Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/dl2TsWHWsEKvysU-amaUZwLTz2M.roa
File: dl2TsWHWsEKvysU-amaUZwLTz2M.roa (raw, json)
Hash identifier: dbZr93GxsjmWXL97IcGYeyl3WJgrIF1RFC1PbCo7Qi8=
Subject key identifier: 76:5D:93:B1:61:D6:B0:42:AF:CA:C5:3E:6A:66:94:67:02:D3:CF:63
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 07619F85
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/dl2TsWHWsEKvysU-amaUZwLTz2M.roa
Signing time: Sat 21 May 2022 06:56:29 +0000
ROA not before: Sat 21 May 2022 06:56:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206275
IP address blocks: 2a0d:f407:1034::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123838341 (0x7619f85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: May 21 06:56:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=765d93b161d6b042afcac53e6a66946702d3cf63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:08:d9:51:57:75:20:3e:be:4d:36:7e:15:4f:
e5:3c:1a:92:d0:32:07:29:08:f0:86:2b:fd:c0:9a:
15:4f:51:47:16:df:d2:95:d9:aa:c1:0d:e8:34:86:
2c:94:ac:2a:6e:48:d1:fc:36:bf:fd:54:5b:fa:27:
d1:45:bd:42:47:fd:f3:0f:cb:c0:b8:c4:10:56:1b:
bd:27:02:12:5a:ae:5a:72:51:4f:79:0d:dc:0f:c0:
32:91:7a:ec:ed:60:95:6c:95:45:16:86:35:4b:02:
9f:6f:92:0e:e9:76:75:d1:92:83:75:75:50:de:86:
74:2b:8b:89:1c:da:dd:ca:8c:80:d8:66:0a:5c:19:
6d:68:84:2b:f5:25:3e:10:80:a3:30:fb:96:fa:90:
ba:e3:5b:9c:9f:cb:7c:87:e5:72:0e:84:ff:25:5f:
d7:da:5a:64:a6:5c:a5:f3:b4:2a:5e:98:c2:1b:7e:
1e:29:93:d4:73:10:69:28:e8:94:e5:50:7b:31:47:
37:19:b9:0f:4d:8d:05:64:e4:09:2b:d9:d6:21:d3:
a6:e7:60:11:a5:ab:21:e4:6d:b2:b0:3d:e9:5e:69:
68:ee:e9:d3:86:c0:fc:23:2e:d6:a8:66:f7:59:f3:
7c:ee:0c:b3:77:0b:9c:b7:c1:7d:d3:a2:5a:19:85:
ea:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:5D:93:B1:61:D6:B0:42:AF:CA:C5:3E:6A:66:94:67:02:D3:CF:63
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/dl2TsWHWsEKvysU-amaUZwLTz2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:f407:1034::/48
Signature Algorithm: sha256WithRSAEncryption
7a:80:d9:5b:21:85:1d:06:64:0f:8f:0d:2a:9c:64:07:b9:16:
4e:40:fc:65:78:0e:9a:7f:10:b2:38:69:9d:f4:82:1c:ae:37:
21:d6:ea:6d:eb:1d:07:0d:48:58:a0:fa:0c:40:0f:d2:3d:b8:
e8:c4:08:1e:ff:ac:2e:4a:4f:12:24:ce:7f:2e:ea:d0:74:e3:
fa:e7:b9:97:0d:e6:dd:a0:71:77:ed:b9:ce:6d:2a:36:d5:ed:
ae:cd:8b:e5:55:80:0a:79:f9:9a:1c:ac:42:4d:95:95:4d:aa:
26:a3:99:63:db:ff:a2:f9:b9:cc:44:a9:16:33:00:36:dd:3f:
fc:1d:5c:db:1d:4e:31:26:0e:ff:a0:bf:7e:fe:4a:46:18:f2:
0b:29:2c:89:e0:48:8a:9e:fd:a0:c7:28:18:b1:35:cd:06:c8:
cf:68:5e:08:91:98:3a:1f:43:42:57:23:92:48:79:83:d1:a6:
62:6d:07:86:a3:59:9d:d7:54:bc:ae:ff:e1:96:9a:d6:94:fd:
f8:b3:fb:2d:bb:2e:e8:3b:e0:8d:1e:6d:cb:7f:5f:c7:38:cd:
ea:85:34:23:15:0d:7f:12:55:47:80:2d:e2:98:4d:40:43:e8:
85:1e:44:77:a4:20:ed:d3:2f:56:8d:81:fa:a7:d5:cf:ad:e3:
83:aa:5c:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:25 2024 by rpki-client on console-fra.rpki-client.org