Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/Xzi26nUosIMOyZTmzcUuA5ioXxE.roa
File: Xzi26nUosIMOyZTmzcUuA5ioXxE.roa (raw, json)
Hash identifier: +onUhGe7UEclwEXOUsgel+f7yQKOtH8PVqVhn+vLgC0=
Subject key identifier: 5F:38:B6:EA:75:28:B0:83:0E:C9:94:E6:CD:C5:2E:03:98:A8:5F:11
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01821B4241E583B5CA791A9406C18C84E162
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/Xzi26nUosIMOyZTmzcUuA5ioXxE.roa
Signing time: Wed 20 Jul 2022 10:58:23 +0000
ROA not before: Wed 20 Jul 2022 10:58:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212371
IP address blocks: 2a0e:aa07:e047::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1b:42:41:e5:83:b5:ca:79:1a:94:06:c1:8c:84:e1:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jul 20 10:58:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f38b6ea7528b0830ec994e6cdc52e0398a85f11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:7d:30:a0:65:4b:e6:4c:41:4b:e9:c6:82:e5:
29:7b:df:bf:9b:bd:b2:61:c4:6f:89:5b:c7:33:72:
8d:37:7e:47:7c:6f:d7:41:3f:fb:62:24:a7:23:7f:
67:3c:ab:4c:b3:5a:9d:a9:73:61:5e:a1:30:a3:b3:
f8:0d:66:41:5c:23:e8:bf:f6:e5:45:16:ba:72:aa:
e9:20:89:59:84:7b:0c:3e:09:45:ed:4b:aa:2d:f6:
61:ba:c7:3e:34:c7:8e:86:7d:50:9f:6f:17:01:23:
f0:b3:81:c4:95:2e:f1:e3:81:fc:76:e7:6a:96:92:
8f:76:d6:75:05:5d:80:ee:7e:40:af:49:7a:97:e1:
40:ae:7e:49:d2:7a:57:6f:d1:5b:fa:20:e6:70:4b:
53:56:d6:dc:ce:d7:cf:80:3a:ce:36:78:65:e7:8c:
62:86:a7:c2:52:ac:ca:2c:90:68:89:4e:5b:1e:56:
0e:d3:35:17:04:32:ac:7a:54:31:52:16:c6:99:a9:
80:87:ff:1c:69:6a:3e:02:92:f9:64:6e:f7:1d:00:
8d:36:a0:9b:cf:a5:cb:d8:91:50:94:8b:50:49:de:
e0:97:c4:34:31:4d:af:64:2c:e6:98:c9:48:3e:44:
7b:31:85:9f:33:cf:ce:d7:fc:9a:eb:12:8b:d1:8b:
ea:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:38:B6:EA:75:28:B0:83:0E:C9:94:E6:CD:C5:2E:03:98:A8:5F:11
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/Xzi26nUosIMOyZTmzcUuA5ioXxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e047::/48
Signature Algorithm: sha256WithRSAEncryption
8a:be:5b:8d:2c:fc:bc:3e:e9:35:3b:ba:8a:b6:ba:96:01:fd:
01:3b:3a:d0:99:8f:91:3c:90:c8:d1:7f:39:cc:52:40:c7:7a:
6a:48:13:c5:9f:d8:e5:5c:6d:67:43:4b:96:d7:f4:ed:d9:ae:
08:f9:5f:51:93:4c:ba:6c:67:d5:f3:c8:3f:5f:d3:fc:cb:4c:
bc:37:9c:29:e8:de:a0:d8:fd:12:5c:b3:a9:96:84:5c:15:06:
f5:42:81:c8:fa:e8:ad:a3:5d:ab:ea:fa:c9:fa:67:4f:5d:10:
77:aa:d5:6c:6c:18:32:8e:9c:1d:7f:46:e0:c7:f5:48:8e:1b:
e0:dc:f7:ac:1d:2b:1d:0a:f1:d8:ba:7d:26:66:6d:5c:4f:2d:
03:52:22:1d:fa:64:a8:8c:c7:62:df:af:ee:13:41:86:a0:7f:
ee:ec:41:ae:3b:03:59:d8:27:b9:16:d1:4d:82:cd:1a:ba:63:
37:e4:39:64:bd:9e:d5:1a:fb:7a:2f:1d:f5:2c:1e:cd:b5:79:
94:6e:a0:5b:c2:66:6e:e1:8d:91:77:46:e3:b1:a9:05:05:a9:
29:28:ca:da:c4:54:bd:f5:15:6a:40:53:a9:c2:ac:6c:7d:d2:
77:83:2f:af:a8:7b:2e:33:d4:1d:7e:c9:d8:33:3d:38:2a:22:
3a:45:89:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:11 2024 by rpki-client on console-ams.rpki-client.org