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e29c87-4683-443e-883f-9abd1aa64be1/1/XyD-qJFl_uSmW40Qp-lJJDWyb74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e29c87-4683-443e-883f-9abd1aa64be1/1/WsRmzIn5204xxUANKueiv_2yJUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:6540:1001::/48
2a06:6540:104b::/48
2a06:6540:11c1::/48
2a06:6540:1201::/48
2a06:6540:1241::/48
2a06:6540:1281::/48
2a06:6540:12c1::/48
2a06:6540:1301::/48
2a06:6540:1341::/48
2a06:6540:1381::-2a06:6540:1382:ffff:ffff:ffff:ffff:ffff
2a06:6540:13c1::/48
2a06:6540:1440::/48
2a06:6540:4101::/48
2a06:6540:4181::/48
2a06:6541:1001::/48
2a06:6541:104b::/48
2a06:6541:11c1::/48
2a06:6541:1201::/48
2a06:6541:1241::/48
2a06:6541:1281::/48
2a06:6541:12c1::/48
2a06:6541:1301::/48
2a06:6541:1341::/48
2a06:6541:1381::-2a06:6541:1382:ffff:ffff:ffff:ffff:ffff
2a06:6541:13c1::/48
2a06:6541:1440::/48
2a06:6541:4101::/48
2a06:6541:4181::/48
Signature Algorithm: sha256WithRSAEncryption
3c:a8:33:94:1e:8e:d9:51:72:e5:26:0e:72:94:2d:35:a3:55:
36:09:8f:ca:ef:52:b4:50:51:b5:fa:d7:c7:f8:d3:c9:7d:af:
9b:9a:89:f2:58:2d:1a:12:ef:03:35:49:88:61:97:d3:fe:95:
80:77:c5:72:f4:20:58:bf:8c:6f:bb:df:39:4a:7f:21:20:2f:
1c:ce:0a:77:ad:62:50:d6:fd:02:59:25:5a:2e:03:56:72:d6:
ff:5e:0d:c2:d1:9e:c2:8d:f5:d3:a2:eb:17:e3:55:d8:3b:25:
ae:d7:bc:ca:e8:03:9e:11:c2:2a:01:7c:da:80:bd:b3:6b:57:
b6:56:e6:d2:a1:30:7f:07:1a:5f:46:a3:f2:66:bd:0d:55:73:
ca:e1:e2:8e:f3:78:44:a2:83:b6:f5:50:0b:c1:a4:b2:9b:a4:
1d:9f:4b:9c:da:9f:c1:a0:bb:96:2e:34:03:a7:46:45:fc:a5:
48:8d:f4:e6:a8:29:f0:86:68:bd:6e:2b:44:68:49:04:a5:13:
2b:dc:3e:29:b0:0e:3d:39:ff:40:dd:bb:f4:8d:e8:f7:81:4e:
8a:ff:ad:de:39:e4:ed:e9:58:1b:2b:55:ce:48:84:6d:a3:25:
b2:50:52:4e:6d:f6:09:66:fa:85:b9:b5:b7:55:bf:2a:70:85:
83:fe:85:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:43 2024 by rpki-client on console-ams.rpki-client.org