Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/pxoLozevbsQ6bnkdRY6izUlkBI8.roa
File: pxoLozevbsQ6bnkdRY6izUlkBI8.roa (raw, json)
Hash identifier: +XxhkWnwc3j389wmLeLSKV82Zc5WC94YgmVFvthiW6E=
Subject key identifier: A7:1A:0B:A3:37:AF:6E:C4:3A:6E:79:1D:45:8E:A2:CD:49:64:04:8F
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 05932D07
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/pxoLozevbsQ6bnkdRY6izUlkBI8.roa
Signing time: Sat 01 Jan 2022 05:01:29 +0000
ROA not before: Sat 01 Jan 2022 05:01:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210842
IP address blocks: 2a0d:2684::/32 maxlen: 48
2a0d:2681::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93531399 (0x5932d07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 05:01:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a71a0ba337af6ec43a6e791d458ea2cd4964048f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:08:93:20:6b:a4:3e:7a:28:2e:64:13:a5:9b:
e8:39:b7:f1:c0:ab:d3:57:d9:ec:30:5f:51:6a:d5:
34:b8:45:28:08:09:78:3f:0b:e9:c5:30:6a:05:44:
8e:c4:88:a9:69:9f:29:7b:3d:6b:42:08:b9:b3:ee:
d6:9c:95:66:f2:cb:b2:3d:57:cd:69:cd:81:8e:cc:
14:ae:42:67:9b:02:79:b6:dd:eb:8c:08:24:e0:a3:
ef:ee:0a:bf:e4:20:3e:40:1b:3f:f4:da:af:18:73:
b4:b4:e5:9b:ff:55:dc:ef:0e:c9:5d:3a:3a:6f:08:
79:b4:43:a4:3c:b4:58:8c:d4:e2:76:ba:a2:38:5a:
41:28:12:e2:51:57:ac:cd:d2:49:e5:8c:f1:6a:8d:
91:dc:26:10:80:e9:9c:0a:94:e8:ce:7b:ac:c9:da:
27:cf:0c:59:fb:4f:ea:95:7c:c4:8f:97:86:54:e0:
42:c2:9d:56:4f:63:c5:e3:13:4d:e0:f2:4e:36:d2:
b3:98:a0:c2:83:bb:18:bd:58:63:66:e5:a9:f7:da:
d8:ee:b3:55:e4:c4:43:01:6f:0b:a9:c9:65:67:03:
d8:fd:30:d7:63:d0:20:b5:8c:e2:e4:0c:e2:05:54:
45:0b:36:56:48:3d:0b:69:1f:d1:07:e6:12:3e:45:
95:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:1A:0B:A3:37:AF:6E:C4:3A:6E:79:1D:45:8E:A2:CD:49:64:04:8F
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/pxoLozevbsQ6bnkdRY6izUlkBI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2681::/32
2a0d:2684::/32
Signature Algorithm: sha256WithRSAEncryption
31:47:90:f4:07:98:4f:31:96:64:d1:4f:07:28:58:1d:7e:1a:
3c:7a:00:19:94:68:d9:21:e7:b2:e1:5b:8a:32:fc:be:19:62:
2b:38:6a:93:4e:46:b4:6f:b7:34:98:6e:09:d1:53:be:bc:9e:
3c:67:75:d4:8a:fd:c5:8b:b9:f2:8a:6f:86:d0:af:91:db:bd:
08:42:f6:a3:b3:95:4a:48:92:fa:b6:0a:1b:10:f4:65:1e:78:
98:16:4d:03:4d:5e:28:50:6c:56:de:06:db:a5:b2:65:5e:2c:
56:0e:68:b9:d0:8d:f8:c2:90:14:8d:89:83:85:b0:b4:9c:8b:
9d:87:30:74:96:9d:7a:a1:2c:d2:3a:68:76:d8:08:c3:f3:ea:
00:6c:1f:0b:59:91:10:07:e5:df:f3:f4:02:f0:f1:76:21:15:
d2:45:7b:45:a0:66:a4:57:0c:da:bc:2e:10:69:6c:5e:9e:38:
5e:e0:7b:43:6f:d4:9d:10:91:2a:9e:41:cf:87:da:a7:4d:95:
00:05:af:17:ab:d7:74:e3:39:5c:c5:f8:cb:f9:04:ce:1b:2e:
1e:3d:25:48:be:46:b6:b2:96:35:ae:0d:6a:9a:b8:02:fc:68:
87:06:85:01:7f:54:8f:e4:0a:f5:0e:ce:a8:dc:14:4e:52:d1:
d2:4b:7f:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:39 2024 by rpki-client on console-fra.rpki-client.org