Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/5b5b3e-b043-4933-a096-503c766b78b3/1/JxvGHOTwtMCtO5on_pAFYz08eGk.roa
File: JxvGHOTwtMCtO5on_pAFYz08eGk.roa (raw, json)
Hash identifier: xr+Xigea+dR/sdQgd7r9HlRv4UhCFGAzFQ73yENcqNQ=
Subject key identifier: 27:1B:C6:1C:E4:F0:B4:C0:AD:3B:9A:27:FE:90:05:63:3D:3C:78:69
Certificate issuer: /CN=6615e50f43013c356da097e34d465f2abc494e9d
Certificate serial: 0ECCE195
Authority key identifier: 66:15:E5:0F:43:01:3C:35:6D:A0:97:E3:4D:46:5F:2A:BC:49:4E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZhXlD0MBPDVtoJfjTUZfKrxJTp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/5b5b3e-b043-4933-a096-503c766b78b3/1/JxvGHOTwtMCtO5on_pAFYz08eGk.roa
Signing time: Sat 01 Jan 2022 08:58:09 +0000
ROA not before: Sat 01 Jan 2022 08:58:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 65535
IP address blocks: 2001:67c:2b5c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 248308117 (0xecce195)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6615e50f43013c356da097e34d465f2abc494e9d
Validity
Not Before: Jan 1 08:58:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=271bc61ce4f0b4c0ad3b9a27fe9005633d3c7869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:a1:bd:1a:e4:79:f4:fa:f1:14:88:a8:74:46:
64:e6:db:85:62:b6:7d:0e:c2:2b:86:6e:0a:af:ae:
bb:21:f8:12:ed:c9:0d:7d:10:bf:b4:66:96:e0:f5:
3b:c0:a9:f5:3c:c7:76:79:17:64:5a:a7:70:30:df:
74:a2:08:24:ff:ed:a4:83:f7:c3:42:d9:77:3c:49:
67:48:33:90:ae:18:23:54:77:91:62:9f:2d:3b:b2:
5c:e0:ca:0f:78:1e:2c:6c:60:6b:0f:f6:93:77:22:
b7:3b:dd:98:a2:77:6b:b4:b5:f5:3c:b9:a2:99:73:
ca:6f:f7:6b:20:0f:c3:c4:44:cf:16:b5:34:c7:ff:
d8:11:ea:78:0a:00:dd:71:34:ef:61:bc:85:fe:fe:
7c:b2:02:bc:06:ed:10:c9:74:dd:88:05:7d:f8:a5:
74:5a:2d:da:30:bc:75:e7:66:23:78:e9:6e:e7:57:
4a:5b:5e:80:6e:0b:59:d5:0f:f2:4a:d2:5e:53:c1:
37:5e:0d:2d:90:42:26:85:99:8d:01:fe:7d:9d:a4:
ca:21:5f:79:ac:1c:b8:e6:31:1b:45:ae:b6:2a:26:
b7:fe:3f:e0:78:e0:7e:1d:ae:c2:ce:a8:f8:30:b8:
0d:ec:b7:72:65:5a:15:27:a5:8b:f3:e0:ee:00:99:
e9:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:1B:C6:1C:E4:F0:B4:C0:AD:3B:9A:27:FE:90:05:63:3D:3C:78:69
X509v3 Authority Key Identifier:
keyid:66:15:E5:0F:43:01:3C:35:6D:A0:97:E3:4D:46:5F:2A:BC:49:4E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZhXlD0MBPDVtoJfjTUZfKrxJTp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/5b5b3e-b043-4933-a096-503c766b78b3/1/JxvGHOTwtMCtO5on_pAFYz08eGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/5b5b3e-b043-4933-a096-503c766b78b3/1/ZhXlD0MBPDVtoJfjTUZfKrxJTp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2b5c::/48
Signature Algorithm: sha256WithRSAEncryption
8c:96:1b:61:96:54:23:2e:ea:59:d0:0d:48:dd:6a:de:b5:5b:
c3:56:f5:fa:a6:d3:bb:18:da:38:52:7a:cc:f3:d0:31:4e:e9:
53:eb:9a:54:ed:dd:2a:01:98:61:dd:01:96:1a:9f:f1:72:10:
dc:66:a9:a0:ba:dd:e0:c8:e3:6f:f6:f2:a9:ad:d0:d5:6a:75:
97:b3:12:f0:b3:d2:e7:6d:2c:4e:0b:9d:ed:fd:92:10:c1:f0:
e3:a2:3e:72:b5:11:93:90:a9:69:17:2b:64:45:99:91:2f:7f:
62:1e:0d:7b:29:68:5c:ed:36:8e:51:22:44:8d:63:60:8f:b6:
96:02:8b:df:a8:5b:bd:54:23:d3:3c:ee:75:4b:6c:ac:a9:fc:
e7:4d:c8:9d:c9:a2:8d:c1:b4:ac:e7:1c:e9:22:19:ac:08:eb:
95:a4:33:50:b7:46:06:5b:e7:33:0e:74:9d:81:86:8a:20:3a:
19:d2:4d:3a:6a:af:5c:67:35:b6:7f:a8:cb:82:66:b9:38:81:
6e:78:88:08:46:df:30:0f:0d:19:74:d2:b4:47:a5:f7:bd:09:
94:f8:78:ec:c3:7f:cf:f8:36:71:55:98:9e:d5:7e:56:a6:bc:
81:e7:72:a9:1b:99:b5:0e:3f:b9:90:df:ab:e8:99:8d:00:dd:
3f:e3:9b:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:43 2024 by rpki-client on console-fra.rpki-client.org