Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/ltUWiSWwAUZoOomsTf8Khv0kdNI.roa
File: ltUWiSWwAUZoOomsTf8Khv0kdNI.roa (raw, json)
Hash identifier: gXk59UFti7QyxpMNjzlWqaB0EYfNdl2ETeaKm/qDM34=
Subject key identifier: 96:D5:16:89:25:B0:01:46:68:3A:89:AC:4D:FF:0A:86:FD:24:74:D2
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 0646F368
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/ltUWiSWwAUZoOomsTf8Khv0kdNI.roa
Signing time: Mon 24 Jan 2022 11:59:09 +0000
ROA not before: Mon 24 Jan 2022 11:59:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209504
IP address blocks: 2a0d:f407:1015::/48 maxlen: 48
2a0d:f407:1016::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105313128 (0x646f368)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jan 24 11:59:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=96d5168925b00146683a89ac4dff0a86fd2474d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c8:65:28:54:6c:df:47:f7:1d:e8:78:f6:41:
68:cd:fc:0e:e5:5e:e7:08:54:9a:00:54:ce:43:2d:
01:1e:8c:2d:b2:9e:b4:1a:b1:53:d0:b6:d8:10:66:
6d:74:27:ed:4c:b6:ab:59:b7:55:84:5c:eb:cf:e5:
7d:18:51:55:61:c3:67:da:4a:3a:be:b5:94:f0:26:
66:1f:33:b0:7b:09:6b:55:ba:3f:f6:cd:69:06:15:
dc:29:5f:98:89:17:ad:10:12:e7:0f:4f:84:6a:b1:
5f:31:26:b1:3d:b1:e2:f1:89:6a:f3:fb:9d:50:48:
89:08:0c:40:66:ed:00:ce:b6:3e:d5:8f:ae:05:28:
59:d1:9c:77:ef:ce:fd:72:70:40:6a:d1:67:76:b8:
87:25:39:de:d3:e0:27:39:7a:fd:5a:e0:fa:bf:ca:
94:e3:4f:a0:a8:88:0f:36:e0:97:dd:78:02:07:f4:
5a:7c:99:93:68:40:1a:82:52:f5:cc:15:cc:0d:c0:
7d:c4:ee:dd:97:a9:50:5c:39:79:9a:6b:61:4c:06:
cd:ce:76:7e:8e:f1:58:bd:9c:84:09:8a:93:fa:87:
ac:c5:96:da:d8:c8:85:dc:46:f0:a4:df:5e:9e:6a:
44:67:3a:16:1e:33:8c:db:0d:aa:74:00:7d:eb:b1:
1c:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:D5:16:89:25:B0:01:46:68:3A:89:AC:4D:FF:0A:86:FD:24:74:D2
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/ltUWiSWwAUZoOomsTf8Khv0kdNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:f407:1015::-2a0d:f407:1016:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
91:a5:0b:00:cd:31:37:93:f7:55:ff:22:0f:d1:45:46:af:23:
dd:ec:66:c4:1e:3e:a8:72:8c:c8:cf:32:21:74:4f:81:fa:d7:
23:cc:21:b3:0e:bf:b1:ba:45:ef:fb:7e:cb:7c:18:18:33:e6:
c3:db:08:59:71:70:bb:2b:81:b7:33:08:45:bc:00:90:19:71:
67:ad:d8:12:20:3b:80:1e:69:92:9a:d1:5f:03:44:96:c9:40:
78:31:6b:06:59:7a:82:6b:86:cd:0b:21:82:49:12:b9:8a:a3:
75:ac:ab:b4:ae:6c:9e:4f:3b:f6:1e:7f:04:51:d3:e2:af:bb:
93:81:f6:f8:93:d6:0a:eb:9e:a5:ac:0d:3a:cd:6d:04:be:99:
60:68:67:09:79:55:79:65:98:7a:55:c4:43:9d:0f:9e:cd:39:
58:4d:2a:44:d3:1a:92:68:e6:35:b9:c3:98:6b:9c:95:b3:d0:
85:64:ae:34:3f:bf:da:37:9f:65:f5:3f:5b:c7:c2:e6:43:4b:
3f:e4:31:8b:67:cd:a7:7b:39:be:bb:77:cb:90:d8:bb:f1:74:
cd:f5:34:e5:4e:4c:bc:f4:cb:99:f5:a3:6d:02:33:64:67:9c:
35:17:2f:86:c2:e8:55:18:fa:5a:39:ff:ee:83:06:61:e9:ba:
d8:1f:c9:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:25 2024 by rpki-client on console-fra.rpki-client.org