Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/__XYt0_JdIL_l35x94E3RL2Sn2E.roa
File: __XYt0_JdIL_l35x94E3RL2Sn2E.roa (raw, json)
Hash identifier: 7SUmqKsEyaeAY4TXJKkKyMbVVfcS8BLwAiEi5lsyAFA=
Subject key identifier: FF:F5:D8:B7:4F:C9:74:82:FF:97:7E:71:F7:81:37:44:BD:92:9F:61
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 0608DDEF
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/__XYt0_JdIL_l35x94E3RL2Sn2E.roa
Signing time: Sat 01 Jan 2022 16:01:26 +0000
ROA not before: Sat 01 Jan 2022 16:01:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211894
IP address blocks: 2a0d:f407:1024::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101244399 (0x608ddef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jan 1 16:01:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fff5d8b74fc97482ff977e71f7813744bd929f61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f7:66:78:f0:7a:0c:a9:c7:f6:8d:06:ad:dc:
10:02:8e:69:50:bb:cb:17:2b:c6:05:ce:17:ea:68:
11:55:64:79:e7:cf:65:ec:ec:74:f9:eb:7c:c9:99:
5c:23:ab:61:5d:e0:53:54:35:a0:3a:7d:b3:07:9f:
31:38:cf:14:c8:64:e8:97:cb:f0:34:0a:31:69:5c:
ab:6f:20:92:ef:f2:3d:85:3d:c2:bf:9d:56:da:c8:
bd:0e:32:3d:49:b5:1d:ab:8c:0b:4b:8a:cb:0a:09:
d7:4a:9d:18:bb:1a:26:a6:0d:7b:da:84:fe:59:ff:
c6:fa:a6:b1:9b:46:13:b7:8c:8e:60:40:eb:f4:b5:
46:34:c4:6f:28:53:f4:e6:80:a4:8f:f2:db:83:9b:
26:5b:ed:72:61:7a:0c:79:83:7b:a3:17:8e:1c:c5:
25:4e:ba:20:00:df:a6:64:71:06:9c:fe:ac:de:d9:
cd:68:64:0b:41:5d:fd:ce:37:58:99:29:73:57:86:
cf:a1:c6:ed:e5:09:f6:b3:85:7a:95:2f:52:39:c8:
77:29:c6:db:9f:3b:79:34:25:bb:95:03:01:39:60:
44:f2:6d:65:a4:31:37:91:26:52:ce:41:4b:67:bb:
14:4a:21:4d:3c:67:38:ab:f1:62:24:f5:1f:73:b7:
68:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:F5:D8:B7:4F:C9:74:82:FF:97:7E:71:F7:81:37:44:BD:92:9F:61
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/__XYt0_JdIL_l35x94E3RL2Sn2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:f407:1024::/48
Signature Algorithm: sha256WithRSAEncryption
0f:26:32:6c:21:97:6b:81:dc:92:f9:5a:cd:da:f4:29:70:f3:
b4:92:ae:6f:cf:80:db:06:4c:05:0f:2c:9c:24:6f:3f:37:97:
25:bd:cb:25:b3:c0:93:cf:b3:1d:a4:87:83:4c:af:10:c2:ab:
49:51:ea:90:6b:06:87:6d:d8:da:2f:1b:bb:bf:39:d9:e9:96:
6b:f0:e3:9e:ef:f3:23:50:1a:0a:f8:32:fd:01:de:02:a4:25:
21:34:19:e3:78:70:c0:b8:4b:40:d6:e8:24:88:36:2a:e3:20:
d2:0a:bf:9f:83:fa:6a:c7:e3:6d:d3:73:fc:23:80:ae:87:fd:
c2:72:bf:94:fc:af:5f:9c:27:1a:f2:a7:c2:2a:4c:c6:50:2a:
48:43:e2:47:7b:24:4c:5a:03:2f:b5:e0:8a:41:30:67:7b:db:
5f:5d:28:1f:46:91:73:45:93:78:a2:22:c2:cd:79:e9:17:8a:
8d:f1:f8:83:38:29:52:39:91:ee:b4:57:c0:39:05:7c:b1:0d:
61:cf:29:88:9f:8e:cf:19:dc:ea:2e:36:80:fb:2b:c0:7a:42:
c7:49:7b:9a:a8:6d:3b:7d:0f:49:85:4f:be:08:14:da:51:6a:
40:05:43:76:37:e4:6c:f7:6f:cb:24:43:d6:61:71:45:5a:48:
c6:e2:27:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:25 2024 by rpki-client on console-fra.rpki-client.org