Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/lsW1xlUv7yMVFMt2bApuPdiFMrE.roa
File: lsW1xlUv7yMVFMt2bApuPdiFMrE.roa (raw, json)
Hash identifier: EYPRkLMXbAIVsfzhiLxTg07SMEU7bb/p9JF5bOPdCKo=
Subject key identifier: 96:C5:B5:C6:55:2F:EF:23:15:14:CB:76:6C:0A:6E:3D:D8:85:32:B1
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 10318622
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/lsW1xlUv7yMVFMt2bApuPdiFMrE.roa
Signing time: Wed 19 Jan 2022 12:52:58 +0000
ROA not before: Wed 19 Jan 2022 12:52:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210464
IP address blocks: 2a06:e881:8705::/48 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 271681058 (0x10318622)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 19 12:52:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=96c5b5c6552fef231514cb766c0a6e3dd88532b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ae:2a:ac:f8:52:a9:63:e4:c7:22:f8:62:4d:
9b:94:bc:ec:cd:70:b2:9a:af:6b:d1:c4:13:20:d9:
11:fe:1d:07:e9:fd:33:a6:59:92:0e:db:80:35:14:
6f:a7:8c:83:98:6f:14:0b:9d:8f:2c:0a:63:a9:42:
99:18:c7:43:35:4c:cf:7c:5b:5d:9c:33:13:bf:6a:
11:a7:f2:53:6b:71:ec:ed:10:04:57:3b:b4:d2:46:
57:64:a1:8b:3d:e5:4f:b4:17:59:d4:07:f5:8e:9c:
de:59:32:3c:62:b2:9a:7f:77:b1:89:ce:99:74:ef:
13:2d:7a:e5:70:16:ca:b0:6e:1f:4a:3b:98:7c:3a:
f5:b1:c0:e0:38:01:43:b6:25:d7:07:57:26:e7:31:
52:53:c5:ee:ac:10:89:72:5c:e5:27:a9:9e:23:5e:
2d:b4:ec:4a:0b:f7:92:89:3c:86:34:33:2e:09:08:
90:ae:fa:68:39:2d:ea:9d:e7:d1:a2:21:38:fe:f5:
95:96:dc:f6:04:e2:6d:dc:f2:26:52:8f:45:90:0d:
c1:cc:90:f6:11:e8:07:af:72:c5:7f:38:84:84:01:
f6:a1:a9:fd:b8:e8:b2:55:bc:b3:71:62:14:7c:54:
10:84:88:80:47:11:a5:ce:1e:3a:eb:5d:04:be:c5:
d5:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:C5:B5:C6:55:2F:EF:23:15:14:CB:76:6C:0A:6E:3D:D8:85:32:B1
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/lsW1xlUv7yMVFMt2bApuPdiFMrE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:8705::/48
Signature Algorithm: sha256WithRSAEncryption
19:7d:1c:c6:07:c0:51:5f:1d:bb:9c:2a:c2:5b:0b:00:ec:81:
63:7f:2f:53:15:f7:8b:ed:2e:b0:39:8b:1b:58:79:72:8e:70:
5d:07:c8:12:95:6b:d7:dc:4f:22:e1:80:21:7b:82:86:92:8d:
c0:52:2e:b8:ab:ec:9f:e6:77:bb:da:39:08:f4:50:3a:1d:1e:
0b:6c:c9:7e:82:f0:e7:f5:0e:ab:7d:b3:c3:21:84:45:9b:5e:
6b:b8:cc:fd:09:c1:14:31:a6:c9:d4:92:a5:90:34:1f:a5:8d:
54:36:a1:bd:c3:21:a5:7a:d3:8b:c1:71:1c:21:23:d6:3c:41:
f8:99:1c:eb:99:80:a2:74:b0:0c:fc:74:c8:a8:82:40:f3:78:
5e:ee:22:61:ae:68:77:72:77:f5:a0:4e:1b:f8:85:1a:c5:8c:
a9:25:db:e5:20:2b:33:12:f0:32:7b:f2:6b:df:38:af:d9:33:
8a:17:b0:7c:d6:e6:71:07:da:00:32:05:5d:5e:f6:00:0e:c1:
17:05:66:c0:42:96:00:e7:c8:fb:67:08:94:1e:88:4d:f6:63:
d9:b5:00:a0:97:d7:65:f1:b3:65:b7:64:7d:30:79:f2:a7:f4:
6a:d3:7e:20:28:c6:b4:cd:9f:1c:aa:5a:77:be:95:70:5c:6d:
a1:76:be:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:40 2024 by rpki-client on console-ams.rpki-client.org