Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/f33dff-8270-4894-ba8a-bbf2e37438d5/1/is6VKwK3aEPaJhwtgzxmJKnWlAE.roa
File: is6VKwK3aEPaJhwtgzxmJKnWlAE.roa (raw, json)
Hash identifier: sRkpt3j26XjoS+li0aCxCJ9KBQfx4RSij5av2xHiL9s=
Subject key identifier: 8A:CE:95:2B:02:B7:68:43:DA:26:1C:2D:83:3C:66:24:A9:D6:94:01
Certificate issuer: /CN=d7475ecb0f680a56d20f581bbdce521cfb7eb46d
Certificate serial: 023546A9
Authority key identifier: D7:47:5E:CB:0F:68:0A:56:D2:0F:58:1B:BD:CE:52:1C:FB:7E:B4:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10deyw9oClbSD1gbvc5SHPt-tG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/f33dff-8270-4894-ba8a-bbf2e37438d5/1/is6VKwK3aEPaJhwtgzxmJKnWlAE.roa
Signing time: Sat 21 May 2022 02:57:29 +0000
ROA not before: Sat 21 May 2022 02:57:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56762
IP address blocks: 2001:67c:81c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37045929 (0x23546a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7475ecb0f680a56d20f581bbdce521cfb7eb46d
Validity
Not Before: May 21 02:57:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ace952b02b76843da261c2d833c6624a9d69401
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:2d:9a:73:39:70:10:e5:99:24:ff:84:e5:3c:
27:26:aa:61:68:5a:e2:4d:a9:1d:92:69:16:02:59:
ab:01:a4:ae:52:7b:8e:14:f2:d7:75:2a:0d:f0:77:
a3:26:94:3c:b5:34:c4:1a:05:96:fc:21:3b:bb:13:
60:cd:2c:3f:db:e4:17:56:71:5e:34:6e:e3:e1:47:
ca:41:87:2c:12:aa:ba:d4:91:49:21:2c:39:54:22:
de:b4:1e:0c:81:89:6d:86:6f:e0:29:0b:d9:e0:f6:
bc:32:26:5a:b1:2d:e6:cb:ca:83:ef:ed:ee:db:5d:
4c:a1:05:f3:8f:5d:18:08:88:56:40:23:83:32:b3:
4b:4c:ad:1b:22:f3:fa:45:9c:86:49:61:96:ad:67:
a6:c7:73:78:60:50:ea:ff:ac:2a:d4:f7:08:84:11:
7c:62:a3:38:77:ff:52:f5:9d:83:93:03:94:30:73:
05:d9:f0:4d:d3:ec:dd:32:5c:19:3f:f2:37:e5:c0:
56:52:e6:6e:23:8e:16:8f:0c:fc:7a:22:5e:75:30:
de:62:ec:ee:41:ad:d6:93:99:67:e5:0e:82:d4:71:
51:17:bb:ff:92:18:a8:39:86:d8:83:52:44:1a:dd:
37:6f:24:20:5d:46:bb:09:41:d0:a9:83:a3:4a:a8:
84:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:CE:95:2B:02:B7:68:43:DA:26:1C:2D:83:3C:66:24:A9:D6:94:01
X509v3 Authority Key Identifier:
keyid:D7:47:5E:CB:0F:68:0A:56:D2:0F:58:1B:BD:CE:52:1C:FB:7E:B4:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10deyw9oClbSD1gbvc5SHPt-tG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/f33dff-8270-4894-ba8a-bbf2e37438d5/1/is6VKwK3aEPaJhwtgzxmJKnWlAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/f33dff-8270-4894-ba8a-bbf2e37438d5/1/10deyw9oClbSD1gbvc5SHPt-tG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:81c::/48
Signature Algorithm: sha256WithRSAEncryption
6e:e2:e0:34:a0:fa:d1:80:99:85:aa:20:ef:04:15:8d:08:c3:
04:27:23:ba:a8:aa:ba:ba:c0:e3:86:fe:f1:85:d8:14:6b:57:
fa:0c:30:c2:04:a7:08:31:30:ff:31:0e:2a:db:d7:3c:c1:8d:
21:17:b9:55:81:aa:19:cd:97:c6:3f:31:8b:85:74:2b:ff:30:
b1:6a:3a:10:96:35:8a:13:cb:d0:3f:1c:5b:60:17:fa:2f:56:
9b:72:a3:5e:02:82:25:11:f1:00:72:9d:5c:3b:04:2c:28:08:
0f:a4:ec:9e:92:0e:ba:fe:c2:64:51:b6:1e:99:21:d2:4e:e1:
07:ac:d2:ab:d3:61:aa:d8:db:db:68:f9:2c:d5:d4:b1:04:07:
5c:1d:ac:fd:30:f9:5a:73:51:74:d2:b7:e9:9e:a0:98:38:4e:
6d:20:04:b6:5e:ee:df:a7:91:d9:3a:6f:ad:b7:2d:0c:9c:8c:
e1:41:98:e2:42:b6:54:d0:f6:40:ad:0f:34:f2:ed:86:fb:31:
27:25:4c:d6:26:d8:a7:7e:95:38:d6:fd:19:c0:e9:e2:a3:38:
47:9a:15:90:2d:a8:68:9c:eb:07:20:9b:e3:e1:f4:7d:b4:2a:
a7:02:24:e8:1d:04:0b:90:79:fd:6c:1c:2e:b5:62:68:9a:38:
5f:ba:c4:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:51 2023 by rpki-client on console-fra.rpki-client.org