Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/00d45d-5e48-458d-92f7-ae52e156b77e/1/X2L1UI-Elg4chWC5DfuQyQy9wmA.roa
File: X2L1UI-Elg4chWC5DfuQyQy9wmA.roa (raw, json)
Hash identifier: /i0b/cXLdni49NELQaD4gptwxYOHJdbtXDdGJOkxJeE=
Subject key identifier: 5F:62:F5:50:8F:84:96:0E:1C:85:60:B9:0D:FB:90:C9:0C:BD:C2:60
Certificate issuer: /CN=88e719f426793b1e9063771460abd311a3dff116
Certificate serial: 05EE2854
Authority key identifier: 88:E7:19:F4:26:79:3B:1E:90:63:77:14:60:AB:D3:11:A3:DF:F1:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOcZ9CZ5Ox6QY3cUYKvTEaPf8RY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/00d45d-5e48-458d-92f7-ae52e156b77e/1/X2L1UI-Elg4chWC5DfuQyQy9wmA.roa
Signing time: Sat 01 Jan 2022 01:54:07 +0000
ROA not before: Sat 01 Jan 2022 01:54:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25623
IP address blocks: 2a06:ee05::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99493972 (0x5ee2854)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88e719f426793b1e9063771460abd311a3dff116
Validity
Not Before: Jan 1 01:54:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f62f5508f84960e1c8560b90dfb90c90cbdc260
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:48:2f:33:bf:37:99:19:d4:5d:02:32:b1:35:
3d:3d:1a:d1:2f:be:1d:69:6b:93:3c:e3:48:da:55:
0d:6d:50:78:b0:1d:36:61:d5:ac:e6:82:ed:08:1e:
3d:6e:62:3b:f0:c3:74:7e:d1:da:72:27:6e:4a:31:
ad:ef:2a:0e:06:fd:de:df:06:44:45:ee:20:17:ed:
71:b3:0a:74:d6:1e:88:dd:82:19:2b:15:76:9a:db:
86:58:0b:d7:f5:a4:d1:d8:c0:4d:5d:14:c5:ed:52:
28:65:2e:c3:af:d1:a8:12:ba:d5:cb:94:85:f7:e0:
f1:26:7e:3e:0a:48:01:68:ad:31:2a:cb:1b:f6:3a:
c6:37:b0:0d:22:b5:36:8c:c1:2c:20:80:12:b6:c5:
7c:50:55:7a:28:84:da:e3:55:df:07:cf:b5:76:4e:
4f:4f:ad:ca:50:71:13:60:63:37:00:e4:97:7e:a9:
85:cc:86:2e:64:79:b9:85:e6:d8:53:9d:31:11:48:
eb:20:ff:25:26:62:4b:2a:b5:48:dc:42:bf:91:a5:
c2:93:ca:7e:48:d1:d3:1e:51:47:7a:8c:fb:2e:d8:
9d:0c:ad:8e:20:0d:92:f6:cd:5e:38:24:72:80:32:
6d:e9:67:c3:ad:70:2c:d8:13:c5:13:10:17:1a:31:
ce:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:62:F5:50:8F:84:96:0E:1C:85:60:B9:0D:FB:90:C9:0C:BD:C2:60
X509v3 Authority Key Identifier:
keyid:88:E7:19:F4:26:79:3B:1E:90:63:77:14:60:AB:D3:11:A3:DF:F1:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOcZ9CZ5Ox6QY3cUYKvTEaPf8RY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/00d45d-5e48-458d-92f7-ae52e156b77e/1/X2L1UI-Elg4chWC5DfuQyQy9wmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/00d45d-5e48-458d-92f7-ae52e156b77e/1/iOcZ9CZ5Ox6QY3cUYKvTEaPf8RY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:ee05::/32
Signature Algorithm: sha256WithRSAEncryption
63:05:61:69:e6:e0:b9:dc:ba:ce:46:a0:b2:f9:79:41:e9:7f:
5a:e7:5f:67:6e:ba:e0:b3:e7:ad:e8:48:95:24:4c:66:07:23:
2c:56:a4:09:b7:9c:34:f1:43:aa:c3:33:de:7e:38:e8:2e:7e:
d1:ec:89:1e:dd:2a:79:c6:98:9c:ce:8d:95:77:02:0c:4a:d6:
b1:ed:5e:ae:cd:f4:f7:e4:87:89:1c:b4:6d:1b:b2:d0:dc:03:
24:36:a1:ea:9c:3a:a6:56:2b:92:9b:84:7a:63:73:6c:08:f2:
2e:16:68:40:10:09:31:c7:46:82:e3:26:0b:a9:70:b7:99:0c:
92:28:a1:e3:a6:99:c6:42:44:de:60:35:80:a3:f5:b6:23:69:
db:c4:00:52:22:69:b4:2c:be:17:4c:05:2e:11:f2:49:6a:ab:
1d:4c:e1:40:65:82:b3:3d:2c:b4:d2:8a:b9:d4:b6:7c:21:f5:
2b:ac:cd:da:e1:dc:42:25:50:0e:f1:bf:55:29:0f:f9:1c:ad:
0f:78:20:7a:e5:ef:60:ff:0c:6d:92:21:af:8a:94:1c:dd:25:
64:d7:4c:ef:71:dd:30:15:68:00:d2:e7:e7:0e:aa:2e:c5:89:
35:cb:30:ff:95:04:dd:16:55:c5:f1:44:83:44:2c:e8:bf:9b:
49:38:f9:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:11 2024 by rpki-client on console-fra.rpki-client.org