Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/bbcf3c-67cd-403f-944c-fd5d79ec5b17/1/LGnomqCrM_Hu5h6fm-avpXQSzSw.roa
File: LGnomqCrM_Hu5h6fm-avpXQSzSw.roa (raw, json)
Hash identifier: y4zB+3wloXO9PCRY2DrgPJkrFvHPve+tHJpFQejWBjY=
Subject key identifier: 2C:69:E8:9A:A0:AB:33:F1:EE:E6:1E:9F:9B:E6:AF:A5:74:12:CD:2C
Certificate issuer: /CN=98418cc6550dfdb1899969a6027e435a1b0b1341
Certificate serial: 0181EC54BCE19245A6C51B6409B23E65FAA7
Authority key identifier: 98:41:8C:C6:55:0D:FD:B1:89:99:69:A6:02:7E:43:5A:1B:0B:13:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mEGMxlUN_bGJmWmmAn5DWhsLE0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/bbcf3c-67cd-403f-944c-fd5d79ec5b17/1/LGnomqCrM_Hu5h6fm-avpXQSzSw.roa
Signing time: Mon 11 Jul 2022 08:16:25 +0000
ROA not before: Mon 11 Jul 2022 08:16:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47610
IP address blocks: 2001:67c:a20::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ec:54:bc:e1:92:45:a6:c5:1b:64:09:b2:3e:65:fa:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98418cc6550dfdb1899969a6027e435a1b0b1341
Validity
Not Before: Jul 11 08:16:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c69e89aa0ab33f1eee61e9f9be6afa57412cd2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:27:1d:d9:96:59:e2:c1:c8:14:ff:d3:f2:86:
6c:91:5b:3d:e3:6e:47:f7:26:81:d1:08:65:03:27:
b9:9c:df:41:66:61:f0:07:21:8c:70:a7:8b:39:78:
3e:c7:65:06:8b:00:07:cc:5f:9d:fa:21:42:97:a0:
39:81:e3:9e:4f:10:d1:9c:69:f0:f7:2f:87:aa:36:
1b:07:ff:f0:83:1b:d7:94:ab:07:bd:0d:70:68:9d:
12:07:30:b0:b8:9a:f3:99:03:9e:d8:5a:dd:2b:a6:
2e:0d:0d:84:dc:91:56:53:98:60:60:32:ec:b6:25:
34:31:fb:dd:e1:8c:81:29:ab:b3:3d:25:f1:d8:5a:
f4:07:73:b8:59:2d:0e:0f:49:39:f1:2e:b9:69:95:
f7:21:59:76:4d:8d:11:cc:7f:c0:75:70:e6:14:ce:
c7:96:a9:13:4a:18:66:00:4c:e5:04:ae:cd:8c:c4:
bd:26:c7:cf:ab:24:e0:d4:48:8d:c5:d9:5c:cc:04:
cf:88:60:d3:b8:89:83:23:64:3f:55:fc:1f:6d:e7:
5b:f6:08:71:64:76:92:68:1b:5a:48:e8:7f:ef:51:
b3:fb:9d:f0:c8:d1:b7:30:73:c3:4a:c9:96:20:fc:
c6:79:1c:9e:e5:71:73:46:9d:21:5d:a4:39:af:d5:
b8:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:69:E8:9A:A0:AB:33:F1:EE:E6:1E:9F:9B:E6:AF:A5:74:12:CD:2C
X509v3 Authority Key Identifier:
keyid:98:41:8C:C6:55:0D:FD:B1:89:99:69:A6:02:7E:43:5A:1B:0B:13:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mEGMxlUN_bGJmWmmAn5DWhsLE0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/bbcf3c-67cd-403f-944c-fd5d79ec5b17/1/LGnomqCrM_Hu5h6fm-avpXQSzSw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/bbcf3c-67cd-403f-944c-fd5d79ec5b17/1/mEGMxlUN_bGJmWmmAn5DWhsLE0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:a20::/48
Signature Algorithm: sha256WithRSAEncryption
04:00:41:a2:6c:e2:e8:6b:68:4a:a9:09:2c:4c:70:d2:73:49:
88:e3:ff:ab:89:4d:d6:70:a3:9e:bf:e9:da:80:69:a1:ae:f8:
36:51:0e:83:1f:e9:a3:07:12:d5:90:7e:1f:00:83:d3:23:ea:
2f:28:2f:b0:03:31:9e:ca:c1:30:6d:ff:cf:99:1e:0f:e8:2a:
db:e6:38:1f:7c:5a:94:ea:88:a7:43:12:68:d6:b0:fa:ef:61:
19:76:49:f7:d8:39:11:a6:83:1a:66:b1:02:ec:72:6b:9f:5b:
cf:07:77:c0:b8:a8:31:15:a6:eb:09:11:21:ef:89:9f:80:ff:
88:39:51:a2:d5:e5:94:b6:5e:6c:cc:58:39:37:16:ff:06:3a:
61:4c:d1:0f:f4:67:dc:b4:61:4e:47:55:8d:0f:e9:52:c1:85:
15:0a:a5:c0:83:a0:9f:42:78:a8:49:bf:e8:9d:45:9b:e6:48:
cc:75:2f:93:25:3c:72:ef:a2:e6:78:21:44:fa:73:84:c5:bf:
43:c6:a0:fd:2f:29:d0:b5:c1:5d:bf:03:a6:07:17:50:17:11:
8e:0b:f4:bd:33:b2:65:81:84:46:49:67:71:4f:e7:77:2b:0d:
59:62:5d:a1:7e:10:6c:ff:d0:f4:9c:a0:e9:7c:79:d0:93:72:
77:67:4e:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:36 2024 by rpki-client on console-fra.rpki-client.org