Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/h5OcP9Pf1oiU0tO_W4z_gtOppNs.roa
File: h5OcP9Pf1oiU0tO_W4z_gtOppNs.roa (raw, json)
Hash identifier: cCFXF4oN6tiwvLJcm1KIayYNbKfmToMF6eBR5gY78ug=
Subject key identifier: 87:93:9C:3F:D3:DF:D6:88:94:D2:D3:BF:5B:8C:FF:82:D3:A9:A4:DB
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 03338DCF
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/h5OcP9Pf1oiU0tO_W4z_gtOppNs.roa
Signing time: Sat 01 Jan 2022 16:04:29 +0000
ROA not before: Sat 01 Jan 2022 16:04:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202436
IP address blocks: 2a0e:d601:7220::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53710287 (0x3338dcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87939c3fd3dfd68894d2d3bf5b8cff82d3a9a4db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:90:87:b7:84:52:34:76:5e:62:a8:b0:53:35:
52:ba:6c:d0:31:75:cf:a1:fb:e1:88:c8:73:eb:1e:
cc:20:f0:37:4b:ec:84:25:35:7c:8c:fd:42:7d:d0:
2c:f5:05:1a:20:28:98:4a:03:dd:69:b5:db:ef:8d:
fe:be:17:47:24:bc:aa:30:af:b0:25:6b:6c:1d:82:
76:76:fe:24:7a:87:ec:8b:36:5f:d4:87:81:f6:76:
53:aa:fc:56:25:ba:c1:57:3a:e6:4a:99:5b:71:6f:
c2:eb:3c:21:7f:17:18:23:96:56:cf:cb:55:ca:09:
fe:b9:1d:c3:07:6e:d9:a9:92:68:7f:b5:dd:ab:c6:
c5:79:00:b6:a1:ac:cc:b3:32:49:6f:4c:8a:14:b4:
75:12:76:6c:b5:56:82:c7:a3:5e:f8:ac:e6:85:6c:
a0:be:43:57:f4:8d:b1:68:b2:3c:76:30:c5:93:8d:
b7:ac:7a:0d:b6:69:e0:0b:cf:92:58:03:0c:98:09:
28:0e:d5:9f:51:7b:4c:b5:50:54:0b:c7:25:22:42:
4e:27:16:51:3a:1e:14:a9:ca:e9:a4:d0:25:96:4b:
81:7a:b8:22:c7:d0:a6:20:77:b7:25:9a:8b:7c:aa:
b1:61:ea:ea:0a:d4:59:6a:c9:9e:0e:d4:cc:7c:2e:
90:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:93:9C:3F:D3:DF:D6:88:94:D2:D3:BF:5B:8C:FF:82:D3:A9:A4:DB
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/h5OcP9Pf1oiU0tO_W4z_gtOppNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:d601:7220::/48
Signature Algorithm: sha256WithRSAEncryption
ab:46:26:66:01:8b:b6:24:f5:bb:4e:f7:f8:55:b2:d3:ee:96:
c0:51:99:ae:5c:40:9d:dd:07:cc:3b:df:1e:11:06:5e:42:ce:
d3:11:89:ac:8b:e2:b0:12:0c:91:32:7b:17:2a:74:41:a3:76:
59:5c:97:14:e9:94:2e:ad:cc:8a:cb:12:68:e0:65:dc:2f:41:
07:31:2e:d2:9c:27:f9:e7:63:9d:4f:2a:76:5b:90:cf:f5:42:
ba:49:5c:b6:b3:97:95:22:5c:18:86:e3:92:2c:bb:bd:bf:0c:
9f:8f:e0:75:25:92:27:c8:f6:74:8d:f9:04:c9:ef:a5:47:84:
bb:5e:64:0d:a8:10:5a:7f:fd:50:28:2c:c3:a7:08:d2:ba:d7:
1d:7a:ca:24:e7:72:72:48:85:3f:28:cc:a8:43:85:f4:f0:94:
55:da:84:b0:f3:a4:11:59:c2:3e:5e:7f:8c:64:d0:ab:74:e5:
61:a4:57:a0:01:3a:f2:d7:61:ab:c3:f0:77:cf:e4:8b:23:34:
0e:82:67:b2:ed:be:b0:c4:1d:b4:be:7a:34:b3:8a:3a:eb:76:
50:08:ba:3f:77:5f:6f:82:bf:2d:5d:80:0a:d9:db:63:c1:95:
c0:45:90:5c:8d:b5:ba:aa:04:56:a3:38:45:cc:18:29:b5:50:
13:64:db:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org