Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/JHhp2WbYlzUzc11iKKOtuNDc6fk.roa
File: JHhp2WbYlzUzc11iKKOtuNDc6fk.roa (raw, json)
Hash identifier: qwz8WX+9wvifcgY+Y82NzUFCnfJ3fRplphzxYhu6h8k=
Subject key identifier: 24:78:69:D9:66:D8:97:35:33:73:5D:62:28:A3:AD:B8:D0:DC:E9:F9
Certificate issuer: /CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Certificate serial: 046E65E1
Authority key identifier: 0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/JHhp2WbYlzUzc11iKKOtuNDc6fk.roa
Signing time: Sat 01 Jan 2022 08:57:33 +0000
ROA not before: Sat 01 Jan 2022 08:57:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 10929
IP address blocks: 2a02:c6c1:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74343905 (0x46e65e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Validity
Not Before: Jan 1 08:57:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=247869d966d8973533735d6228a3adb8d0dce9f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:79:65:11:f4:5b:2c:c4:8e:08:0a:ad:ac:09:
c6:2a:0b:33:db:41:bc:29:e0:00:3c:ca:be:9b:5c:
5f:1b:cf:4c:12:cf:92:7c:22:f2:88:09:f2:7f:a2:
d2:1e:d7:df:f2:ee:aa:2e:d8:30:cf:1e:48:41:7c:
07:0c:6e:6b:26:d0:9e:36:05:1b:14:ea:2d:f1:0a:
4b:c6:2a:3b:27:23:1f:95:05:63:88:03:7c:e4:a2:
71:8e:7c:be:cd:28:4b:12:8e:a4:7e:27:23:32:69:
98:ef:94:38:6e:84:e7:57:2b:21:d7:3b:65:cf:15:
c5:0b:9f:48:a8:1e:f9:3a:db:cc:8f:ba:84:83:52:
f4:48:79:ae:6f:4b:a7:24:c4:ef:f3:f2:68:ed:53:
69:1a:fe:b6:c5:a6:96:ae:6d:68:a9:5c:9d:28:5a:
49:63:c5:fc:ed:f7:32:32:77:ed:3b:eb:2d:ee:f9:
b1:65:a9:57:5b:4b:7a:ae:ba:8b:ea:27:54:4a:69:
72:8e:99:86:cf:6d:a9:bf:b5:ce:01:2c:e5:d1:83:
69:b6:e1:aa:c0:3c:93:ed:97:11:0f:ec:b0:2f:6c:
ac:cc:32:7c:2c:f3:aa:45:61:2c:5a:88:ac:19:a6:
77:4a:ac:ab:c6:ab:ff:8c:91:cc:de:f1:95:04:20:
57:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:78:69:D9:66:D8:97:35:33:73:5D:62:28:A3:AD:B8:D0:DC:E9:F9
X509v3 Authority Key Identifier:
keyid:0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/JHhp2WbYlzUzc11iKKOtuNDc6fk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:c6c1:1::/48
Signature Algorithm: sha256WithRSAEncryption
76:09:2c:f0:af:fd:32:e2:c0:0e:da:e0:5c:71:cc:0c:ee:80:
32:26:14:bc:b4:48:67:33:79:4f:a0:65:17:b9:5c:b0:96:52:
5f:04:25:70:ea:11:52:1e:08:de:d8:a3:5c:8f:f0:1f:62:29:
a0:54:74:ab:1c:61:b7:ba:6c:70:9c:e4:56:9a:03:b9:fd:f1:
2c:c9:ad:91:54:67:82:b4:4c:a9:26:73:dc:c2:ca:38:7b:d8:
fc:6f:11:df:f1:79:6f:7b:e7:b9:ad:ab:19:77:90:c1:32:33:
d0:a5:31:08:bf:c4:c6:fb:53:18:eb:48:06:bd:88:23:dc:e7:
96:49:4c:20:79:fb:24:5d:05:2e:88:6e:3d:6a:7a:77:e5:9e:
23:d8:a5:f9:9d:39:5c:c6:1d:dc:27:b7:0d:e6:c9:cd:05:09:
78:4f:18:91:d2:e4:62:11:c9:f4:04:26:ca:92:3e:e6:33:32:
12:a6:02:30:0b:ab:50:98:07:5f:55:f4:8a:dc:23:35:2d:63:
70:8b:3a:d9:a4:52:66:70:7d:78:1b:d2:f8:c2:e9:4a:45:4f:
ea:3a:f3:a2:8f:3e:b1:e1:19:fb:1c:23:89:4d:b6:d4:21:dc:
6c:59:8c:69:fd:3c:a5:57:0b:2e:57:f1:c8:ca:c4:c8:58:1f:
af:42:b9:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:57 2023 by rpki-client on console-fra.rpki-client.org