Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/GlEYRMqnAtemfSxETGLODjEzA2U.roa
File: GlEYRMqnAtemfSxETGLODjEzA2U.roa (raw, json)
Hash identifier: ZAWKOl267AiO9g5AbmQBX3ObPzWwdJ6bm2tlSw8ERd4=
Subject key identifier: 1A:51:18:44:CA:A7:02:D7:A6:7D:2C:44:4C:62:CE:0E:31:33:03:65
Certificate issuer: /CN=ff31492473a78c6fe9f539f9fa7d2252560a2b7e
Certificate serial: 05EA4DF6
Authority key identifier: FF:31:49:24:73:A7:8C:6F:E9:F5:39:F9:FA:7D:22:52:56:0A:2B:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_zFJJHOnjG_p9Tn5-n0iUlYKK34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/GlEYRMqnAtemfSxETGLODjEzA2U.roa
Signing time: Sat 01 Jan 2022 06:02:13 +0000
ROA not before: Sat 01 Jan 2022 06:02:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3624
IP address blocks: 2001:bf7:540::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99241462 (0x5ea4df6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff31492473a78c6fe9f539f9fa7d2252560a2b7e
Validity
Not Before: Jan 1 06:02:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a511844caa702d7a67d2c444c62ce0e31330365
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:1a:2a:9b:63:29:cc:03:0a:39:4a:4f:13:d6:
41:9b:54:cc:6e:a4:55:c0:d3:d6:35:45:82:b3:86:
df:63:b1:24:75:c2:2d:a9:35:c7:63:34:5d:fe:54:
9f:fb:cb:14:84:48:4a:63:7e:90:c7:53:0d:11:59:
1c:db:71:ec:84:5a:2a:2a:53:ab:16:1b:b8:74:ab:
53:54:ab:6b:bd:b4:9b:44:b3:e7:81:61:11:96:c5:
57:f5:5a:38:85:08:91:1a:ec:a2:22:b8:97:19:0c:
67:05:07:cf:89:34:4c:7e:71:03:2b:ba:97:16:15:
21:5a:6b:02:ee:46:43:8d:02:65:ab:63:51:a1:de:
4c:a2:86:95:e5:9d:a1:ac:a9:e9:f7:f2:4f:35:c0:
b5:1e:c1:98:c3:7e:2a:4c:69:50:65:c2:b2:2d:c3:
db:21:94:1e:5c:ac:be:34:4f:58:c8:1c:b4:49:7f:
44:c2:24:8b:53:75:1f:e7:10:8e:53:e2:41:ac:54:
c4:bd:9b:30:23:de:7e:b9:7d:db:a9:a2:f3:b0:5f:
bd:bc:12:e9:27:ac:19:b8:a9:2f:72:a1:61:7b:79:
52:8f:1f:69:4c:16:38:d6:03:7a:b7:fe:ab:59:b9:
3b:ec:e7:bc:9a:f6:6e:7e:5c:51:2f:dc:74:77:ca:
4d:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:51:18:44:CA:A7:02:D7:A6:7D:2C:44:4C:62:CE:0E:31:33:03:65
X509v3 Authority Key Identifier:
keyid:FF:31:49:24:73:A7:8C:6F:E9:F5:39:F9:FA:7D:22:52:56:0A:2B:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_zFJJHOnjG_p9Tn5-n0iUlYKK34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/GlEYRMqnAtemfSxETGLODjEzA2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/_zFJJHOnjG_p9Tn5-n0iUlYKK34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:bf7:540::/48
Signature Algorithm: sha256WithRSAEncryption
93:e0:80:f7:56:1a:1c:bc:4b:33:1e:8d:59:cd:4c:27:37:bb:
cd:cc:50:6a:c1:52:aa:ef:7c:24:87:92:9f:d5:04:c5:93:2b:
90:ec:2a:d4:f5:bd:f1:77:01:e7:33:56:a9:e5:cf:d0:a4:26:
7a:f2:bc:85:eb:44:aa:66:04:fa:fb:04:9e:3b:9d:39:37:d1:
5a:62:bd:cd:02:26:ed:58:2b:81:0b:33:1c:50:ed:f1:ad:cb:
96:b3:9d:7d:90:f5:ee:53:ce:25:a4:23:71:73:72:da:40:06:
a0:b1:3c:0c:60:38:20:10:e7:39:4b:78:75:e1:20:60:f5:6d:
5f:55:f5:3d:c2:8e:1c:af:60:99:4b:24:84:18:b4:6c:e4:1f:
bb:ad:be:79:a5:6d:95:1d:fc:08:f6:2d:a0:69:02:6a:d3:36:
4e:aa:84:88:9a:c4:86:d0:2a:04:18:78:98:92:0a:82:60:31:
7b:b4:fa:4c:7a:e4:82:3c:3d:71:07:e2:d9:b9:75:58:27:40:
bb:96:ad:14:98:a6:d9:ca:a7:80:70:fe:f3:75:62:8b:5c:14:
73:13:7a:00:ee:32:06:92:fd:cd:39:25:5d:bb:65:72:a3:8b:
2c:02:39:8a:08:0d:91:8b:4f:72:28:cb:fa:28:92:b0:94:40:
95:5d:3e:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:40 2024 by rpki-client on console-ams.rpki-client.org