Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/1f2IfrIzOafP7Ka7Fob4dzG3r_c.roa
File: 1f2IfrIzOafP7Ka7Fob4dzG3r_c.roa (raw, json)
Hash identifier: ZYiwF0cu3fUX5SHrnuF4sIGCmtMuMpW8M0MSGx5UWIU=
Subject key identifier: D5:FD:88:7E:B2:33:39:A7:CF:EC:A6:BB:16:86:F8:77:31:B7:AF:F7
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 0579697B
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/1f2IfrIzOafP7Ka7Fob4dzG3r_c.roa
Signing time: Sat 01 Jan 2022 05:01:15 +0000
ROA not before: Sat 01 Jan 2022 05:01:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 2a05:1087::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91842939 (0x579697b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 05:01:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d5fd887eb23339a7cfeca6bb1686f87731b7aff7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b1:07:e4:63:ce:b5:60:0c:cc:51:0f:af:ed:
73:a0:2c:08:bf:71:5f:1e:de:d1:00:57:b1:9a:ec:
60:72:39:cb:90:80:86:c9:8d:ea:44:b3:70:f4:1e:
a9:bf:dc:f7:35:29:b1:f6:4e:aa:14:98:f4:73:ef:
09:7d:2a:39:f0:c2:07:a3:05:d5:19:51:f8:ef:fa:
32:bf:a7:f2:89:0b:49:35:e1:9a:b0:b1:15:31:e6:
ee:4d:6d:27:66:00:1c:f9:fb:2b:49:bc:b7:cc:28:
41:50:45:ca:d3:19:70:0d:5c:74:2b:49:d1:da:f3:
a9:81:6f:63:89:11:34:3d:da:28:c0:95:8a:77:42:
68:84:b4:29:5f:4f:29:a3:b4:dd:8f:8f:4b:6e:88:
24:60:6a:63:58:97:77:40:1e:a2:b5:b0:44:74:a6:
28:81:1f:67:48:47:ed:79:d7:60:0a:85:46:2f:a5:
03:bc:79:ab:72:f0:04:04:41:9f:b8:7b:65:89:9e:
ce:e3:12:44:9d:d9:7d:58:5c:36:e7:be:2f:86:a7:
09:42:dd:e6:63:74:c6:a8:96:95:9c:fa:74:f1:fd:
2a:3d:0c:87:d9:7d:e2:c1:9b:41:48:f3:c1:5c:4d:
2e:e2:78:14:e8:5c:b4:51:35:7b:8f:fb:67:98:50:
2f:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:FD:88:7E:B2:33:39:A7:CF:EC:A6:BB:16:86:F8:77:31:B7:AF:F7
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/1f2IfrIzOafP7Ka7Fob4dzG3r_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:1087::/32
Signature Algorithm: sha256WithRSAEncryption
5a:1b:67:49:6b:69:98:0e:e2:84:aa:8f:ed:43:83:69:46:ad:
76:06:3d:81:7c:cc:7f:0c:08:a4:c7:6f:6d:01:5c:61:fa:29:
b7:4f:6f:73:d9:e1:29:8c:a4:64:bc:8a:28:94:1a:0a:94:eb:
5f:4a:fa:0f:c0:6a:e1:28:2e:2d:c5:ba:ae:18:46:5a:64:74:
87:fd:99:ec:ef:92:24:ae:8d:55:e8:bf:f4:00:8e:ca:d8:c2:
fa:67:df:d4:6e:e2:1a:38:9c:0a:56:c8:e1:26:30:1e:c0:9f:
69:d5:fb:28:d8:7f:de:28:b3:75:df:ac:a3:eb:11:4b:88:b9:
3e:b2:f2:54:93:d1:53:19:b0:d1:27:94:67:aa:ff:cc:6d:bd:
69:5d:54:9c:6f:4b:2a:01:6c:7e:54:09:fd:b4:2b:29:e3:0a:
c0:0b:58:4a:ee:7a:23:e5:5f:97:5c:03:bd:a1:ea:d3:64:34:
7a:3e:00:a3:0a:50:3e:e1:b5:4e:db:73:0d:da:de:28:a2:d6:
49:17:8b:04:d9:29:3f:b9:25:a1:54:98:9c:7b:a5:27:4d:f3:
43:fb:e7:eb:a1:2e:a0:06:6a:5a:b6:55:7a:15:c2:d4:ef:bb:
dd:58:af:21:68:ce:54:e2:1a:3d:e6:fc:7e:ae:e8:7c:64:de:
2d:2c:b7:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:48 2024 by rpki-client on console-ams.rpki-client.org