Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/6bb996-960c-4659-973a-6ad7f28f6374/1/lagEv5NFr0ps4Y2Gko0GC1ey67Y.roa
File: lagEv5NFr0ps4Y2Gko0GC1ey67Y.roa (raw, json)
Hash identifier: 99K/rgePgYMOAYFhbkLSvh7cSdwLjpvdxpcHTKum/l0=
Subject key identifier: 95:A8:04:BF:93:45:AF:4A:6C:E1:8D:86:92:8D:06:0B:57:B2:EB:B6
Certificate issuer: /CN=202991b3a0d06f9a5f96d8e77da9f36d9851b6ca
Certificate serial: 0652E59D
Authority key identifier: 20:29:91:B3:A0:D0:6F:9A:5F:96:D8:E7:7D:A9:F3:6D:98:51:B6:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ICmRs6DQb5pfltjnfanzbZhRtso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/6bb996-960c-4659-973a-6ad7f28f6374/1/lagEv5NFr0ps4Y2Gko0GC1ey67Y.roa
Signing time: Sat 01 Jan 2022 13:05:17 +0000
ROA not before: Sat 01 Jan 2022 13:05:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207487
IP address blocks: 2001:678:c18::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106096029 (0x652e59d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=202991b3a0d06f9a5f96d8e77da9f36d9851b6ca
Validity
Not Before: Jan 1 13:05:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95a804bf9345af4a6ce18d86928d060b57b2ebb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8e:fe:f3:d0:53:82:26:51:d3:c4:b6:20:55:
91:25:ea:3a:3d:5e:44:ee:69:2e:34:3c:8a:03:eb:
ef:d1:f9:8b:ce:ba:f3:60:c0:9a:df:42:6d:99:26:
04:ab:93:08:b9:22:89:8c:f4:a5:a8:e3:85:d6:10:
24:aa:31:e7:d6:32:79:f7:a6:95:a6:39:f1:ee:7f:
7a:19:f2:0a:98:6e:24:2b:08:c3:f7:f2:e4:6e:e0:
cd:f7:f7:07:f2:81:ba:e7:a4:0c:86:20:e5:a9:63:
1e:33:8a:7a:61:58:9b:79:95:d8:fc:25:2a:a5:19:
32:92:54:3a:4d:b2:d3:d2:7b:53:5a:fc:86:0f:62:
cf:e5:e1:ea:04:19:40:08:13:b9:da:ea:0e:7f:fa:
28:66:a7:38:a0:53:19:b2:06:5a:19:7e:9e:22:50:
ff:d1:aa:75:c2:32:9e:c5:b3:a8:b4:68:fd:13:76:
98:97:da:54:f1:60:04:42:47:bb:c0:70:d0:da:9f:
cb:ec:94:70:ef:0f:b2:15:0b:89:ea:0a:d4:dd:88:
b1:d8:10:28:a8:25:60:2c:5e:98:22:3a:51:26:83:
1d:82:3c:25:39:91:c2:65:f3:c9:f8:34:e7:e2:b5:
7f:07:84:20:42:a4:dd:12:d0:17:63:3e:40:68:92:
6d:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:A8:04:BF:93:45:AF:4A:6C:E1:8D:86:92:8D:06:0B:57:B2:EB:B6
X509v3 Authority Key Identifier:
keyid:20:29:91:B3:A0:D0:6F:9A:5F:96:D8:E7:7D:A9:F3:6D:98:51:B6:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ICmRs6DQb5pfltjnfanzbZhRtso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/6bb996-960c-4659-973a-6ad7f28f6374/1/lagEv5NFr0ps4Y2Gko0GC1ey67Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/6bb996-960c-4659-973a-6ad7f28f6374/1/ICmRs6DQb5pfltjnfanzbZhRtso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:c18::/48
Signature Algorithm: sha256WithRSAEncryption
a1:65:0c:56:58:b5:4e:bb:e1:77:29:25:61:64:0a:47:ca:4e:
bf:1b:30:c6:08:ed:4c:3e:65:55:4f:04:55:e7:3b:50:6f:9a:
d4:41:50:91:c5:ed:01:56:f4:5a:51:a7:9e:bd:ff:f1:30:ba:
77:2a:8c:db:ec:1c:88:df:bc:1f:d2:81:86:a6:f8:58:ec:37:
e2:4e:31:aa:71:26:9d:9c:65:56:af:84:45:b2:ca:26:4c:a0:
c4:e5:1c:11:16:5d:76:fc:a0:84:0d:0b:57:58:a4:99:a8:dd:
94:61:1a:f4:bc:b7:d6:85:40:dc:2f:78:6e:06:96:82:df:93:
1c:18:eb:88:c9:30:24:d6:3f:3d:18:02:85:92:ad:a8:73:20:
1b:22:d4:3a:25:66:d2:90:d3:01:0a:a2:84:d7:8f:5f:c8:1e:
41:da:5c:5e:1b:cf:7d:61:23:45:0b:49:f7:71:d0:37:db:c9:
b8:eb:1c:a7:c0:5e:ee:27:a8:3c:18:32:f3:b2:54:c2:c1:89:
ca:5b:5a:32:2f:df:2b:9c:95:af:34:e9:3f:f3:ec:0f:58:a6:
3b:c4:d1:87:61:fe:18:d0:84:69:ad:44:c0:88:93:07:c7:97:
b3:9c:07:81:ed:f1:6d:34:d8:e7:be:c0:1e:e4:d0:ba:71:8e:
c2:f8:d7:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:49 2023 by rpki-client on console-fra.rpki-client.org