Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/Lshee1aXuYzbT3F5h5Wn-UTkOFM.roa
File: Lshee1aXuYzbT3F5h5Wn-UTkOFM.roa (raw, json)
Hash identifier: +wp+Uyc9R8EesfJ6daMSg9HWBPbpX4Bd4zqK/NfVohk=
Subject key identifier: 2E:C8:5E:7B:56:97:B9:8C:DB:4F:71:79:87:95:A7:F9:44:E4:38:53
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 07793D86
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/Lshee1aXuYzbT3F5h5Wn-UTkOFM.roa
Signing time: Sat 01 Jan 2022 05:04:20 +0000
ROA not before: Sat 01 Jan 2022 05:04:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63023
IP address blocks: 2a0e:f180::/29 maxlen: 29
2a09:59c0::/29 maxlen: 29
2a0e:2800::/29 maxlen: 29
2a0e:6c00::/29 maxlen: 29
2a0e:b00::/29 maxlen: 29
2a0e:8400::/29 maxlen: 29
2a09:57c0::/29 maxlen: 29
2a0e:2c00::/29 maxlen: 29
2a09:5bc0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125386118 (0x7793d86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Jan 1 05:04:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ec85e7b5697b98cdb4f71798795a7f944e43853
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:63:9c:9f:87:ba:72:42:04:43:43:1d:6b:b1:
f1:c7:ce:c9:cf:3e:8d:38:4e:72:ff:dd:0e:87:d5:
57:cb:d9:13:5a:67:e6:d5:96:51:65:d1:1c:03:4d:
fd:ff:e3:3d:cc:25:e5:90:bc:d7:af:df:aa:69:e7:
1c:c9:45:ad:5e:01:5e:b5:fd:20:ce:d5:66:86:79:
ea:79:86:c6:d0:7d:5d:0d:1c:f6:2a:2e:2f:c4:6d:
fc:1b:75:6f:89:f1:a0:e5:8c:db:ce:b7:87:61:e0:
c5:8f:0f:6d:43:67:10:1e:7e:e9:15:05:85:bb:a5:
81:2f:61:c2:58:c2:e5:ac:3d:ea:f5:bd:69:3d:23:
3f:b4:c4:b4:85:82:84:e1:24:c1:08:74:b2:6a:5f:
0a:25:6a:6c:8a:83:a9:bf:31:b3:5d:37:93:7a:c4:
3a:99:e1:8c:6f:23:ba:fe:b8:d7:4d:97:db:71:18:
8a:c9:6f:a8:37:75:6f:b9:28:9b:e9:95:08:5f:3b:
0d:44:88:0f:b1:bb:9b:bf:d0:35:d6:7b:f4:89:ed:
14:d0:e6:da:76:76:94:df:e2:15:cd:30:5a:03:4d:
e4:29:e1:d4:3c:aa:11:03:46:ad:c7:52:cf:1f:81:
7b:02:43:19:02:7b:19:88:8f:1c:08:be:02:05:b6:
b4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:C8:5E:7B:56:97:B9:8C:DB:4F:71:79:87:95:A7:F9:44:E4:38:53
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/Lshee1aXuYzbT3F5h5Wn-UTkOFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:57c0::/29
2a09:59c0::/29
2a09:5bc0::/29
2a0e:b00::/29
2a0e:2800::/29
2a0e:2c00::/29
2a0e:6c00::/29
2a0e:8400::/29
2a0e:f180::/29
Signature Algorithm: sha256WithRSAEncryption
19:77:2e:64:5f:5b:75:6c:70:59:b8:6c:50:8d:d6:3b:43:04:
de:a2:45:65:34:24:f1:0b:fb:54:9f:08:8b:7f:39:6e:3d:60:
9a:e1:9e:8e:bc:58:85:b3:ed:54:ed:22:38:15:a1:41:44:91:
06:6b:5e:1d:ec:1f:1c:dd:b6:7f:bc:1b:77:28:68:56:95:d6:
7a:b2:43:c9:84:15:d0:a6:63:c1:ec:aa:19:13:dc:0e:c7:3d:
6f:c4:fc:ed:18:11:bb:30:eb:e8:f6:d2:53:1b:f3:94:73:82:
8e:94:96:b5:35:4e:22:78:9e:ed:5c:51:b8:a7:d9:0e:ba:d5:
4b:da:1f:0c:c1:57:aa:bd:81:10:f2:fe:58:b1:1c:61:f4:f5:
2b:45:e6:08:e2:62:db:66:87:c2:08:71:ae:be:61:5e:45:d3:
61:f7:50:b1:45:89:ff:68:96:f0:83:66:7f:e0:9b:0f:51:c3:
4a:d1:85:6f:b2:7b:ad:77:d5:29:15:8b:db:16:26:32:85:67:
c0:09:cc:30:1f:fe:e5:e3:88:b9:1d:cc:57:96:ef:e6:e7:c7:
aa:37:5a:7a:b7:45:c4:34:82:c3:c4:cb:28:4c:b1:df:e3:f8:
75:c8:3a:5c:1d:92:90:97:d7:73:f5:ca:cc:d6:45:5e:0a:93:
63:5f:68:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org