Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/3630cb-ebec-4d86-b12b-bffb757c3134/1/LsLxT3oM52o3iGw8dhT8pP52GQU.roa
File: LsLxT3oM52o3iGw8dhT8pP52GQU.roa (raw, json)
Hash identifier: BJ0NfICAX2MnL0gUF8tYEm5TeuI9cT/9SFt0gq+lRKo=
Subject key identifier: 2E:C2:F1:4F:7A:0C:E7:6A:37:88:6C:3C:76:14:FC:A4:FE:76:19:05
Certificate issuer: /CN=96bfc5a172654dd6009db1d82d92ffaf71234120
Certificate serial: 093CAF50
Authority key identifier: 96:BF:C5:A1:72:65:4D:D6:00:9D:B1:D8:2D:92:FF:AF:71:23:41:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lr_FoXJlTdYAnbHYLZL_r3EjQSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/3630cb-ebec-4d86-b12b-bffb757c3134/1/LsLxT3oM52o3iGw8dhT8pP52GQU.roa
Signing time: Tue 15 Mar 2022 21:34:38 +0000
ROA not before: Tue 15 Mar 2022 21:34:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208731
IP address blocks: 2a0a:e5c0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154971984 (0x93caf50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96bfc5a172654dd6009db1d82d92ffaf71234120
Validity
Not Before: Mar 15 21:34:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ec2f14f7a0ce76a37886c3c7614fca4fe761905
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1d:70:09:2d:ce:59:39:49:2a:bf:a2:5c:29:
cd:d5:a0:8f:5a:c5:d5:84:83:71:6e:ce:cc:31:f7:
ac:64:67:36:be:94:da:b2:39:91:3c:4c:6a:59:bf:
6d:d4:d4:ba:f5:fe:4f:e8:34:5c:71:48:0d:3d:ed:
1e:4c:37:a6:2e:9f:b4:09:97:d4:af:91:fd:bc:46:
91:d8:7f:b7:14:5c:ff:65:a0:02:f2:96:d7:47:72:
5e:63:8b:b8:f7:98:cc:3f:f4:75:85:12:d3:6f:f4:
60:7d:07:e7:ba:e7:d4:52:13:dd:6c:64:34:ad:4d:
9c:b1:df:0d:47:04:97:13:c5:8e:4b:0d:ef:da:35:
42:87:7d:78:fc:2f:8e:24:58:bd:f5:8f:ca:ea:de:
94:45:99:31:f6:20:6c:e1:92:21:93:8c:de:4f:78:
3d:eb:a5:c6:a4:ba:c5:e3:9c:cd:4f:a4:5e:26:c8:
61:33:cb:02:df:da:04:c1:d9:19:cb:0f:83:8a:69:
56:2a:25:ca:30:75:18:7e:c1:bf:8d:9e:06:a9:97:
36:4a:5c:8c:ca:29:b0:23:00:80:67:91:5b:eb:1e:
40:dc:80:c1:56:df:db:42:78:59:a9:fc:52:06:17:
21:c9:e1:bc:d7:52:0f:68:19:46:1e:d3:d5:e2:3c:
61:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:C2:F1:4F:7A:0C:E7:6A:37:88:6C:3C:76:14:FC:A4:FE:76:19:05
X509v3 Authority Key Identifier:
keyid:96:BF:C5:A1:72:65:4D:D6:00:9D:B1:D8:2D:92:FF:AF:71:23:41:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lr_FoXJlTdYAnbHYLZL_r3EjQSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/3630cb-ebec-4d86-b12b-bffb757c3134/1/LsLxT3oM52o3iGw8dhT8pP52GQU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/3630cb-ebec-4d86-b12b-bffb757c3134/1/lr_FoXJlTdYAnbHYLZL_r3EjQSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:e5c0::/29
Signature Algorithm: sha256WithRSAEncryption
26:af:2b:de:4e:75:c6:f5:ef:12:4b:e4:b5:98:21:ea:ae:b2:
8a:0b:09:13:b2:3c:5e:4f:5b:8a:2b:a6:d1:60:3d:71:83:6e:
8c:79:53:49:39:25:fd:e1:7f:3e:91:b4:4d:e4:c2:97:c1:d2:
34:7a:45:ea:de:ca:6d:d7:78:ab:3d:df:7d:a7:c2:ee:68:2f:
2d:b9:4c:ad:c9:9c:d7:92:99:71:93:9c:78:ef:6a:2b:ef:63:
0f:ec:2b:3a:33:fa:f1:3a:27:b0:af:9a:e7:85:7a:62:9d:6f:
4d:ae:b8:ea:09:c9:ef:8e:66:e0:9c:38:44:39:52:be:a5:f1:
15:44:76:2a:74:0b:99:77:04:57:28:80:fe:6b:94:30:06:0c:
14:b4:bc:70:bf:40:77:96:d8:2e:67:7f:11:d3:0f:fe:ef:91:
17:90:fb:e8:f8:54:45:ff:48:fd:f6:75:38:56:e3:96:af:03:
77:b5:03:da:e9:e7:9e:66:68:dd:d9:08:be:67:6d:26:97:df:
81:d0:99:af:0f:c0:fa:0b:86:fd:6e:8f:0c:72:15:a6:83:2c:
a4:97:02:1b:5d:19:bb:87:bb:80:81:62:2a:38:5f:ce:cf:a3:
22:02:d0:9e:08:13:d3:76:80:7b:b7:1a:bf:14:8c:9f:fb:5a:
03:96:9a:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:34 2024 by rpki-client on console-ams.rpki-client.org