Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/c15e99-2965-476f-9aef-8a273f4ad15d/1/RxhhiQDiQDTKPdlWkxG8sB55lbY.roa
File: RxhhiQDiQDTKPdlWkxG8sB55lbY.roa (raw, json)
Hash identifier: H87CyesNDdxbONrrvFS8+kVw0EupB4vkkVjiGWGJzoY=
Subject key identifier: 47:18:61:89:00:E2:40:34:CA:3D:D9:56:93:11:BC:B0:1E:79:95:B6
Certificate issuer: /CN=fa7eb1115130fac94091061e31462a565226885a
Certificate serial: 0184C80548CB098DB30ADD9DCF6148BFEEE2
Authority key identifier: FA:7E:B1:11:51:30:FA:C9:40:91:06:1E:31:46:2A:56:52:26:88:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-n6xEVEw-slAkQYeMUYqVlImiFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/c15e99-2965-476f-9aef-8a273f4ad15d/1/RxhhiQDiQDTKPdlWkxG8sB55lbY.roa
Signing time: Wed 30 Nov 2022 10:11:40 +0000
ROA not before: Wed 30 Nov 2022 10:11:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57521
IP address blocks: 2a13:bc2:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c8:05:48:cb:09:8d:b3:0a:dd:9d:cf:61:48:bf:ee:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa7eb1115130fac94091061e31462a565226885a
Validity
Not Before: Nov 30 10:11:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4718618900e24034ca3dd9569311bcb01e7995b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d3:76:98:0c:94:cc:45:31:15:7a:0b:a7:3b:
f0:b0:62:da:25:05:45:1c:1f:92:62:f6:36:3e:7f:
50:b9:ae:26:00:a1:72:ed:a2:ac:30:98:41:e6:21:
39:1e:7c:d0:97:e5:46:f1:88:bf:e8:bf:09:cc:ad:
6e:3d:5d:3a:a6:66:2d:82:f9:cc:a5:1a:ca:51:5c:
e5:a7:31:94:08:3b:00:34:16:4a:ea:5a:9e:1e:c7:
82:f6:58:e1:0a:7b:7f:83:08:7c:b7:81:2a:19:05:
87:ce:dd:57:9a:a3:c1:47:dd:e0:d2:cc:b2:82:8d:
22:2d:ed:28:bb:ea:53:3a:cf:f8:5d:50:77:62:16:
0f:3b:85:2a:e1:68:6e:69:95:fc:49:30:07:cb:16:
51:26:02:94:6b:20:14:d3:86:fa:77:46:c7:8a:3f:
c9:76:e0:23:4b:11:51:87:01:28:ad:01:6a:f1:d2:
f3:2d:5e:a3:b5:30:67:61:c5:18:db:b7:7e:01:c5:
ec:29:98:60:de:f1:30:51:b5:55:4c:51:30:e1:dd:
83:e5:8d:ab:1c:c7:a1:3a:0f:b4:30:37:85:90:10:
bc:c2:8d:b9:9f:dd:d6:a7:3c:b1:6e:e2:66:da:f4:
dd:1f:55:e4:18:03:2f:38:8b:0e:39:3c:9c:52:ff:
89:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:18:61:89:00:E2:40:34:CA:3D:D9:56:93:11:BC:B0:1E:79:95:B6
X509v3 Authority Key Identifier:
keyid:FA:7E:B1:11:51:30:FA:C9:40:91:06:1E:31:46:2A:56:52:26:88:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-n6xEVEw-slAkQYeMUYqVlImiFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c15e99-2965-476f-9aef-8a273f4ad15d/1/RxhhiQDiQDTKPdlWkxG8sB55lbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c15e99-2965-476f-9aef-8a273f4ad15d/1/1-n6xEVEw-slAkQYeMUYqVlImiFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:bc2:2::/48
Signature Algorithm: sha256WithRSAEncryption
7b:81:ab:cc:e4:e4:97:49:9b:69:d1:41:0a:32:84:7a:65:6e:
5f:d2:87:be:28:c9:d7:89:54:28:5b:55:fe:2d:28:7e:54:74:
f6:14:22:e6:83:11:04:a8:5b:2a:fd:e2:ed:17:7c:00:ae:2b:
4d:fc:91:2f:d2:ea:3f:2c:e7:6b:b2:95:c7:dc:e7:d5:0b:70:
4a:1d:7c:9e:bf:b5:57:5b:cf:13:cc:0b:e0:59:2b:72:bb:c7:
9c:fc:a0:b0:df:97:1c:48:e1:4a:ec:26:db:8a:e2:3e:ee:cb:
4d:7e:a1:3f:bf:e8:a3:72:bb:7c:28:fb:ce:89:83:01:e5:dc:
a4:a7:dd:9f:de:c8:c5:a2:f5:48:df:a0:80:19:be:54:bc:4b:
6e:63:0b:25:a4:88:eb:bf:82:50:3e:21:1c:43:d6:bc:da:39:
42:b4:0d:d5:7b:f4:dc:39:15:d0:32:15:5a:ed:88:a5:e2:fc:
45:a3:c0:75:99:89:0f:eb:f1:0c:99:10:85:4c:5f:b1:1d:26:
54:ea:7a:68:cb:c2:82:39:f0:34:e2:9a:1e:5d:e5:2c:5c:da:
2d:21:5e:ea:0b:73:04:24:32:5d:e1:fb:01:8c:42:6d:6e:6f:
35:75:a8:b2:de:fe:44:84:72:4e:77:25:a0:9f:9f:85:a4:96:
76:0d:32:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:17 2024 by rpki-client on console-ams.rpki-client.org