Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/hx0ty9Vf6BNpJTzYU38LGzpD-ZU.roa
File: hx0ty9Vf6BNpJTzYU38LGzpD-ZU.roa (raw, json)
Hash identifier: 2G5zR92Ghy1PivLhxtUXUvbTnsbYIE6JyHBcWX3ZUj8=
Subject key identifier: 87:1D:2D:CB:D5:5F:E8:13:69:25:3C:D8:53:7F:0B:1B:3A:43:F9:95
Certificate issuer: /CN=3e5b347967cea67bb62b69d259acde4b8f9e9417
Certificate serial: 0183C27124160CE339C403D7F889EAA4EFBB
Authority key identifier: 3E:5B:34:79:67:CE:A6:7B:B6:2B:69:D2:59:AC:DE:4B:8F:9E:94:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pls0eWfOpnu2K2nSWazeS4-elBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/hx0ty9Vf6BNpJTzYU38LGzpD-ZU.roa
Signing time: Mon 10 Oct 2022 15:08:58 +0000
ROA not before: Mon 10 Oct 2022 15:08:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202585
IP address blocks: 2001:678:d64::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c2:71:24:16:0c:e3:39:c4:03:d7:f8:89:ea:a4:ef:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e5b347967cea67bb62b69d259acde4b8f9e9417
Validity
Not Before: Oct 10 15:08:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=871d2dcbd55fe81369253cd8537f0b1b3a43f995
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4b:47:38:b0:36:23:9e:f0:8b:84:00:12:ec:
84:a6:db:57:77:91:5b:0c:25:56:d3:3b:2c:b6:7f:
7d:29:60:5f:0e:2a:23:39:4d:58:bd:64:d8:72:92:
21:4b:23:2a:dc:2b:bd:1d:d3:10:df:87:c2:18:de:
98:23:27:34:c8:e4:b3:63:95:06:46:69:54:19:c5:
34:c0:93:b2:32:4c:b6:40:2a:01:4c:9a:17:ef:54:
a3:be:5a:06:ca:1c:2c:09:63:2d:8a:f9:fb:93:4d:
d9:81:1f:f2:58:e7:81:48:88:7c:6b:ca:01:4b:f7:
dc:4b:36:81:7a:97:62:d4:d6:2a:88:a7:59:ce:d5:
c6:ad:23:72:de:c6:52:98:96:92:6e:b1:c1:11:e9:
fe:ef:69:63:e1:4d:48:e4:18:3b:6d:f5:3c:92:21:
20:1e:8a:bb:c5:89:9c:ef:e4:1a:2d:3b:70:ee:5a:
c2:0e:22:a6:bf:8d:9a:58:a5:0f:f3:ed:6a:e4:23:
10:ec:48:e0:9b:f4:0e:57:65:8f:c0:bf:d8:a0:1e:
6b:a3:c7:da:81:72:fb:c1:9f:f9:81:96:db:e5:1d:
62:88:0c:ba:2a:0c:22:34:6b:e7:ab:8b:32:dc:df:
7a:4b:71:34:54:54:03:17:ab:84:0f:c2:45:c4:6e:
23:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:1D:2D:CB:D5:5F:E8:13:69:25:3C:D8:53:7F:0B:1B:3A:43:F9:95
X509v3 Authority Key Identifier:
keyid:3E:5B:34:79:67:CE:A6:7B:B6:2B:69:D2:59:AC:DE:4B:8F:9E:94:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pls0eWfOpnu2K2nSWazeS4-elBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/hx0ty9Vf6BNpJTzYU38LGzpD-ZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:d64::/48
Signature Algorithm: sha256WithRSAEncryption
15:e0:f7:b5:32:74:d3:70:bb:cb:f9:e7:3d:b9:b2:87:3a:2e:
75:a3:29:14:5c:f1:a6:d6:bb:ea:40:1e:b6:0d:e7:14:56:f2:
fc:ba:07:2e:80:c1:6f:fe:5c:8e:08:20:d8:c8:0b:5d:e6:07:
dc:3f:54:4a:ef:e9:f1:c6:a1:26:64:97:06:95:c5:30:93:6a:
2d:c4:03:8b:b5:39:98:b8:b4:29:61:bc:28:65:fc:46:37:61:
d1:fa:c2:27:86:3f:d7:34:19:4a:0a:4e:72:e3:e1:c6:4c:58:
6b:9e:27:d9:fa:f2:62:47:18:22:73:fc:96:cc:7c:ad:ad:d5:
6d:38:d2:83:ab:87:02:3b:ef:32:75:2e:74:96:6e:0c:08:c9:
d6:90:6e:71:13:b8:cf:e4:2f:77:bf:77:a8:d3:63:e3:a3:ce:
c7:ef:58:dd:8c:10:dc:bd:5e:17:78:5c:3a:4e:a5:03:ea:87:
48:10:2d:76:f7:f2:5c:9f:6a:ae:99:86:16:fa:72:5c:75:55:
44:fa:f0:4a:cb:12:f1:1f:ff:85:b4:b4:38:03:3c:6e:67:17:
4d:e2:fc:9d:a3:70:3a:77:5e:1f:80:4b:e3:c2:d6:ee:7a:d1:
48:ca:2d:4f:5d:5a:bc:60:f4:dd:ee:97:15:8a:3a:5b:e0:42:
fc:27:71:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:20 2024 by rpki-client on console-ams.rpki-client.org