Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/0L3m5JodywjNd4AEV96D6PwPmX4.roa
File: 0L3m5JodywjNd4AEV96D6PwPmX4.roa (raw, json)
Hash identifier: lu1iBTb/EZ93xh7Jx1wIf7pdmb4dyVDzWGDhSOZgKAw=
Subject key identifier: D0:BD:E6:E4:9A:1D:CB:08:CD:77:80:04:57:DE:83:E8:FC:0F:99:7E
Certificate issuer: /CN=ffdec4a46a6e6e4f9a92d0ba2e0b3ab5658be1bd
Certificate serial: 19D96CE3
Authority key identifier: FF:DE:C4:A4:6A:6E:6E:4F:9A:92:D0:BA:2E:0B:3A:B5:65:8B:E1:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_97EpGpubk-aktC6Lgs6tWWL4b0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/0L3m5JodywjNd4AEV96D6PwPmX4.roa
Signing time: Sat 01 Jan 2022 04:55:07 +0000
ROA not before: Sat 01 Jan 2022 04:55:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9053
IP address blocks: 2a0a:54c1:29::/48 maxlen: 48
2a0a:54c1:28::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 433679587 (0x19d96ce3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ffdec4a46a6e6e4f9a92d0ba2e0b3ab5658be1bd
Validity
Not Before: Jan 1 04:55:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d0bde6e49a1dcb08cd77800457de83e8fc0f997e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e8:c2:33:52:cc:c2:58:a9:6d:da:76:2a:6d:
0e:09:19:80:3a:6b:17:16:38:7f:3f:d0:64:9d:64:
16:d6:c5:ab:8d:19:20:45:8e:d9:41:ea:32:f5:6c:
6a:d5:a3:6b:d2:b7:ce:60:28:f1:9f:03:57:5b:b0:
34:c4:0f:6b:96:1c:25:cf:60:e4:92:43:29:4a:0e:
63:01:85:f9:4c:45:c6:6e:d0:cf:21:f9:bc:ea:76:
5b:e2:51:16:d1:5a:47:3c:82:fe:c9:9d:a0:03:27:
5c:00:54:36:e4:cd:dd:a3:db:6d:db:bb:ca:59:7c:
e7:09:4f:e5:b1:b5:58:89:7e:85:d5:cb:50:04:4b:
b3:c1:0c:2a:60:65:dd:ad:3b:a0:73:55:55:92:bf:
3a:9d:ea:08:5c:80:cc:a8:06:04:e7:e9:f8:13:b2:
6c:23:51:7a:81:2b:6c:32:9d:b1:e4:4c:ee:13:b7:
67:b6:a0:c6:46:26:6a:77:b3:42:76:75:e3:50:2f:
44:a8:2b:c5:e0:15:fe:5e:87:f2:88:48:52:c8:1e:
bd:f0:12:20:c6:c5:24:1c:ab:90:4d:c8:8d:ca:43:
7f:3f:c1:6a:45:e3:2c:2e:ba:8f:c4:e3:aa:5e:a3:
94:a9:ad:a4:63:12:c8:8c:77:bf:b2:3e:ec:f0:29:
58:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:BD:E6:E4:9A:1D:CB:08:CD:77:80:04:57:DE:83:E8:FC:0F:99:7E
X509v3 Authority Key Identifier:
keyid:FF:DE:C4:A4:6A:6E:6E:4F:9A:92:D0:BA:2E:0B:3A:B5:65:8B:E1:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_97EpGpubk-aktC6Lgs6tWWL4b0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/0L3m5JodywjNd4AEV96D6PwPmX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/_97EpGpubk-aktC6Lgs6tWWL4b0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:54c1:28::/47
Signature Algorithm: sha256WithRSAEncryption
5b:0a:f1:e7:c6:1c:73:78:67:3e:de:bc:80:8a:2e:73:ae:94:
d6:a3:23:7c:12:4d:5d:c5:e9:00:02:28:9e:20:2c:42:18:65:
8f:6d:ed:e0:1e:d0:22:d6:c6:2b:6d:49:93:08:20:50:42:26:
70:b8:c2:c4:27:5a:a0:1c:69:86:71:fa:12:90:50:32:24:1c:
ab:9c:2d:a1:4a:23:ea:88:3a:2c:13:37:66:cb:4a:3d:46:f0:
7d:82:bd:98:5a:98:d3:e7:7f:8f:f9:ab:00:f6:7b:c9:9d:92:
5a:5e:98:6b:63:7a:79:50:9c:f2:93:d2:5d:d6:93:f6:1a:58:
85:99:a9:37:12:95:f5:70:68:36:c2:00:79:fe:e3:9f:0d:ed:
16:11:b1:9f:9a:98:fa:e9:92:14:3a:e8:ee:33:51:22:6c:87:
71:6e:75:23:e9:c5:ca:69:a9:af:4d:b5:6c:74:7e:3f:e9:8d:
5d:e1:ee:93:4c:f5:db:60:56:c0:85:cb:85:03:52:56:26:5b:
2a:1f:89:92:95:78:76:ac:e3:76:77:5e:22:b4:11:5e:78:20:
3f:ad:cd:b3:d4:e4:97:39:c6:70:ae:5c:9c:5c:30:10:d7:85:
04:4c:4c:91:e3:95:c5:11:49:e8:42:41:51:72:fe:6a:e2:8d:
e4:12:d9:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:52 2024 by rpki-client on console-ams.rpki-client.org