Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/2923ab-3ff8-4aa9-9220-5e292aa544af/1/2okNZGN2yzX9GMtm_7jrp8Xk49I.roa
File: 2okNZGN2yzX9GMtm_7jrp8Xk49I.roa (raw, json)
Hash identifier: tkTOzHHUub5E0hTJXigDcYnMrXz4f4UrgiyY7/cCy7U=
Subject key identifier: DA:89:0D:64:63:76:CB:35:FD:18:CB:66:FF:B8:EB:A7:C5:E4:E3:D2
Certificate issuer: /CN=4516eb0ee37a71076461ec6cba8b925ac5e28a04
Certificate serial: 01D5F0
Authority key identifier: 45:16:EB:0E:E3:7A:71:07:64:61:EC:6C:BA:8B:92:5A:C5:E2:8A:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RRbrDuN6cQdkYexsuouSWsXiigQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/2923ab-3ff8-4aa9-9220-5e292aa544af/1/2okNZGN2yzX9GMtm_7jrp8Xk49I.roa
Signing time: Thu 23 Jun 2022 18:36:10 +0000
ROA not before: Thu 23 Jun 2022 18:36:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56457
IP address blocks: 2a13:5a00::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120304 (0x1d5f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4516eb0ee37a71076461ec6cba8b925ac5e28a04
Validity
Not Before: Jun 23 18:36:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da890d646376cb35fd18cb66ffb8eba7c5e4e3d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:22:ed:62:51:b0:67:4c:c6:24:6b:a4:9d:5b:
91:b3:5a:b0:f2:c1:9f:78:9c:cc:0a:6e:8b:dd:7f:
44:4a:53:51:0b:81:9a:84:c8:ed:8f:98:c3:fd:9e:
41:5c:17:72:3a:ee:91:61:fc:78:25:5d:7a:c3:1a:
be:11:6c:73:9e:8a:85:86:bc:be:c9:f4:b4:45:7d:
6f:dc:10:70:1a:82:71:39:41:06:12:a1:4f:0c:69:
47:34:aa:23:09:19:97:f6:51:30:b8:3c:54:b5:6b:
b7:8f:e7:8d:ce:6d:df:8b:75:7b:ee:93:80:ce:53:
38:94:e7:11:b5:6a:5b:84:47:a2:51:e4:80:49:99:
b7:73:38:8d:c9:39:a8:8c:f5:78:07:bc:be:05:9e:
0a:f4:48:c8:d0:0f:77:cf:be:4a:f5:e3:17:14:70:
73:01:7b:11:5d:bb:d2:76:80:cb:85:9a:04:40:b2:
7c:5f:e6:cb:d5:c0:ca:75:4c:ed:66:10:4d:38:af:
af:4d:9f:a6:8d:39:42:82:42:a1:76:4e:2b:fb:b8:
d3:5c:64:ea:af:70:90:51:cd:5c:95:bc:c5:10:c8:
86:3c:79:c7:48:d5:c2:4d:fe:5a:8a:4b:33:78:ea:
02:c7:66:64:6e:64:6e:5c:d3:be:56:10:6c:4e:ec:
53:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:89:0D:64:63:76:CB:35:FD:18:CB:66:FF:B8:EB:A7:C5:E4:E3:D2
X509v3 Authority Key Identifier:
keyid:45:16:EB:0E:E3:7A:71:07:64:61:EC:6C:BA:8B:92:5A:C5:E2:8A:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RRbrDuN6cQdkYexsuouSWsXiigQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/2923ab-3ff8-4aa9-9220-5e292aa544af/1/2okNZGN2yzX9GMtm_7jrp8Xk49I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/2923ab-3ff8-4aa9-9220-5e292aa544af/1/RRbrDuN6cQdkYexsuouSWsXiigQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:5a00::/29
Signature Algorithm: sha256WithRSAEncryption
98:02:0c:d3:b6:de:4d:e4:2f:5a:69:93:c4:2e:ad:04:9a:17:
39:6c:ef:d7:f6:0e:86:bd:7e:9d:97:19:34:f9:89:e5:d5:dd:
f5:83:41:32:51:64:8b:17:b3:65:93:3d:04:3c:23:6c:53:b6:
4f:17:9c:a0:57:8e:0c:36:bf:4f:35:81:af:c8:b0:76:d3:39:
9b:e9:2a:d0:1d:8d:53:30:f0:10:fc:8d:07:74:83:d7:6e:12:
ea:a8:9f:40:26:44:99:51:49:f1:6b:5d:ed:24:e7:d6:bb:53:
9b:8a:ff:24:78:73:d2:b2:1e:e7:42:7f:49:49:82:fb:58:72:
0a:35:60:5e:49:0a:d2:6c:59:61:21:14:16:66:2c:e3:8d:85:
16:85:4a:72:de:4f:4a:08:72:9e:d1:77:5a:f5:9d:cd:12:be:
86:31:36:d4:4d:30:63:7b:a2:42:17:36:0d:0e:b1:57:22:17:
20:ac:21:ab:91:b7:ea:fe:9a:04:d9:e8:c7:6f:9b:ad:34:8f:
fd:28:44:10:7e:b7:8d:e1:88:c3:7f:7c:2d:e4:12:c8:55:1a:
1b:3e:ab:bb:17:ad:3a:7e:c3:eb:43:85:ee:c5:4c:c5:05:9e:
f2:e2:5d:c4:82:77:55:4a:ed:3d:6c:8d:4e:c2:11:a9:d3:a2:
03:55:03:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:33 2024 by rpki-client on console-fra.rpki-client.org